Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/ca734b-5a0b-4a03-8131-cfefeaee865e/1/emPFW-qD4gI8wVGaHOWpZymrq1o.roa
File: emPFW-qD4gI8wVGaHOWpZymrq1o.roa (raw, json)
Hash identifier: hyJKpuqFQqi9eXTWNdHriReDOpxqCj/v8bKvR5s3Q5U=
Subject key identifier: 7A:63:C5:5B:EA:83:E2:02:3C:C1:51:9A:1C:E5:A9:67:29:AB:AB:5A
Certificate issuer: /CN=ec5ada0dc900a13c83b70ac3f587fb8c2e1df030
Certificate serial: 0AF44BB6
Authority key identifier: EC:5A:DA:0D:C9:00:A1:3C:83:B7:0A:C3:F5:87:FB:8C:2E:1D:F0:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7FraDckAoTyDtwrD9Yf7jC4d8DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/ca734b-5a0b-4a03-8131-cfefeaee865e/1/emPFW-qD4gI8wVGaHOWpZymrq1o.roa
Signing time: Sat 01 Jan 2022 11:02:06 +0000
ROA not before: Sat 01 Jan 2022 11:02:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41133
IP address blocks: 194.110.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 183782326 (0xaf44bb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec5ada0dc900a13c83b70ac3f587fb8c2e1df030
Validity
Not Before: Jan 1 11:02:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a63c55bea83e2023cc1519a1ce5a96729abab5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ce:8e:9d:12:19:a5:ef:d7:ac:d4:d1:83:65:
be:f0:40:64:8d:c4:c5:a9:63:4c:c4:82:df:0b:0a:
2a:26:7b:1e:c2:e3:6d:66:26:2c:96:42:fc:cd:14:
84:90:46:c9:5e:16:1b:5e:7c:02:f6:03:3a:02:29:
16:cc:76:05:34:f0:7c:d2:89:03:1c:d6:5f:0c:d0:
a1:94:eb:0e:7c:11:a5:45:53:7b:4f:00:98:f9:7c:
1f:86:4b:07:2c:d8:d8:95:3c:d6:40:70:be:f9:29:
d6:2a:7e:9a:c1:95:de:76:43:95:61:1f:13:df:b1:
b6:8d:89:10:2f:6b:3c:41:ec:f1:37:03:0e:21:4a:
c8:57:2a:3f:0a:e0:94:f4:60:9a:db:98:68:cc:9d:
69:81:91:83:2d:20:9c:eb:8f:1a:db:62:63:92:ee:
9c:8a:69:0c:b5:b6:fa:11:e2:36:25:de:cc:8a:2d:
01:a7:0f:ae:c6:ab:b6:d1:bd:04:76:8f:a4:86:80:
7a:fe:b2:a6:1f:56:f9:0e:b0:73:c8:f2:ee:a0:1d:
91:9c:ee:be:57:fb:d2:dc:a8:2d:a4:28:01:88:2e:
7b:2e:75:56:4d:b0:49:13:2a:65:82:d7:5f:6b:a2:
0a:d2:46:4e:b6:a2:6f:86:f6:b9:a3:b3:df:86:82:
54:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:63:C5:5B:EA:83:E2:02:3C:C1:51:9A:1C:E5:A9:67:29:AB:AB:5A
X509v3 Authority Key Identifier:
keyid:EC:5A:DA:0D:C9:00:A1:3C:83:B7:0A:C3:F5:87:FB:8C:2E:1D:F0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7FraDckAoTyDtwrD9Yf7jC4d8DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ca734b-5a0b-4a03-8131-cfefeaee865e/1/emPFW-qD4gI8wVGaHOWpZymrq1o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ca734b-5a0b-4a03-8131-cfefeaee865e/1/7FraDckAoTyDtwrD9Yf7jC4d8DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.56.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:09:9b:74:02:44:c9:24:d4:d5:f0:29:2e:b0:a0:2d:eb:75:
8e:19:0f:76:64:bc:ff:4b:dd:42:f9:91:99:fe:30:fe:da:44:
5c:7c:cc:7f:49:bc:2b:16:7a:68:03:2b:a9:e8:bf:28:5f:f1:
7b:9f:1d:1a:59:39:52:63:1b:ad:e4:e9:24:33:d6:54:89:da:
83:b9:17:61:29:23:d6:2c:0b:f1:bc:55:98:85:da:8d:e7:78:
b3:c3:dd:e0:5b:27:42:e4:f9:ed:5b:07:8c:ac:73:31:1b:b4:
ca:26:62:4b:39:58:2f:5b:7c:1d:ab:c4:67:01:37:d6:cb:75:
2e:03:84:e3:f1:98:83:aa:ec:de:5e:48:76:09:6a:ec:76:1f:
80:8e:62:8b:fd:7f:54:60:03:c1:dd:ae:b1:fc:73:58:79:c7:
e0:d4:39:71:66:51:83:49:6d:9f:a7:62:2c:ab:17:81:74:d8:
30:07:a9:f1:a9:5c:86:11:97:f3:2f:aa:2b:ec:6e:91:cd:39:
dd:33:c4:c0:5c:52:b4:7e:40:ef:b1:ab:aa:ed:91:42:1b:96:
fc:7b:8d:4d:79:a3:03:20:f9:58:ba:24:dc:0e:e0:cb:47:98:
47:e0:12:65:68:e3:31:d1:ac:4e:63:be:63:6a:e6:97:46:e0:
d8:d2:b9:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:53 2023 by rpki-client on console-fra.rpki-client.org