Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/Eg3-ZkN0aierMdz7T3HPzmE5ZAc.roa
File: Eg3-ZkN0aierMdz7T3HPzmE5ZAc.roa (raw, json)
Hash identifier: o/lGrhgDiY/DDJDE2y9ID/yD68LaqMCmWZPYfcv/b2M=
Subject key identifier: 12:0D:FE:66:43:74:6A:27:AB:31:DC:FB:4F:71:CF:CE:61:39:64:07
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0CC740B0
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/Eg3-ZkN0aierMdz7T3HPzmE5ZAc.roa
Signing time: Sat 01 Jan 2022 05:05:08 +0000
ROA not before: Sat 01 Jan 2022 05:05:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210740
IP address blocks: 194.32.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 214384816 (0xcc740b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 1 05:05:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=120dfe6643746a27ab31dcfb4f71cfce61396407
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:10:88:6f:80:15:2c:6d:c0:3f:ec:25:f2:f9:
c0:96:5f:94:8f:7e:ee:d1:6a:84:96:57:4e:f1:dd:
66:47:ae:b4:70:05:1c:79:91:91:cf:c8:13:82:2c:
88:a4:2b:26:6e:94:d1:a5:dd:47:89:c3:fe:e2:e7:
51:39:74:a9:61:4f:e7:d4:64:c7:c2:35:f6:4c:54:
73:fb:f4:04:b2:90:c8:18:3d:f8:2a:54:6b:de:60:
4b:23:7a:d6:10:f3:a3:8a:3e:c7:1c:f8:7f:6e:a8:
1f:e9:9c:51:63:1e:ef:ec:ed:d4:ee:c1:be:81:44:
5e:6c:a8:2a:b2:2d:41:e2:75:ef:e5:4a:f4:0a:e7:
0f:53:00:8e:85:18:34:0d:20:b8:3e:f7:a9:d7:4f:
a9:d1:c0:11:6c:d6:40:99:10:ba:4d:96:0a:58:14:
3b:6d:66:2b:9e:aa:44:a2:e4:80:64:24:36:51:d8:
c9:01:29:b2:1f:c8:be:82:32:a8:b9:3c:49:d6:15:
ac:01:22:11:36:5b:9c:f2:75:dd:34:e7:ac:62:ab:
9a:4d:58:84:de:fb:1f:a1:8f:f9:01:85:94:74:d1:
e6:63:50:65:91:2e:51:a9:53:ec:26:be:5e:f0:2a:
4e:37:63:fa:46:82:d4:46:68:dd:22:f0:96:16:f5:
70:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:0D:FE:66:43:74:6A:27:AB:31:DC:FB:4F:71:CF:CE:61:39:64:07
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/Eg3-ZkN0aierMdz7T3HPzmE5ZAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.32.121.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:4b:f0:e7:c7:be:45:c4:36:ea:b3:0f:aa:b4:67:dd:c9:33:
59:4a:ec:1b:c3:ee:b3:5c:37:b1:ec:1f:e1:69:02:2c:10:0c:
c4:a2:f8:95:23:ac:35:ab:9e:e2:3b:d1:73:d3:d2:8b:24:76:
3e:db:15:04:af:7a:be:a2:97:1b:28:8a:18:b0:3b:f7:aa:e2:
72:50:b9:d5:16:5b:c2:cc:8c:b0:5e:9e:7a:1c:b0:e9:0a:d3:
80:1f:c0:e3:58:83:b3:e7:0d:a9:07:c0:da:d2:0f:a1:f1:e6:
18:3f:25:c2:ee:e5:c6:2b:5d:ab:54:de:03:7b:55:31:dc:e6:
8f:45:7b:2c:24:bd:b0:95:63:1a:00:80:d7:65:d5:5c:10:d0:
6f:ec:1c:63:d9:2a:d4:f0:92:1f:93:47:d3:4b:ac:3c:5f:48:
65:09:34:0b:3d:ce:9f:4b:a8:88:4a:00:cd:54:a1:48:4d:d9:
40:73:5e:1b:87:47:b5:bd:11:56:0d:54:d8:1b:b6:50:70:99:
bc:c8:fc:db:ef:34:27:01:ea:57:7d:b4:65:60:5f:3a:f6:e6:
66:9f:2e:71:ab:bd:f0:f7:cf:23:e4:21:58:ec:a1:fe:d8:6e:
f4:7e:16:78:93:f4:15:bb:8d:77:b8:c8:65:ca:c0:e3:23:30:
e4:d7:e5:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:54 2023 by rpki-client on console-ams.rpki-client.org