Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/f89b64-87b7-48f4-8b60-c3204bde7773/1/EqPi9q2s7NIwL-F56wiZ0Ev0cks.roa
File: EqPi9q2s7NIwL-F56wiZ0Ev0cks.roa (raw, json)
Hash identifier: fFm8pp/KdsCG8qtWAqu0WDCZYCJLZPyBHE4LSRQ8waI=
Subject key identifier: 12:A3:E2:F6:AD:AC:EC:D2:30:2F:E1:79:EB:08:99:D0:4B:F4:72:4B
Certificate issuer: /CN=021b3ea35edfdd138c15506d74a76022dd37694b
Certificate serial: 15A212F3
Authority key identifier: 02:1B:3E:A3:5E:DF:DD:13:8C:15:50:6D:74:A7:60:22:DD:37:69:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ahs-o17f3ROMFVBtdKdgIt03aUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/f89b64-87b7-48f4-8b60-c3204bde7773/1/EqPi9q2s7NIwL-F56wiZ0Ev0cks.roa
Signing time: Sat 01 Jan 2022 12:58:38 +0000
ROA not before: Sat 01 Jan 2022 12:58:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204680
IP address blocks: 192.67.189.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 362943219 (0x15a212f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=021b3ea35edfdd138c15506d74a76022dd37694b
Validity
Not Before: Jan 1 12:58:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=12a3e2f6adacecd2302fe179eb0899d04bf4724b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e8:66:66:cc:e2:98:65:00:c4:d1:6a:37:75:
15:b7:69:8f:93:53:fa:23:5d:c5:87:49:08:e8:56:
27:10:f5:a1:38:7c:1c:6a:6d:5c:b6:54:42:00:48:
a9:cf:28:ae:c4:32:2e:83:42:62:81:86:be:1c:5b:
b7:1d:96:2d:41:fd:ae:32:07:c6:40:00:67:0c:b1:
2d:b9:cc:fb:ed:07:88:88:81:e9:72:57:3e:22:bc:
e2:10:05:84:29:b6:cc:3d:3e:8d:cf:a8:a7:1b:bf:
41:58:5d:1f:27:29:7f:4e:7b:53:d1:f7:a9:26:2a:
15:39:13:f9:c6:9d:ef:d8:9d:75:41:1c:43:4d:9b:
90:66:91:39:b7:f0:a6:4e:36:10:48:0d:2a:be:17:
e8:b3:0a:83:0a:ea:7a:7a:d6:f8:cd:b8:81:1f:5a:
32:00:59:17:1f:d8:6f:81:8d:7b:45:d2:d1:57:05:
72:69:02:c9:a0:ed:0a:e8:b9:e5:18:c3:0f:e8:18:
c6:0a:9e:10:95:a1:69:0e:f0:a8:9d:92:a4:86:1d:
10:39:3a:79:eb:99:be:45:2b:f1:86:50:70:f4:83:
5a:dc:0a:08:8b:9d:22:b9:0a:cd:4d:16:c9:4f:c0:
3c:9a:c5:f7:ee:77:66:39:17:ab:9f:40:47:2a:71:
b6:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:A3:E2:F6:AD:AC:EC:D2:30:2F:E1:79:EB:08:99:D0:4B:F4:72:4B
X509v3 Authority Key Identifier:
keyid:02:1B:3E:A3:5E:DF:DD:13:8C:15:50:6D:74:A7:60:22:DD:37:69:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ahs-o17f3ROMFVBtdKdgIt03aUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f89b64-87b7-48f4-8b60-c3204bde7773/1/EqPi9q2s7NIwL-F56wiZ0Ev0cks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f89b64-87b7-48f4-8b60-c3204bde7773/1/Ahs-o17f3ROMFVBtdKdgIt03aUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.67.189.0/24
Signature Algorithm: sha256WithRSAEncryption
39:26:02:11:8d:e3:e4:b9:5b:2b:ac:c3:f4:4a:fb:d9:07:5c:
dc:52:24:6b:a4:29:1b:c7:35:d9:1d:4e:01:2b:81:7e:23:fd:
d3:4c:c0:dd:be:5c:99:b3:a3:40:2f:a4:36:06:5a:f0:2d:8b:
68:ee:6e:fa:27:80:c2:8b:8e:da:8f:b8:ff:fc:e9:bb:d8:0d:
a0:1b:9b:cc:cb:b5:d5:3c:77:f3:15:ed:12:6d:e0:4a:ee:04:
93:fc:2a:c3:10:e8:e0:6f:a3:16:7a:3e:44:33:48:1a:02:54:
a8:7e:85:a4:51:ca:2d:89:fc:05:15:cf:d5:be:40:85:58:46:
fc:f9:82:fc:3d:da:51:03:2e:d2:92:54:55:c6:f2:15:c8:9d:
39:b1:d5:e5:7a:51:bf:1d:e0:41:e2:66:aa:9d:c1:87:3b:56:
8a:20:5b:88:d6:79:32:a1:13:f8:59:c6:a9:7a:f9:c7:10:c1:
84:fe:d2:24:8f:e8:89:0a:cd:1e:db:6b:26:a9:b2:33:0d:e8:
f2:13:a8:f7:4f:ea:05:72:67:df:09:6d:85:c6:c4:03:95:c7:
61:75:3b:3c:d1:20:a5:e9:11:85:18:c7:e5:ff:89:ad:72:9e:
1d:f3:fe:19:0e:bb:a9:13:d7:40:45:55:9d:12:bf:2a:f0:1c:
34:df:f6:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:03 2023 by rpki-client on console-ams.rpki-client.org