Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/a4141d-8498-42f4-b2f3-1f6409848150/1/EFWEKRDAL5lFD4sbuoHGqXZCc8o.roa
File: EFWEKRDAL5lFD4sbuoHGqXZCc8o.roa (raw, json)
Hash identifier: +E1gSzWWXqTbaTzALf8LlzlZEqsG/PiTNtc7jLdbT00=
Subject key identifier: 10:55:84:29:10:C0:2F:99:45:0F:8B:1B:BA:81:C6:A9:76:42:73:CA
Certificate issuer: /CN=bfb493457b2f02e69b85f718dcc16a9a9ef0fcd1
Certificate serial: 0184D2D77F0ADBFE7B5E7CC87016417747B0
Authority key identifier: BF:B4:93:45:7B:2F:02:E6:9B:85:F7:18:DC:C1:6A:9A:9E:F0:FC:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7STRXsvAuabhfcY3MFqmp7w_NE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/a4141d-8498-42f4-b2f3-1f6409848150/1/EFWEKRDAL5lFD4sbuoHGqXZCc8o.roa
Signing time: Fri 02 Dec 2022 12:37:28 +0000
ROA not before: Fri 02 Dec 2022 12:37:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 93.94.3.0/24 maxlen: 24
2a03:1e03::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d2:d7:7f:0a:db:fe:7b:5e:7c:c8:70:16:41:77:47:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfb493457b2f02e69b85f718dcc16a9a9ef0fcd1
Validity
Not Before: Dec 2 12:37:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1055842910c02f99450f8b1bba81c6a9764273ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ee:a1:a4:9e:0b:6a:c0:d2:95:00:6d:cf:fd:
44:93:2c:42:a5:ec:95:9a:b7:67:a2:3d:9d:c7:2c:
b6:fe:18:50:3c:0f:17:46:02:ba:d5:cb:df:06:4b:
1a:04:8e:7f:3c:37:4b:39:65:d5:8b:47:e6:fe:b8:
25:b2:aa:00:5d:54:2c:db:e6:dd:ae:36:9b:11:8d:
00:24:69:fa:d8:54:25:51:b8:e4:bc:07:80:7e:4d:
7a:30:a4:85:d8:bd:39:c3:0c:5c:43:f1:cc:1c:d8:
07:96:14:78:f3:c5:83:40:b2:49:e4:bc:df:de:53:
7a:02:4d:6d:ab:28:de:6c:6e:52:2f:7a:b2:ea:42:
70:f6:63:31:d8:fe:07:91:92:eb:c2:0f:82:a2:33:
1c:44:67:c0:bc:42:8d:63:74:7b:65:44:46:af:56:
88:03:87:86:be:97:b9:29:32:6b:75:56:8d:5d:88:
57:f7:03:10:5c:09:9c:22:ac:6f:57:e3:7e:ff:c4:
0f:b0:9e:0b:7f:82:91:48:a2:50:02:2d:12:68:24:
fa:04:42:ac:ca:cd:f8:bc:af:0e:c9:6d:60:bf:1d:
aa:7a:2b:b0:3e:cc:40:a8:59:03:ee:41:2a:81:e7:
60:46:ac:a2:54:e1:31:c9:23:3c:fc:12:9b:96:41:
6a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:55:84:29:10:C0:2F:99:45:0F:8B:1B:BA:81:C6:A9:76:42:73:CA
X509v3 Authority Key Identifier:
keyid:BF:B4:93:45:7B:2F:02:E6:9B:85:F7:18:DC:C1:6A:9A:9E:F0:FC:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7STRXsvAuabhfcY3MFqmp7w_NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/a4141d-8498-42f4-b2f3-1f6409848150/1/EFWEKRDAL5lFD4sbuoHGqXZCc8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/a4141d-8498-42f4-b2f3-1f6409848150/1/v7STRXsvAuabhfcY3MFqmp7w_NE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.94.3.0/24
IPv6:
2a03:1e03::/48
Signature Algorithm: sha256WithRSAEncryption
a2:4f:78:e4:5b:7d:2e:9c:19:21:d2:f2:74:c3:06:8b:cc:13:
f8:6f:80:aa:0c:b2:5f:8e:71:08:21:ca:f0:96:35:40:79:25:
6e:d5:c8:c8:99:16:00:38:e1:92:c1:36:75:d7:86:d3:6c:d0:
b3:86:fb:a8:ec:91:12:5a:eb:3c:50:6c:fb:bb:f2:ad:f5:17:
5a:d6:15:65:a9:1f:41:98:3d:73:91:e2:ab:82:b7:9b:d1:76:
73:cd:6d:5f:f8:e2:a7:fb:69:a8:3e:3c:bb:22:a8:db:ff:72:
ce:e6:af:fe:1f:2b:b3:b3:83:b0:1c:fd:b2:15:d8:ef:a6:8b:
68:30:da:0f:1b:4b:da:a2:87:b9:c6:35:d2:c1:41:2b:6a:5a:
4c:da:74:8a:93:44:9d:8a:c9:a5:f0:4c:4f:15:ff:84:65:44:
33:cd:46:f2:6b:8e:e0:75:22:74:be:a2:34:49:45:31:39:8a:
ef:81:22:f6:23:b6:2b:c2:84:5e:11:09:ff:34:45:f3:04:32:
ba:98:a5:41:ae:43:3a:c9:76:87:00:fd:51:1f:4b:bd:e3:de:
74:82:08:e5:d2:87:ec:77:f2:21:21:e7:29:62:5b:17:a8:c4:
83:03:cd:46:31:88:c0:53:1a:5e:fb:ca:4a:ed:df:57:e3:b1:
0e:7e:dd:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:41 2025 by rpki-client