Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/fde2f5-af35-4a49-9b44-946d92c3f093/1/EK9wNniXg2YNC16VXhk_5LVIrhc.roa
File: EK9wNniXg2YNC16VXhk_5LVIrhc.roa (raw, json)
Hash identifier: 3FzzA04F+NyrL+ofvBobdsjCflxpI4Rc6K+hEn1d/io=
Subject key identifier: 10:AF:70:36:78:97:83:66:0D:0B:5E:95:5E:19:3F:E4:B5:48:AE:17
Certificate issuer: /CN=e9ee65ec66d90ff8fff8d1707320577402e85cc7
Certificate serial: 01599E73
Authority key identifier: E9:EE:65:EC:66:D9:0F:F8:FF:F8:D1:70:73:20:57:74:02:E8:5C:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6e5l7GbZD_j_-NFwcyBXdALoXMc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/fde2f5-af35-4a49-9b44-946d92c3f093/1/EK9wNniXg2YNC16VXhk_5LVIrhc.roa
Signing time: Sat 01 Jan 2022 05:57:52 +0000
ROA not before: Sat 01 Jan 2022 05:57:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42948
IP address blocks: 193.142.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22650483 (0x1599e73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9ee65ec66d90ff8fff8d1707320577402e85cc7
Validity
Not Before: Jan 1 05:57:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=10af7036789783660d0b5e955e193fe4b548ae17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:be:0d:b1:79:2c:15:fd:74:78:33:b0:87:97:
0d:35:0a:c5:b7:da:55:fb:d0:55:21:63:8d:26:b2:
5b:be:03:7a:01:47:55:a3:e3:e5:0a:f4:4c:29:1e:
0a:14:78:40:bd:be:b9:8c:aa:f5:44:8d:b7:5e:92:
d9:67:66:68:9c:c7:eb:c0:2e:87:51:30:1d:2a:6c:
e6:e3:bb:fa:30:88:9e:cc:5a:0a:8f:df:41:74:7a:
43:5e:8a:65:56:bb:dd:44:cd:c0:e5:77:ba:19:51:
d3:41:a0:12:62:47:a3:47:a4:b6:dd:71:b8:92:67:
c7:89:a6:51:99:50:af:2a:ac:1c:dc:15:be:38:95:
ac:0d:e3:21:d5:d9:c1:ad:62:39:81:5f:ee:d9:04:
73:2c:7e:af:a9:0e:23:dd:03:2e:81:95:5a:a2:5a:
17:37:58:36:65:f4:0c:03:21:a9:c3:d6:11:3c:5c:
67:4a:be:62:d9:96:63:99:f3:90:86:d5:2f:81:98:
a6:ff:98:22:f5:1b:73:20:b9:f3:fe:ae:04:bd:fb:
41:4b:a7:90:10:1f:7f:3c:99:04:a0:07:ff:57:bd:
80:d1:8c:e6:1d:62:99:e1:3f:ca:75:90:0d:a5:eb:
3e:77:7e:8f:1b:57:a1:d3:15:e3:89:2b:95:77:b3:
3f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:AF:70:36:78:97:83:66:0D:0B:5E:95:5E:19:3F:E4:B5:48:AE:17
X509v3 Authority Key Identifier:
keyid:E9:EE:65:EC:66:D9:0F:F8:FF:F8:D1:70:73:20:57:74:02:E8:5C:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e5l7GbZD_j_-NFwcyBXdALoXMc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/fde2f5-af35-4a49-9b44-946d92c3f093/1/EK9wNniXg2YNC16VXhk_5LVIrhc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/fde2f5-af35-4a49-9b44-946d92c3f093/1/6e5l7GbZD_j_-NFwcyBXdALoXMc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.142.149.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:70:b1:5d:8e:e9:05:a9:a2:38:f7:01:ba:b5:14:fa:23:64:
cd:ae:2c:af:72:69:cf:5e:86:f9:8b:e4:a3:57:e3:df:0b:16:
6b:ea:65:c7:0d:8e:e2:62:40:d1:d4:38:a3:c8:f9:8c:1c:94:
b7:5a:02:f5:75:de:d9:e3:5d:1c:6e:a9:73:39:85:07:b9:58:
eb:1e:63:5b:73:52:31:bd:a8:72:a8:80:4a:8e:eb:17:d8:a2:
dc:28:21:c6:7a:b1:86:60:64:e8:bd:4a:88:59:0e:3b:9a:28:
c2:7d:5b:26:6a:da:c1:1a:14:78:fa:72:1d:2b:61:1a:19:69:
8d:98:f8:72:35:ba:c0:53:99:f7:8d:7e:76:4c:8d:85:b1:71:
aa:1d:c4:7a:e0:d6:72:49:8e:38:96:fc:95:e2:80:5f:71:89:
d5:90:ca:e3:a7:49:d2:d9:ca:61:1f:9e:57:9f:68:b1:9d:45:
b9:af:ca:01:d2:a5:e3:1e:09:5f:62:fe:01:31:11:68:1b:ae:
94:93:3e:ff:07:c6:9a:f8:22:76:61:40:25:77:b1:8c:23:fb:
03:52:fd:6a:90:f0:b4:f6:ad:b0:8b:5b:ce:04:30:de:e1:43:
10:8c:3d:e5:09:9d:8e:0e:7c:49:84:a9:f6:af:b3:80:b9:7e:
31:26:37:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:27 2023 by rpki-client on console-fra.rpki-client.org