Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/88cc50-2273-45ff-adb5-eccd665f1f03/1/EudfUqtTaadsjKImSFQi5Q9pwxg.roa
File: EudfUqtTaadsjKImSFQi5Q9pwxg.roa (raw, json)
Hash identifier: q9nwlWZ9N6jf6JF+w9sz9VUcPUV6rcc4JAFnZEavTOw=
Subject key identifier: 12:E7:5F:52:AB:53:69:A7:6C:8C:A2:26:48:54:22:E5:0F:69:C3:18
Certificate issuer: /CN=707f3dabaee24fc43b865aafa3f3c9c2f364bfc9
Certificate serial: 1049E8A0
Authority key identifier: 70:7F:3D:AB:AE:E2:4F:C4:3B:86:5A:AF:A3:F3:C9:C2:F3:64:BF:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cH89q67iT8Q7hlqvo_PJwvNkv8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/88cc50-2273-45ff-adb5-eccd665f1f03/1/EudfUqtTaadsjKImSFQi5Q9pwxg.roa
Signing time: Sat 01 Jan 2022 11:56:06 +0000
ROA not before: Sat 01 Jan 2022 11:56:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 193.23.168.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 273279136 (0x1049e8a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=707f3dabaee24fc43b865aafa3f3c9c2f364bfc9
Validity
Not Before: Jan 1 11:56:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=12e75f52ab5369a76c8ca226485422e50f69c318
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:fe:16:91:86:c3:4d:17:61:6f:46:ea:3a:f2:
42:55:d3:61:63:f1:e6:bb:1c:a0:00:03:79:70:92:
84:f2:83:5a:33:16:29:d4:59:86:10:d1:20:fa:ab:
89:1d:9b:f2:e8:19:92:c1:c6:01:a7:7a:49:84:40:
c7:18:c6:6a:a7:53:c5:99:d8:54:04:ec:c7:ba:98:
39:2e:3c:3a:a8:e5:fc:ab:15:08:f3:37:dc:41:30:
ac:50:66:19:57:4a:b3:37:ad:c1:e2:68:33:83:3e:
8b:e7:68:80:da:ff:0d:cb:db:79:a6:a3:fa:af:a5:
bc:ed:05:67:47:4b:50:32:bc:42:01:30:8a:05:b3:
6d:66:da:d8:70:07:5d:2c:5d:f9:20:33:5a:52:78:
d8:7d:b6:26:72:d3:40:de:0b:62:6e:0a:f2:68:e8:
a9:0f:42:36:4d:4d:46:88:55:63:f8:2c:6f:71:99:
b5:21:74:fd:f8:42:67:b5:f2:62:8d:4c:e4:7c:98:
43:11:82:58:2a:56:73:70:22:13:75:fb:4a:40:d4:
4e:a5:d0:61:a7:1d:e8:7b:38:9e:dc:5b:c1:c8:d0:
b3:66:a4:6b:6f:d6:5a:56:70:05:ea:24:eb:00:ca:
3c:78:77:d1:01:e2:26:84:a4:3c:1a:2d:9a:ad:d8:
3e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:E7:5F:52:AB:53:69:A7:6C:8C:A2:26:48:54:22:E5:0F:69:C3:18
X509v3 Authority Key Identifier:
keyid:70:7F:3D:AB:AE:E2:4F:C4:3B:86:5A:AF:A3:F3:C9:C2:F3:64:BF:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cH89q67iT8Q7hlqvo_PJwvNkv8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/88cc50-2273-45ff-adb5-eccd665f1f03/1/EudfUqtTaadsjKImSFQi5Q9pwxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/88cc50-2273-45ff-adb5-eccd665f1f03/1/cH89q67iT8Q7hlqvo_PJwvNkv8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.23.168.0/22
Signature Algorithm: sha256WithRSAEncryption
31:24:a6:74:01:ac:0e:e8:25:f7:84:95:9d:0e:2e:7c:8e:6d:
47:82:6b:36:97:58:1b:f3:30:f6:ef:be:42:5b:6d:d5:86:10:
eb:1e:05:fd:b1:70:a8:01:09:be:79:08:dd:ee:2a:bf:34:a8:
59:78:13:8c:8f:60:d1:7f:a5:21:1f:86:63:30:f7:07:99:2a:
d6:e9:83:0b:04:2f:ea:8f:fc:7c:90:44:43:70:1d:6b:1a:01:
19:da:5b:24:0f:1e:ff:2f:fe:fd:2b:32:a9:1f:89:a5:48:18:
ee:9f:1e:63:bf:81:09:01:b5:61:00:67:86:08:24:96:d6:08:
b3:55:9f:c6:ab:f9:74:38:3f:36:ab:e7:1a:d1:34:d0:95:ac:
79:c5:b7:ef:94:e1:c3:1d:86:78:e4:d2:0a:36:5d:ff:86:59:
7f:05:81:47:40:98:a2:28:de:b0:96:69:4b:a5:1f:8f:b0:94:
a8:fa:02:c5:3f:a6:8c:a2:74:73:ae:ea:f2:f6:0f:b7:74:c3:
88:e8:04:0b:06:19:d3:ee:6d:5f:1b:8a:50:39:f6:99:50:ba:
27:94:9b:59:af:ae:46:85:85:8f:f2:d8:98:09:14:91:1c:a2:
8c:62:7c:d9:4e:08:ba:3e:7c:c3:9b:13:3e:7b:6a:f0:11:19:
92:b6:30:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:48 2023 by rpki-client on console-ams.rpki-client.org