Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/ejs9Ss_NSbbykcJKRpvGUyNvueA.roa
File: ejs9Ss_NSbbykcJKRpvGUyNvueA.roa (raw, json)
Hash identifier: JjH4FMfHWlroD3Z0bO7zBfczgvZq+gMj88dpK3rUzpI=
Subject key identifier: 7A:3B:3D:4A:CF:CD:49:B6:F2:91:C2:4A:46:9B:C6:53:23:6F:B9:E0
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 08BC728F
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/ejs9Ss_NSbbykcJKRpvGUyNvueA.roa
Signing time: Sat 01 Jan 2022 07:04:27 +0000
ROA not before: Sat 01 Jan 2022 07:04:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 194.110.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146567823 (0x8bc728f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 1 07:04:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a3b3d4acfcd49b6f291c24a469bc653236fb9e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:63:d2:a2:d3:58:36:75:38:34:29:20:6d:43:
46:06:ce:e1:26:f3:8e:08:a7:ad:f9:be:47:88:3f:
6e:41:2f:c4:0a:48:30:79:3d:dd:ec:1f:16:ce:95:
12:15:51:45:00:52:8d:1d:b7:8e:ad:b2:ef:ca:b5:
51:12:4f:6d:6b:ab:fd:aa:b6:ba:03:43:bf:d3:1f:
7b:c5:a7:a8:8a:c2:68:83:b6:4d:c1:43:ef:62:6f:
a7:85:68:68:51:b9:8f:c9:84:44:06:31:d1:fe:00:
f6:48:d8:ec:00:9e:d1:7a:c2:0a:c0:c2:6b:7e:13:
12:c5:3f:c0:33:28:d0:e9:20:84:f4:13:f6:fd:44:
90:d1:af:d9:e3:d9:eb:07:9c:40:38:4a:49:25:b5:
6d:ae:47:d7:9a:e2:d6:9e:3f:a6:0e:27:c9:cf:84:
27:a6:a8:15:d3:b2:79:57:e5:5e:30:35:1c:fc:a2:
5c:7d:69:57:2d:54:65:df:7a:c7:95:47:10:1b:7a:
46:a9:9e:4a:46:6f:7d:2b:c9:d3:ef:ea:fc:5d:10:
6e:29:9d:0e:f6:16:e9:2f:07:22:e0:28:68:18:b3:
81:da:32:98:50:06:c5:3b:ae:44:03:66:50:6d:82:
e3:a3:a7:2f:e0:d2:7e:94:44:70:67:7c:03:0a:b5:
6c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:3B:3D:4A:CF:CD:49:B6:F2:91:C2:4A:46:9B:C6:53:23:6F:B9:E0
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/ejs9Ss_NSbbykcJKRpvGUyNvueA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.175.0/24
Signature Algorithm: sha256WithRSAEncryption
50:72:c8:af:e5:e5:16:40:4c:b6:44:ce:e0:94:74:1b:b0:24:
16:68:97:09:19:b1:29:31:1a:98:b0:f6:f6:d5:d7:9e:ab:7e:
54:c2:95:15:58:8a:25:f6:cd:8a:6c:72:bd:96:9f:09:0c:db:
6f:f3:a1:8c:30:f5:f4:45:cf:e8:d0:0e:ed:2e:78:ac:82:58:
26:f4:0f:8b:b5:35:88:24:b3:1f:bd:68:c7:d2:8e:e2:7a:1c:
d3:f5:39:12:52:b6:87:2f:75:5f:9c:ba:c0:64:c5:2f:95:30:
1a:43:de:29:5c:fa:0c:1e:b5:73:f1:e3:1b:8f:14:44:6e:be:
6b:a8:01:87:ad:ce:5a:ef:a4:94:3c:72:f2:b2:71:47:9b:bb:
93:23:71:4a:aa:b8:65:00:5a:df:95:b3:ca:72:51:00:8a:2e:
cc:a2:ef:88:56:3f:33:b6:03:80:9a:45:92:ed:5c:3c:ba:ed:
2d:a6:25:2c:a1:46:eb:df:90:8d:1a:b4:2b:32:43:8c:62:2b:
52:f4:67:84:63:60:ec:03:25:d3:11:26:f0:70:7a:e2:ba:8b:
5f:d1:49:02:2d:72:f0:c4:db:85:8c:86:61:a2:e5:37:28:f0:
09:ea:bf:63:1d:55:34:3d:9d:13:1c:3b:42:aa:1f:9c:d5:64:
d6:12:67:5e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECLxyjzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ZjhhZWEyZjAyNWY0OTViZWFjZWU3Y2U1YTg4MjA1MTlkZGExMzcwMB4XDTIyMDEw
MTA3MDQyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2EzYjNkNGFjZmNk
NDliNmYyOTFjMjRhNDY5YmM2NTMyMzZmYjllMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALtj0qLTWDZ1ODQpIG1DRgbO4Sbzjginrfm+R4g/bkEvxApI
MHk93ewfFs6VEhVRRQBSjR23jq2y78q1URJPbWur/aq2ugNDv9Mfe8WnqIrCaIO2
TcFD72Jvp4VoaFG5j8mERAYx0f4A9kjY7ACe0XrCCsDCa34TEsU/wDMo0OkghPQT
9v1EkNGv2ePZ6wecQDhKSSW1ba5H15ri1p4/pg4nyc+EJ6aoFdOyeVflXjA1HPyi
XH1pVy1UZd96x5VHEBt6RqmeSkZvfSvJ0+/q/F0QbimdDvYW6S8HIuAoaBizgdoy
mFAGxTuuRANmUG2C46OnL+DSfpREcGd8Awq1bP8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR6Oz1Kz81JtvKRwkpGm8ZTI2+54DAfBgNVHSMEGDAWgBRPiuovAl9JW+rO
585aiCBRndoTcDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1Q0cnFMd0pmU1Z2cXp1Zk9Xb2dnVVozYUUzQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTUvZWI3MGEzLTE3ZTEtNGQ4Ni04YjllLTYwODA5NTJmMGUwNC8x
L2VqczlTc19OU2JieWtjSktScHZHVXlOdnVlQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTUv
ZWI3MGEzLTE3ZTEtNGQ4Ni04YjllLTYwODA5NTJmMGUwNC8xL1Q0cnFMd0pmU1Z2
cXp1Zk9Xb2dnVVozYUUzQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMJurzANBgkqhkiG9w0BAQsFAAOC
AQEAUHLIr+XlFkBMtkTO4JR0G7AkFmiXCRmxKTEamLD29tXXnqt+VMKVFViKJfbN
imxyvZafCQzbb/OhjDD19EXP6NAO7S54rIJYJvQPi7U1iCSzH71ox9KO4noc0/U5
ElK2hy91X5y6wGTFL5UwGkPeKVz6DB61c/HjG48URG6+a6gBh63OWu+klDxy8rJx
R5u7kyNxSqq4ZQBa35WzynJRAIouzKLviFY/M7YDgJpFku1cPLrtLaYlLKFG69+Q
jRq0KzJDjGIrUvRnhGNg7AMl0xEm8HB64rqLX9FJAi1y8MTbhYyGYaLlNyjwCeq/
Yx1VND2dExw7QqofnNVk1hJnXg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:27 2023 by rpki-client on console-ams.rpki-client.org