Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Ea1zZ0s_JKHSZwVncdUKHPqwRh4.roa
File: Ea1zZ0s_JKHSZwVncdUKHPqwRh4.roa (raw, json)
Hash identifier: aNmZDf2jg+nyU2wPvylM3Y6LEjoXD5JVS8fuOUN2uRs=
Subject key identifier: 11:AD:73:67:4B:3F:24:A1:D2:67:05:67:71:D5:0A:1C:FA:B0:46:1E
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 1797751D
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Ea1zZ0s_JKHSZwVncdUKHPqwRh4.roa
Signing time: Sat 01 Jan 2022 04:53:55 +0000
ROA not before: Sat 01 Jan 2022 04:53:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 18450
IP address blocks: 188.116.19.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 395801885 (0x1797751d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:53:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=11ad73674b3f24a1d267056771d50a1cfab0461e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:6f:fc:b6:37:39:7b:4e:cf:ff:cd:b2:7e:b4:
1b:60:39:b3:2a:10:6f:b6:b3:e6:8e:2f:13:b6:d9:
11:4f:d8:e2:53:b3:80:b1:78:bd:b2:d6:46:d5:57:
64:fb:39:1a:2a:a2:17:f6:1f:ba:4c:e3:9d:38:b1:
89:88:21:4a:52:60:38:66:ad:bd:f3:bb:47:95:27:
37:19:0c:83:19:c7:dd:14:b2:d0:1e:12:63:c9:b2:
16:8f:64:74:1a:1f:9b:1d:aa:1d:7e:71:5c:06:e3:
53:2c:6c:9c:7e:7b:de:af:8a:66:ac:b1:f8:d8:54:
02:fd:3e:f9:98:af:42:7b:ea:6c:ce:f8:25:d6:04:
02:1e:8b:9a:99:af:97:6f:f5:89:1e:cf:d7:50:30:
f9:26:de:9c:c9:a4:ac:99:1a:4b:dc:be:13:c7:c4:
8f:ff:d8:a5:ca:5b:3a:45:6b:56:c2:13:c0:60:e3:
b8:ef:94:32:a1:7b:89:ee:8b:d8:17:0c:62:9c:3c:
c6:20:95:c0:d3:ef:28:ac:44:2b:58:25:0b:fc:03:
ba:b7:ca:42:90:75:b3:f0:fa:08:9b:04:db:cc:93:
66:12:38:18:cc:d0:3a:2b:4f:c0:91:a7:52:47:c9:
db:66:39:51:8c:b2:c4:38:6a:91:35:d7:2e:5a:ca:
97:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:AD:73:67:4B:3F:24:A1:D2:67:05:67:71:D5:0A:1C:FA:B0:46:1E
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Ea1zZ0s_JKHSZwVncdUKHPqwRh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.116.19.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:17:e4:81:09:b4:f5:dc:44:66:21:23:cf:71:ac:5f:90:67:
87:05:a1:7b:e0:42:7b:77:7c:4e:c4:d9:b6:de:22:e7:ae:2d:
1b:e2:62:2b:02:c4:53:d2:41:b0:b2:6f:d5:ca:47:b3:4c:02:
96:01:46:d2:5d:a7:ba:e6:d4:f8:0c:8b:de:6b:21:4f:21:85:
77:fc:9a:f8:91:be:7a:b5:c5:e4:f3:82:5e:bb:be:32:77:a5:
7b:64:83:18:e1:e0:ee:06:1e:de:dd:a4:16:a6:f7:ab:93:5e:
44:d8:96:fd:10:aa:3c:7b:9e:33:bb:d3:68:6e:a2:7e:e5:d8:
97:97:9a:29:87:3b:1c:4a:19:ba:fa:a9:6b:0e:d2:5f:52:7e:
0a:53:c5:02:bd:90:2a:a4:27:4a:84:25:9c:ee:ed:2c:5d:f6:
87:d5:27:9e:b9:a5:04:81:5f:8c:d9:4f:4c:24:b0:85:c5:3d:
83:28:20:f6:e9:82:ec:60:e7:50:48:8d:62:9c:9f:4f:c4:b5:
58:2a:cb:49:7e:13:ad:59:8d:6e:48:53:10:83:58:25:30:4a:
a5:d8:87:db:17:cb:1b:7d:45:ae:42:12:02:35:95:3b:e5:bf:
05:e5:d9:d9:f3:e8:2c:9b:ca:af:98:22:f6:15:8c:c3:27:02:
57:b7:ed:ab
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEF5d1HTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YzhmZDFhOGFlNTk5NmMxZTU2OTJjMWE4YzQyYmZlOWMzYmE1NzQ1MB4XDTIyMDEw
MTA0NTM1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTFhZDczNjc0YjNm
MjRhMWQyNjcwNTY3NzFkNTBhMWNmYWIwNDYxZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJhv/LY3OXtOz//Nsn60G2A5syoQb7az5o4vE7bZEU/Y4lOz
gLF4vbLWRtVXZPs5GiqiF/YfukzjnTixiYghSlJgOGatvfO7R5UnNxkMgxnH3RSy
0B4SY8myFo9kdBofmx2qHX5xXAbjUyxsnH573q+KZqyx+NhUAv0++ZivQnvqbM74
JdYEAh6Lmpmvl2/1iR7P11Aw+SbenMmkrJkaS9y+E8fEj//YpcpbOkVrVsITwGDj
uO+UMqF7ie6L2BcMYpw8xiCVwNPvKKxEK1glC/wDurfKQpB1s/D6CJsE28yTZhI4
GMzQOitPwJGnUkfJ22Y5UYyyxDhqkTXXLlrKl6MCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQRrXNnSz8kodJnBWdx1Qoc+rBGHjAfBgNVHSMEGDAWgBRsj9GorlmWweVp
LBqMQr/pw7pXRTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JJX1JxSzVabHNIbGFTd2FqRUtfNmNPNlYwVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvNDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8x
L0VhMXpaMHNfSktIU1p3Vm5jZFVLSFBxd1JoNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
NDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8xL2JJX1JxSzVabHNI
bGFTd2FqRUtfNmNPNlYwVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALx0EzANBgkqhkiG9w0BAQsFAAOC
AQEAjhfkgQm09dxEZiEjz3GsX5BnhwWhe+BCe3d8TsTZtt4i564tG+JiKwLEU9JB
sLJv1cpHs0wClgFG0l2nuubU+AyL3mshTyGFd/ya+JG+erXF5POCXru+Mnele2SD
GOHg7gYe3t2kFqb3q5NeRNiW/RCqPHueM7vTaG6ifuXYl5eaKYc7HEoZuvqpaw7S
X1J+ClPFAr2QKqQnSoQlnO7tLF32h9UnnrmlBIFfjNlPTCSwhcU9gygg9umC7GDn
UEiNYpyfT8S1WCrLSX4TrVmNbkhTEINYJTBKpdiH2xfLG31FrkISAjWVO+W/BeXZ
2fPoLJvKr5gi9hWMwycCV7ftqw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org