Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/bfc4e2-d7f4-4cf7-92f4-31f2742af2de/1/EA2vzBD1iYWq_6SEKHxekgWdxuQ.roa
File: EA2vzBD1iYWq_6SEKHxekgWdxuQ.roa (raw, json)
Hash identifier: GgNVDh1WlrYKGxE12v7w5mxJq88YxN+3WBu75nV5tK8=
Subject key identifier: 10:0D:AF:CC:10:F5:89:85:AA:FF:A4:84:28:7C:5E:92:05:9D:C6:E4
Certificate issuer: /CN=c2aeab522f043b88c0507f05f864b3bd5ec42c57
Certificate serial: 06A6E8F0
Authority key identifier: C2:AE:AB:52:2F:04:3B:88:C0:50:7F:05:F8:64:B3:BD:5E:C4:2C:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wq6rUi8EO4jAUH8F-GSzvV7ELFc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/bfc4e2-d7f4-4cf7-92f4-31f2742af2de/1/EA2vzBD1iYWq_6SEKHxekgWdxuQ.roa
Signing time: Sat 01 Jan 2022 00:52:42 +0000
ROA not before: Sat 01 Jan 2022 00:52:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204996
IP address blocks: 193.30.134.0/24 maxlen: 24
193.30.166.0/24 maxlen: 24
193.30.162.0/24 maxlen: 24
193.30.165.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111601904 (0x6a6e8f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2aeab522f043b88c0507f05f864b3bd5ec42c57
Validity
Not Before: Jan 1 00:52:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=100dafcc10f58985aaffa484287c5e92059dc6e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7c:1e:6f:90:ed:31:95:4b:b5:2e:52:58:57:
0f:14:78:97:53:fa:75:c2:49:44:4f:d2:b5:9e:bd:
f4:63:0c:4c:bc:74:cf:a1:4e:25:48:ed:e9:eb:7c:
86:3f:6d:ed:41:79:da:6c:aa:65:9e:52:40:c7:ee:
99:1c:49:92:49:9e:85:5b:96:cd:9b:54:f0:fb:8a:
f3:fb:b9:30:57:26:58:67:e8:62:81:3b:1d:74:81:
3f:3f:44:43:0f:4e:f0:75:30:86:22:ad:e2:2d:8b:
d2:4a:47:96:e3:64:9c:2e:bc:82:98:74:41:61:c6:
6d:6b:c8:8d:71:de:d8:a7:2c:06:90:a8:53:f0:65:
30:90:45:e3:9f:fd:b6:b3:4d:82:e1:15:b1:2c:6c:
20:76:43:2b:eb:76:1a:18:3f:99:c3:6e:92:b4:85:
a1:cb:0b:f7:7b:83:c5:98:2b:bb:8d:de:9b:a4:5b:
a1:01:94:2f:1d:ce:88:b7:e7:3d:c0:b9:b9:90:2e:
0c:19:7b:4a:06:f1:61:26:27:fd:c6:5b:38:e8:97:
0f:cc:0e:ad:2a:df:ce:00:12:05:1f:b4:13:2e:71:
20:53:e1:cb:21:40:61:cf:25:c0:18:40:9e:73:bd:
33:7e:e6:a9:b8:0b:b4:54:d1:70:8d:07:96:48:71:
29:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:0D:AF:CC:10:F5:89:85:AA:FF:A4:84:28:7C:5E:92:05:9D:C6:E4
X509v3 Authority Key Identifier:
keyid:C2:AE:AB:52:2F:04:3B:88:C0:50:7F:05:F8:64:B3:BD:5E:C4:2C:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wq6rUi8EO4jAUH8F-GSzvV7ELFc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/bfc4e2-d7f4-4cf7-92f4-31f2742af2de/1/EA2vzBD1iYWq_6SEKHxekgWdxuQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/bfc4e2-d7f4-4cf7-92f4-31f2742af2de/1/wq6rUi8EO4jAUH8F-GSzvV7ELFc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.134.0/24
193.30.162.0/24
193.30.165.0-193.30.166.255
Signature Algorithm: sha256WithRSAEncryption
9c:c3:99:51:ba:c9:62:dd:fa:05:07:3a:6f:1c:77:42:37:63:
55:7d:d6:18:6d:e0:01:5d:dc:ff:f4:14:b6:74:41:4f:48:de:
92:3f:d2:eb:91:66:91:96:53:3f:9e:e3:e2:d4:05:df:a1:f6:
70:70:93:48:f5:be:fc:a9:76:19:04:61:e9:b0:47:44:83:37:
7f:9d:41:ea:3c:fc:b2:9e:2c:ff:bd:3e:47:8f:75:ad:9e:a5:
f8:1a:4f:4b:79:53:d0:0d:5b:ac:88:76:6c:7a:65:00:97:7e:
aa:88:06:ab:8d:10:dc:c6:b0:51:25:cf:69:70:ef:e8:71:05:
af:07:7c:c0:64:a7:78:07:4b:df:9b:de:80:88:e4:74:d3:bb:
68:a0:f3:34:4d:41:83:c7:67:a2:2e:7b:9e:51:d4:4f:1c:f2:
33:12:e7:2e:87:9e:db:f0:1d:ed:36:f7:ec:df:5c:af:fc:b6:
70:05:e9:8f:96:71:f8:52:ec:2a:aa:76:53:79:82:86:65:f3:
e1:ec:45:f2:21:b2:8e:26:a1:07:cd:11:f7:0a:5e:6d:d1:0a:
b1:87:b2:8a:4a:32:89:08:f6:1c:b3:2d:a1:f8:31:5b:e5:b8:
69:ce:0a:94:dc:98:40:b5:15:70:8a:60:b5:c7:93:c4:c0:7e:
44:13:78:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:43 2023 by rpki-client on console-fra.rpki-client.org