Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/7ae257-3c1a-4d1b-bd82-b9b4473208fd/1/EU3IzY2n9EMjHNqVRSIlrzam4Hs.roa
File: EU3IzY2n9EMjHNqVRSIlrzam4Hs.roa (raw, json)
Hash identifier: htMH+3uTxcSKjOl9m9rjdS+Sp3NN/wdp43L70yUheAU=
Subject key identifier: 11:4D:C8:CD:8D:A7:F4:43:23:1C:DA:95:45:22:25:AF:36:A6:E0:7B
Certificate issuer: /CN=e4de19fcee29f7f12ef06c60f8660ed700fe90b9
Certificate serial: 14DCBA52
Authority key identifier: E4:DE:19:FC:EE:29:F7:F1:2E:F0:6C:60:F8:66:0E:D7:00:FE:90:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5N4Z_O4p9_Eu8Gxg-GYO1wD-kLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/7ae257-3c1a-4d1b-bd82-b9b4473208fd/1/EU3IzY2n9EMjHNqVRSIlrzam4Hs.roa
Signing time: Sat 01 Jan 2022 10:03:54 +0000
ROA not before: Sat 01 Jan 2022 10:03:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31712
IP address blocks: 83.142.32.0/21 maxlen: 21
185.108.56.0/22 maxlen: 22
95.128.8.0/21 maxlen: 21
2a04:4100::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 350009938 (0x14dcba52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4de19fcee29f7f12ef06c60f8660ed700fe90b9
Validity
Not Before: Jan 1 10:03:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=114dc8cd8da7f443231cda95452225af36a6e07b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:87:44:28:4c:c9:05:26:04:64:a0:c1:e7:2b:
ab:35:af:14:18:87:13:47:aa:ea:67:75:d8:5d:47:
c8:95:aa:8e:40:b9:cf:fb:47:c5:29:10:32:42:c6:
f4:da:53:59:16:68:a3:9f:e9:c8:3b:f5:a5:18:27:
0b:4a:f8:0c:6a:46:8d:d6:63:81:24:85:ae:82:23:
43:de:7f:9b:ea:03:01:65:ee:9b:42:1c:45:b4:7b:
c8:fb:f4:da:d0:02:ad:30:84:eb:4f:34:14:5e:c4:
b4:a0:e8:29:c3:07:11:e9:ab:83:2a:86:f8:60:65:
8d:a7:26:d6:52:4c:48:31:c7:dc:6d:f5:20:13:92:
cb:c8:65:75:c4:b4:58:ca:80:b9:2e:48:ff:a9:a0:
bc:ae:2c:d2:ee:c1:5d:b2:f3:50:3f:62:76:f0:68:
81:e3:cf:52:e3:b2:9f:88:99:8b:30:c7:66:d8:42:
1e:a5:69:a1:3f:6d:ad:75:41:a5:af:62:df:67:6b:
1e:04:8b:63:da:d0:bb:fc:42:88:eb:cc:16:94:ea:
46:0e:74:cf:2f:de:ed:35:9c:39:15:b0:e7:bc:d1:
66:fb:50:fa:df:0c:b3:a2:8a:68:9b:54:51:50:d8:
d2:e6:75:e3:fa:6d:4c:c3:09:8b:fc:f7:cc:44:47:
8b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:4D:C8:CD:8D:A7:F4:43:23:1C:DA:95:45:22:25:AF:36:A6:E0:7B
X509v3 Authority Key Identifier:
keyid:E4:DE:19:FC:EE:29:F7:F1:2E:F0:6C:60:F8:66:0E:D7:00:FE:90:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5N4Z_O4p9_Eu8Gxg-GYO1wD-kLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/7ae257-3c1a-4d1b-bd82-b9b4473208fd/1/EU3IzY2n9EMjHNqVRSIlrzam4Hs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/7ae257-3c1a-4d1b-bd82-b9b4473208fd/1/5N4Z_O4p9_Eu8Gxg-GYO1wD-kLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.142.32.0/21
95.128.8.0/21
185.108.56.0/22
IPv6:
2a04:4100::/29
Signature Algorithm: sha256WithRSAEncryption
bf:41:f3:ff:e6:07:a8:fb:f8:6f:3d:e2:5b:29:d4:66:81:c8:
2a:e9:0f:71:60:d1:b8:cb:8a:06:32:55:b7:9b:7f:28:d9:ba:
16:02:84:43:a3:b0:9f:cc:f2:ce:8f:2c:79:fc:3a:5f:c8:98:
b2:8c:c0:7d:76:2f:56:d0:ec:c5:f3:cf:fc:30:1f:85:5b:b5:
c2:64:a8:9c:7e:31:b0:1d:b2:28:2b:81:0a:34:21:a7:e3:57:
1c:06:6c:02:94:6b:e2:71:f6:d8:0e:94:54:e4:ce:59:d1:dd:
96:49:e5:a4:0c:bc:4a:dd:00:f9:d2:ec:ab:d3:bd:e6:86:f9:
09:02:97:81:75:c0:4e:59:7e:d2:b9:e6:bd:33:52:6f:17:24:
ea:cb:65:83:e9:29:71:cb:95:d9:46:40:e1:4e:5c:7d:0c:bf:
cc:4c:73:53:ed:3e:01:88:75:e1:02:25:51:ab:69:cc:f2:7b:
54:0d:9d:e2:cc:4a:e4:ee:69:95:91:e4:5c:37:2f:ce:e7:63:
1b:18:2c:f4:cc:9f:33:d2:f1:d2:0e:f5:c9:ed:28:8d:0b:0f:
1a:17:e9:bf:cd:81:9c:00:cf:11:d9:8a:ba:55:60:7d:7d:d3:
45:7d:ae:89:9d:25:0a:5b:2e:48:85:d0:8e:7a:53:da:51:a5:
8b:a2:c6:7f
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:40 2023 by rpki-client on console-fra.rpki-client.org