Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/b6d95f-630a-4d80-80c7-4678e8855e6c/1/EWEC5IRaqKZBqj_4Tr9FquDYqEs.roa
File: EWEC5IRaqKZBqj_4Tr9FquDYqEs.roa (raw, json)
Hash identifier: +UCDeut85c5gbmSNBCzdjaXY1ap8rNpEsbfIApLaAao=
Subject key identifier: 11:61:02:E4:84:5A:A8:A6:41:AA:3F:F8:4E:BF:45:AA:E0:D8:A8:4B
Certificate issuer: /CN=057c6f47bc3099a4ec86bec29605269140ad7319
Certificate serial: 010AE68C
Authority key identifier: 05:7C:6F:47:BC:30:99:A4:EC:86:BE:C2:96:05:26:91:40:AD:73:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BXxvR7wwmaTshr7ClgUmkUCtcxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/b6d95f-630a-4d80-80c7-4678e8855e6c/1/EWEC5IRaqKZBqj_4Tr9FquDYqEs.roa
Signing time: Sat 01 Jan 2022 02:59:02 +0000
ROA not before: Sat 01 Jan 2022 02:59:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 194.99.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17491596 (0x10ae68c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=057c6f47bc3099a4ec86bec29605269140ad7319
Validity
Not Before: Jan 1 02:59:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=116102e4845aa8a641aa3ff84ebf45aae0d8a84b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e1:30:46:80:a7:de:9f:56:c8:ec:ef:17:53:
2f:ec:ba:25:a8:7e:b9:4d:d6:a0:d2:21:8a:51:da:
d4:61:34:b5:37:25:62:8f:e3:9b:4d:2a:93:33:81:
56:f9:ac:68:cc:2f:d8:81:f2:54:59:34:ad:61:a6:
e2:8e:d1:64:28:2e:d6:3f:76:0f:24:58:7d:23:66:
35:6b:52:1d:d4:f2:89:6f:40:e2:f8:65:12:c3:ca:
34:f9:b7:af:df:a6:0a:21:4a:ed:d3:fd:d1:d6:71:
c6:c6:28:35:4e:bd:63:7b:e9:3b:fd:9c:2c:3f:0c:
1d:bf:1f:05:e8:10:bf:c8:89:a7:ee:8f:8a:ce:8a:
05:94:eb:b2:02:33:db:14:6d:56:23:8e:44:4c:49:
68:de:c3:d3:c5:5a:33:57:53:7a:5e:db:c3:3e:21:
11:45:ab:78:f6:23:71:a5:1a:3c:6a:61:11:53:0c:
a2:ee:3f:92:2f:bd:ac:2b:0a:b8:dd:97:d6:d5:18:
02:a6:7b:9f:11:f2:c2:9f:1d:c2:bc:79:5e:1d:06:
9d:e6:64:85:2e:ad:9a:9a:8d:13:47:02:ab:67:fb:
b2:a1:f2:cd:04:2b:ca:ad:48:f9:fe:a0:5a:04:a7:
ed:37:b0:ea:fd:11:1f:66:72:2f:b3:83:94:45:4a:
bd:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:61:02:E4:84:5A:A8:A6:41:AA:3F:F8:4E:BF:45:AA:E0:D8:A8:4B
X509v3 Authority Key Identifier:
keyid:05:7C:6F:47:BC:30:99:A4:EC:86:BE:C2:96:05:26:91:40:AD:73:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BXxvR7wwmaTshr7ClgUmkUCtcxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/b6d95f-630a-4d80-80c7-4678e8855e6c/1/EWEC5IRaqKZBqj_4Tr9FquDYqEs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/b6d95f-630a-4d80-80c7-4678e8855e6c/1/BXxvR7wwmaTshr7ClgUmkUCtcxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.99.158.0/24
Signature Algorithm: sha256WithRSAEncryption
34:86:68:ae:16:66:f7:3d:af:3c:51:84:e5:28:78:77:a3:6c:
ec:df:5b:d2:d0:73:3d:26:eb:fe:e8:31:dc:c7:47:65:79:40:
ca:15:b4:e1:30:ca:76:a9:7f:d7:f2:ae:04:1e:99:b3:e4:a1:
7f:c2:e2:04:a7:29:e2:66:d8:ee:05:2f:5c:d7:d5:c1:3a:12:
7b:cc:79:cf:f5:d0:c6:fb:1e:6a:eb:23:13:2b:2f:dd:79:b8:
02:97:dd:03:70:34:76:87:ca:08:91:05:52:4d:49:07:c0:4c:
5b:58:4e:94:68:56:35:d8:ea:8a:65:29:20:26:dc:aa:3b:77:
1d:c6:22:e2:cf:ce:97:61:ac:fd:d8:90:62:c0:7e:15:0f:c0:
8d:52:98:74:95:68:80:ac:f2:14:b0:e7:3e:5d:95:41:d3:38:
1d:9b:c3:2d:4c:37:03:3f:49:a3:79:6d:21:ed:e8:b6:4b:ba:
ea:f9:72:51:98:96:4b:e1:af:c5:4d:69:34:7e:ea:0f:11:ce:
60:64:28:a4:ca:ec:81:f4:d5:14:ea:42:b0:32:d3:d6:b5:cf:
ae:04:28:a3:99:90:51:25:10:92:9f:d1:3d:77:f7:1f:b8:2b:
9c:26:0a:72:5b:7f:58:5d:52:0f:15:83:a4:fc:f5:da:9e:28:
0b:a6:01:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:19 2023 by rpki-client on console-ams.rpki-client.org