Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/c1b1f0-234f-45d5-8595-f7c2c2a91bc2/1/lDAc2ZrIJL47Yc0dEfZNEyljGaU.roa
File: lDAc2ZrIJL47Yc0dEfZNEyljGaU.roa (raw, json)
Hash identifier: ROgjphTzBoSFuaChvMoUTeGs/kj6Vgz251W/qVw5osE=
Subject key identifier: 94:30:1C:D9:9A:C8:24:BE:3B:61:CD:1D:11:F6:4D:13:29:63:19:A5
Certificate issuer: /CN=ec3a633ef2c08251a58603562e56aa6efa93ec25
Certificate serial: 01842A9270BD18F1E7DD64A606AB1A9C1D93
Authority key identifier: EC:3A:63:3E:F2:C0:82:51:A5:86:03:56:2E:56:AA:6E:FA:93:EC:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7DpjPvLAglGlhgNWLlaqbvqT7CU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/c1b1f0-234f-45d5-8595-f7c2c2a91bc2/1/lDAc2ZrIJL47Yc0dEfZNEyljGaU.roa
Signing time: Sun 30 Oct 2022 20:25:50 +0000
ROA not before: Sun 30 Oct 2022 20:25:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 217.66.224.0/19 maxlen: 19
82.102.192.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:2a:92:70:bd:18:f1:e7:dd:64:a6:06:ab:1a:9c:1d:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec3a633ef2c08251a58603562e56aa6efa93ec25
Validity
Not Before: Oct 30 20:25:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=94301cd99ac824be3b61cd1d11f64d13296319a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b6:3e:16:c6:be:21:fa:fc:69:a1:bd:23:14:
bd:7d:55:62:ad:4f:db:ae:d9:ee:64:f4:e8:e0:58:
a3:04:81:97:04:39:bb:df:2f:4b:dd:77:83:6a:db:
9a:af:d8:37:21:db:21:8a:71:5b:ae:ea:5d:89:8c:
43:62:c9:63:9b:5b:74:2a:36:1f:df:98:30:6e:53:
16:32:0d:1e:a7:66:cd:2a:67:de:a1:3f:5c:1c:93:
10:af:5b:7e:e5:b9:62:2a:e9:42:29:b9:09:3b:f3:
86:89:d8:39:24:89:44:ee:40:0e:1e:a4:2f:50:89:
63:46:aa:d7:52:63:d3:fa:e6:2a:cc:51:4d:f3:71:
69:c3:44:52:54:02:86:bd:a7:b5:2f:d8:ed:d2:09:
f6:21:6a:a8:cd:69:3d:94:fd:47:61:64:93:94:8a:
42:df:ed:99:22:a5:4f:88:01:dd:7f:df:29:6f:ad:
68:d3:70:99:66:f9:82:7c:ba:cb:54:96:b5:7a:3b:
ba:df:a4:a5:b4:ca:4b:3e:42:36:c6:a4:7d:7c:98:
1c:f3:10:2a:4d:98:68:8b:93:14:e3:54:b7:7c:17:
cd:b1:a4:a0:6e:5a:7a:7d:10:3f:b2:73:4a:54:f9:
b6:7d:2e:0b:cc:14:f6:f6:6f:19:81:60:3b:22:25:
c6:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:30:1C:D9:9A:C8:24:BE:3B:61:CD:1D:11:F6:4D:13:29:63:19:A5
X509v3 Authority Key Identifier:
keyid:EC:3A:63:3E:F2:C0:82:51:A5:86:03:56:2E:56:AA:6E:FA:93:EC:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7DpjPvLAglGlhgNWLlaqbvqT7CU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c1b1f0-234f-45d5-8595-f7c2c2a91bc2/1/lDAc2ZrIJL47Yc0dEfZNEyljGaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c1b1f0-234f-45d5-8595-f7c2c2a91bc2/1/7DpjPvLAglGlhgNWLlaqbvqT7CU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.102.192.0/18
217.66.224.0/19
Signature Algorithm: sha256WithRSAEncryption
97:a9:ab:ab:0a:f1:d8:4c:eb:e4:8b:ea:4e:dd:19:6f:ff:1e:
30:59:6b:7d:d4:20:0b:42:59:98:04:9f:62:3e:c9:50:cf:57:
58:96:18:74:0b:df:53:33:b7:b8:f2:8c:f6:c7:1d:50:ff:5a:
b7:8a:00:2e:e6:d0:c8:aa:bb:a2:1c:7c:7d:c9:73:b4:eb:e4:
74:a5:b4:35:7b:91:2a:3d:55:64:de:8c:b0:70:f0:f9:53:c9:
9a:e0:8e:b4:d7:51:c7:d3:a8:e1:52:84:79:68:e7:48:76:05:
a8:04:95:72:b7:00:9c:66:4a:1d:3d:0e:71:48:3a:1b:68:d3:
e9:52:f7:4e:7e:60:ae:ac:fa:a7:82:03:f2:15:7d:e8:c5:f6:
ea:db:c4:ed:12:09:c2:de:eb:82:68:6c:12:2e:14:fd:20:07:
e1:17:65:72:5a:90:79:5f:4e:23:9e:bb:ae:3f:28:b3:e1:fb:
7f:dc:0b:63:15:66:2b:da:90:75:19:8f:dc:4a:51:38:e5:71:
3d:6d:5f:5c:f1:f7:fb:40:7f:cf:fd:95:75:da:f8:f9:d7:1c:
e2:ef:43:65:50:9a:40:53:9b:59:a1:f6:47:17:9c:ad:17:7d:
2b:14:01:9c:0a:e8:3f:84:83:6d:ad:47:3a:b7:39:c4:48:b0:
ce:7e:01:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:32 2023 by rpki-client on console-fra.rpki-client.org