Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/bd0384-805d-48a1-bf09-3c14621ecfc5/1/eqraNcJX8WYMCR_nZpv09H1olPQ.roa
File: eqraNcJX8WYMCR_nZpv09H1olPQ.roa (raw, json)
Hash identifier: Ojj8M1L+uWOWZwq7VDpvbaR+4w2t1sRNf3+0TCfDqvQ=
Subject key identifier: 7A:AA:DA:35:C2:57:F1:66:0C:09:1F:E7:66:9B:F4:F4:7D:68:94:F4
Certificate issuer: /CN=e81393bdff601462a55591d26acb3d8c923ff26d
Certificate serial: 04F9F799
Authority key identifier: E8:13:93:BD:FF:60:14:62:A5:55:91:D2:6A:CB:3D:8C:92:3F:F2:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6BOTvf9gFGKlVZHSass9jJI_8m0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/bd0384-805d-48a1-bf09-3c14621ecfc5/1/eqraNcJX8WYMCR_nZpv09H1olPQ.roa
Signing time: Sat 01 Jan 2022 12:55:56 +0000
ROA not before: Sat 01 Jan 2022 12:55:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213373
IP address blocks: 149.3.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83490713 (0x4f9f799)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e81393bdff601462a55591d26acb3d8c923ff26d
Validity
Not Before: Jan 1 12:55:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7aaada35c257f1660c091fe7669bf4f47d6894f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:9b:27:02:31:57:32:4f:6d:a7:a4:6b:81:75:
3a:74:eb:eb:60:5f:e5:b2:2f:55:6e:db:cb:7c:10:
bd:f4:5d:26:ab:ab:4a:c6:ec:c3:75:59:a0:90:4e:
b3:9b:cb:53:19:13:ab:5d:d3:cb:3b:a3:61:e7:08:
dc:5e:53:8c:cf:bd:e5:df:81:29:cf:52:09:56:8b:
88:0a:dc:86:15:59:1c:ff:63:8b:7d:41:57:7c:2e:
3d:ad:eb:3b:73:0c:eb:18:7d:bd:7e:22:32:aa:01:
a7:b1:aa:6d:94:2b:11:77:15:66:01:89:19:3a:37:
1c:ec:d6:f4:31:53:f6:3f:04:b8:a3:49:fc:57:8d:
66:15:c7:a7:66:e4:50:8d:90:a6:85:d7:d1:0c:68:
37:e7:68:98:54:a5:a2:0f:d1:ab:29:06:80:cf:f8:
7b:d8:4f:13:2f:39:9b:d6:0b:5a:31:68:df:20:71:
93:83:07:6f:2f:4b:e2:9f:1e:56:50:d1:9b:37:e8:
86:80:5f:fd:20:a3:76:45:8c:4f:e5:85:31:50:68:
d0:1e:05:a0:5b:8b:8b:f3:e1:a2:dc:9e:5e:54:8f:
0b:36:98:2a:17:80:d8:26:69:22:ff:71:b9:97:5b:
9c:ff:4b:66:4c:6c:d4:9e:d1:cc:ff:7e:9a:a3:a6:
a9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:AA:DA:35:C2:57:F1:66:0C:09:1F:E7:66:9B:F4:F4:7D:68:94:F4
X509v3 Authority Key Identifier:
keyid:E8:13:93:BD:FF:60:14:62:A5:55:91:D2:6A:CB:3D:8C:92:3F:F2:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6BOTvf9gFGKlVZHSass9jJI_8m0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/bd0384-805d-48a1-bf09-3c14621ecfc5/1/eqraNcJX8WYMCR_nZpv09H1olPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/bd0384-805d-48a1-bf09-3c14621ecfc5/1/6BOTvf9gFGKlVZHSass9jJI_8m0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.3.170.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:64:9a:7b:50:9e:34:b1:0c:eb:02:5a:47:cc:f0:7d:0f:82:
46:21:84:ad:c2:85:d2:b1:0c:e4:11:eb:dd:69:10:67:a6:db:
f5:8a:93:98:58:ac:73:9a:7a:41:94:6a:72:0a:40:57:d5:e2:
64:47:37:83:11:a1:c5:3a:cd:78:f9:ea:cd:21:35:94:43:7f:
79:86:ed:10:1a:c0:3d:d8:a3:ce:ca:fe:2a:99:a9:5a:60:dc:
f0:6f:36:b7:b3:f2:f9:3a:53:6d:2b:1c:28:7f:82:23:f6:09:
49:a7:27:00:fc:6d:4b:d8:26:1f:02:f1:f1:9a:95:ed:92:23:
a6:56:03:29:bd:1f:30:2e:12:63:08:be:e8:d9:0f:2b:d7:87:
34:58:e3:2c:d3:b9:25:ed:59:b9:6e:c1:0c:a2:91:9a:46:9a:
fa:e7:2a:e5:f0:fa:75:22:4c:45:3b:93:84:56:2b:f1:7c:c5:
d7:ee:bf:da:89:29:e0:36:c4:2b:fd:09:9f:22:62:4a:83:66:
2a:c7:cb:83:da:99:1c:f4:9b:a5:3e:49:8c:c7:39:c7:fe:e9:
be:53:28:2a:62:8f:ba:10:89:77:10:a6:83:90:2b:f7:24:70:
70:9c:54:6d:2f:0a:c9:74:cd:99:c3:77:71:05:18:d8:4b:51:
74:9f:99:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:22 2023 by rpki-client on console-fra.rpki-client.org