Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/eRoD_2biCDyscvueRb8l-W5RFhM.roa
File: eRoD_2biCDyscvueRb8l-W5RFhM.roa (raw, json)
Hash identifier: +u9cEnSfNnGMLKqVUwsa1uVVaVZThN8wlWZvEA37qZ0=
Subject key identifier: 79:1A:03:FF:66:E2:08:3C:AC:72:FB:9E:45:BF:25:F9:6E:51:16:13
Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Certificate serial: 01847F651EC7E26B9D2BD82CA80A96E7F8EA
Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/eRoD_2biCDyscvueRb8l-W5RFhM.roa
Signing time: Wed 16 Nov 2022 07:44:04 +0000
ROA not before: Wed 16 Nov 2022 07:44:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6453
IP address blocks: 89.39.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7f:65:1e:c7:e2:6b:9d:2b:d8:2c:a8:0a:96:e7:f8:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Validity
Not Before: Nov 16 07:44:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=791a03ff66e2083cac72fb9e45bf25f96e511613
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:d0:89:a8:7a:27:99:fe:af:6e:e2:7f:b5:dc:
14:a9:28:f5:7c:b6:0a:bb:b9:58:3d:8a:37:f8:e5:
55:05:b1:7d:8a:68:4f:26:f3:55:1f:b6:88:8b:95:
81:87:be:3f:cb:ff:ee:a1:69:e2:ed:36:a4:e2:f0:
97:7b:c2:37:5c:59:79:6e:aa:35:f2:da:6a:69:02:
f9:d1:63:04:1e:28:3c:a6:8f:6a:f2:91:48:3f:8f:
0b:ab:9a:d5:98:16:8f:c1:0c:82:aa:41:cf:35:9d:
31:9a:25:9b:9f:fc:44:20:29:47:d1:76:22:74:4f:
db:68:e9:f8:a4:fb:37:87:8b:6a:79:d1:97:3d:29:
4c:85:2e:3b:3f:f2:55:0c:43:79:7c:a2:d4:0b:f2:
83:c7:df:53:63:a3:10:25:9d:de:0a:60:2a:cf:a7:
09:91:5b:6d:97:b7:72:f4:e1:36:53:26:7a:54:32:
ee:ba:42:3b:f8:b9:14:0b:c7:5e:6c:e8:78:87:60:
a7:b0:90:dd:f2:5f:5d:da:6d:08:89:69:03:ec:d5:
18:5e:30:4c:79:60:b2:08:80:d3:68:7f:98:43:74:
2a:0a:bd:af:d5:56:3a:a2:b6:5a:12:18:8c:98:e3:
24:cd:df:d3:a7:c6:37:20:2b:c0:c5:fe:31:2b:72:
23:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:1A:03:FF:66:E2:08:3C:AC:72:FB:9E:45:BF:25:F9:6E:51:16:13
X509v3 Authority Key Identifier:
keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/eRoD_2biCDyscvueRb8l-W5RFhM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.39.6.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:91:d0:e6:71:35:fc:dd:29:a1:55:90:89:4a:d2:af:bd:dc:
87:7a:99:a6:4c:a5:b0:2d:87:a0:b2:b4:b2:4d:41:d8:d2:19:
0c:e5:fe:ba:57:ed:4b:0e:95:91:e8:56:40:0e:29:7e:23:e6:
d1:75:04:6a:e6:54:c8:4d:e9:f1:83:00:30:ae:63:dc:89:76:
7c:38:fa:10:ea:80:8f:9a:b8:28:a2:f0:41:5d:9d:e1:41:29:
7b:8c:ce:13:70:75:7f:f9:b8:b1:e3:91:68:9d:80:88:b0:3d:
2b:ab:2b:36:43:89:c6:8e:d0:8d:0b:55:66:80:8e:e4:e5:77:
d2:fe:c6:3b:1c:02:42:d4:f5:33:34:1c:e5:c1:ec:51:45:29:
76:da:08:73:e0:b9:f2:68:d1:60:c2:1d:9e:02:2f:24:09:f7:
8e:7f:3d:d1:ac:b0:70:97:18:26:aa:a9:2e:ef:cc:40:db:1e:
7e:69:6e:94:70:a4:bd:53:6a:78:5c:ff:19:83:dc:42:f2:63:
e5:27:91:26:4c:2c:76:8a:c2:da:68:ba:4e:98:a2:cf:61:d4:
23:0c:bc:ec:e3:b9:ff:b2:53:44:0c:49:d0:f9:b8:2c:d7:d6:
d5:82:43:95:5e:23:be:aa:d8:26:7f:5c:b1:d1:36:f9:d7:ed:
ae:59:16:92
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYR/ZR7H4mudK9gsqAqW5/jqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjZWY1OGQ0Y2ZhMzU1NDNmODQ4OGEyNzU2ZTY5MjRlNjQ3
YjQ1ODkwHhcNMjIxMTE2MDc0NDA0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OTFhMDNmZjY2ZTIwODNjYWM3MmZiOWU0NWJmMjVmOTZlNTExNjEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh9CJqHonmf6vbuJ/tdwUqSj1fLYK
u7lYPYo3+OVVBbF9imhPJvNVH7aIi5WBh74/y//uoWni7Tak4vCXe8I3XFl5bqo1
8tpqaQL50WMEHig8po9q8pFIP48Lq5rVmBaPwQyCqkHPNZ0xmiWbn/xEIClH0XYi
dE/baOn4pPs3h4tqedGXPSlMhS47P/JVDEN5fKLUC/KDx99TY6MQJZ3eCmAqz6cJ
kVttl7dy9OE2UyZ6VDLuukI7+LkUC8debOh4h2CnsJDd8l9d2m0IiWkD7NUYXjBM
eWCyCIDTaH+YQ3QqCr2v1VY6orZaEhiMmOMkzd/Tp8Y3ICvAxf4xK3IjrQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHkaA/9m4gg8rHL7nkW/JfluURYTMB8GA1UdIwQY
MBaAFNzvWNTPo1VD+EiKJ1bmkk5ke0WJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM085WTFNLWpWVVA0U0lvblZ1YVNUbVI3UllrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9lYTQ0NTUtNzgzNi00NGM0LWIyYTMt
MmVjZTA0ZTE4NWMyLzEvZVJvRF8yYmlDRHlzY3Z1ZVJiOGwtVzVSRmhNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS9lYTQ0NTUtNzgzNi00NGM0LWIyYTMtMmVjZTA0ZTE4NWMy
LzEvM085WTFNLWpWVVA0U0lvblZ1YVNUbVI3UllrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWScGMA0G
CSqGSIb3DQEBCwUAA4IBAQCikdDmcTX83SmhVZCJStKvvdyHepmmTKWwLYegsrSy
TUHY0hkM5f66V+1LDpWR6FZADil+I+bRdQRq5lTITenxgwAwrmPciXZ8OPoQ6oCP
mrgoovBBXZ3hQSl7jM4TcHV/+bix45FonYCIsD0rqys2Q4nGjtCNC1VmgI7k5XfS
/sY7HAJC1PUzNBzlwexRRSl22ghz4LnyaNFgwh2eAi8kCfeOfz3RrLBwlxgmqqku
78xA2x5+aW6UcKS9U2p4XP8Zg9xC8mPlJ5EmTCx2isLaaLpOmKLPYdQjDLzs47n/
slNEDEnQ+bgs19bVgkOVXiO+qtgmf1yx0Tb51+2uWRaS
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:54 2023 by rpki-client on console-ams.rpki-client.org