Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/3dde8d-bc09-47eb-8b5e-d9b72ed7cb4d/1/ejowt1B_bWEfz2aXgGKBspP25N8.roa
File: ejowt1B_bWEfz2aXgGKBspP25N8.roa (raw, json)
Hash identifier: m9tCuVuXtjxJddCoaa5o92mvjNVktQJ4fUWiZvJqRiE=
Subject key identifier: 7A:3A:30:B7:50:7F:6D:61:1F:CF:66:97:80:62:81:B2:93:F6:E4:DF
Certificate issuer: /CN=e79ef19c273deded19cef6b36839b3ceb01edefd
Certificate serial: 01840EC4D83A6CE0520868CF25152333454E
Authority key identifier: E7:9E:F1:9C:27:3D:ED:ED:19:CE:F6:B3:68:39:B3:CE:B0:1E:DE:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/557xnCc97e0ZzvazaDmzzrAe3v0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/3dde8d-bc09-47eb-8b5e-d9b72ed7cb4d/1/ejowt1B_bWEfz2aXgGKBspP25N8.roa
Signing time: Tue 25 Oct 2022 10:51:32 +0000
ROA not before: Tue 25 Oct 2022 10:51:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8767
IP address blocks: 2.56.135.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0e:c4:d8:3a:6c:e0:52:08:68:cf:25:15:23:33:45:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e79ef19c273deded19cef6b36839b3ceb01edefd
Validity
Not Before: Oct 25 10:51:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a3a30b7507f6d611fcf6697806281b293f6e4df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:67:1f:a8:20:1e:03:28:5d:64:dc:ca:81:a3:
0c:82:a1:ee:4b:b9:51:25:f7:9b:19:c4:2e:e3:d1:
72:8e:17:21:b1:64:cb:6c:71:7b:00:2d:3f:c5:fe:
75:d1:ce:13:3f:87:4a:22:e5:ad:c0:65:9b:0e:21:
12:46:80:84:f3:98:e2:47:91:5a:93:8c:0b:14:c2:
e7:1d:e7:7d:92:7d:4f:48:af:75:de:d1:96:93:a2:
11:df:20:f6:47:4e:81:a1:07:72:08:11:dd:1c:65:
dc:a7:e9:53:0d:a7:67:fb:1e:40:4d:8a:21:01:e7:
f1:00:53:3c:09:d4:eb:46:28:59:6c:3d:3a:e2:f5:
70:7e:a3:8b:06:af:8c:9d:00:06:26:1f:c1:db:10:
96:8e:c8:d3:8a:f8:04:95:a8:64:52:90:81:ef:bd:
b2:22:39:cb:8c:36:8a:f3:a9:0c:ec:56:67:46:ff:
e3:70:70:d9:32:6e:24:6a:0c:d5:ae:a8:4f:53:34:
a4:6f:7e:28:70:0f:9d:77:3a:7d:6d:ee:8f:4b:c7:
00:d7:33:1b:09:e2:d7:a1:7a:ce:89:62:30:af:b2:
2f:f7:1b:db:f8:9b:6f:77:19:6d:96:e9:41:5d:7c:
de:c0:3d:6e:2b:ad:dd:1c:e1:19:ed:55:0a:6d:3f:
87:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:3A:30:B7:50:7F:6D:61:1F:CF:66:97:80:62:81:B2:93:F6:E4:DF
X509v3 Authority Key Identifier:
keyid:E7:9E:F1:9C:27:3D:ED:ED:19:CE:F6:B3:68:39:B3:CE:B0:1E:DE:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/557xnCc97e0ZzvazaDmzzrAe3v0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3dde8d-bc09-47eb-8b5e-d9b72ed7cb4d/1/ejowt1B_bWEfz2aXgGKBspP25N8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3dde8d-bc09-47eb-8b5e-d9b72ed7cb4d/1/557xnCc97e0ZzvazaDmzzrAe3v0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.135.0/24
Signature Algorithm: sha256WithRSAEncryption
91:0e:a0:76:cc:e0:55:c8:21:10:36:16:17:63:90:30:68:27:
6a:dc:c8:bf:56:0c:f8:08:99:1b:db:83:9a:fc:ec:e0:c6:75:
3a:19:f9:79:d8:76:d4:65:22:af:f4:66:c7:51:d3:3d:6a:2c:
02:3c:e0:67:12:ec:2e:6f:40:92:d7:db:fe:7b:20:74:7e:99:
0a:a3:d2:79:25:11:ce:5f:d6:a7:df:49:20:2e:af:5e:24:ae:
06:8b:ac:b6:f8:41:c0:7a:08:4d:ae:40:3f:70:ae:cd:8b:ae:
e5:7b:11:6e:71:c0:a0:5f:7c:26:ef:cc:b7:4b:73:7d:a2:4d:
67:99:bc:7e:28:93:21:d2:c3:ea:00:a0:dc:f0:64:0a:95:38:
ef:e4:8f:3b:54:92:da:b8:30:6e:25:2a:5a:6d:44:e2:09:40:
26:b5:81:6c:26:db:59:04:6e:a4:cb:47:24:66:40:f3:65:5c:
84:f4:32:11:f6:89:45:a7:ae:19:26:ff:5b:2a:97:a3:66:f9:
01:3b:36:60:e6:80:7d:06:2c:9a:b5:c8:d3:0b:85:5f:3b:24:
20:98:c1:41:a3:11:3d:03:54:02:7a:54:c3:a2:9c:44:b8:5e:
72:78:e9:76:0d:2e:8c:b8:27:37:44:2b:45:87:3d:81:89:47:
42:7e:35:b0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQOxNg6bOBSCGjPJRUjM0VOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3OWVmMTljMjczZGVkZWQxOWNlZjZiMzY4MzliM2NlYjAx
ZWRlZmQwHhcNMjIxMDI1MTA1MTMyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YTNhMzBiNzUwN2Y2ZDYxMWZjZjY2OTc4MDYyODFiMjkzZjZlNGRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq2cfqCAeAyhdZNzKgaMMgqHuS7lR
JfebGcQu49FyjhchsWTLbHF7AC0/xf510c4TP4dKIuWtwGWbDiESRoCE85jiR5Fa
k4wLFMLnHed9kn1PSK913tGWk6IR3yD2R06BoQdyCBHdHGXcp+lTDadn+x5ATYoh
AefxAFM8CdTrRihZbD064vVwfqOLBq+MnQAGJh/B2xCWjsjTivgElahkUpCB772y
IjnLjDaK86kM7FZnRv/jcHDZMm4kagzVrqhPUzSkb34ocA+ddzp9be6PS8cA1zMb
CeLXoXrOiWIwr7Iv9xvb+JtvdxltlulBXXzewD1uK63dHOEZ7VUKbT+HBQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHo6MLdQf21hH89ml4BigbKT9uTfMB8GA1UdIwQY
MBaAFOee8ZwnPe3tGc72s2g5s86wHt79MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTU3eG5DYzk3ZTBaenZhemFEbXp6ckFlM3YwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8zZGRlOGQtYmMwOS00N2ViLThiNWUt
ZDliNzJlZDdjYjRkLzEvZWpvd3QxQl9iV0VmejJhWGdHS0JzcFAyNU44LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC8zZGRlOGQtYmMwOS00N2ViLThiNWUtZDliNzJlZDdjYjRk
LzEvNTU3eG5DYzk3ZTBaenZhemFEbXp6ckFlM3YwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAAjiHMA0G
CSqGSIb3DQEBCwUAA4IBAQCRDqB2zOBVyCEQNhYXY5AwaCdq3Mi/Vgz4CJkb24Oa
/OzgxnU6Gfl52HbUZSKv9GbHUdM9aiwCPOBnEuwub0CS19v+eyB0fpkKo9J5JRHO
X9an30kgLq9eJK4Gi6y2+EHAeghNrkA/cK7Ni67lexFuccCgX3wm78y3S3N9ok1n
mbx+KJMh0sPqAKDc8GQKlTjv5I87VJLauDBuJSpabUTiCUAmtYFsJttZBG6ky0ck
ZkDzZVyE9DIR9olFp64ZJv9bKpejZvkBOzZg5oB9BiyatcjTC4VfOyQgmMFBoxE9
A1QCelTDopxEuF5yeOl2DS6MuCc3RCtFhz2BiUdCfjWw
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:33:50 2025 by rpki-client