Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/eL3eMDGQu7HiIBZYmbSKWWKxYS0.roa
File: eL3eMDGQu7HiIBZYmbSKWWKxYS0.roa (raw, json)
Hash identifier: 17Xo077kQKwNnCm4MnvFDFt3muKbAOXbpVEXoTzHg5I=
Subject key identifier: 78:BD:DE:30:31:90:BB:B1:E2:20:16:58:99:B4:8A:59:62:B1:61:2D
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 0183EED0EC36C9128A8EB8CB9DE063FF980C
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/eL3eMDGQu7HiIBZYmbSKWWKxYS0.roa
Signing time: Wed 19 Oct 2022 05:56:52 +0000
ROA not before: Wed 19 Oct 2022 05:56:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57428
IP address blocks: 164.215.101.0/24 maxlen: 24
109.205.215.0/24 maxlen: 24
88.151.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ee:d0:ec:36:c9:12:8a:8e:b8:cb:9d:e0:63:ff:98:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Oct 19 05:56:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78bdde303190bbb1e220165899b48a5962b1612d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:46:03:8a:3c:e3:5c:ef:1b:62:23:8f:69:ef:
0f:91:bf:47:b0:8b:3b:3e:fa:3e:c7:3e:21:d7:db:
07:b7:a1:e1:38:79:90:c2:9d:a7:0b:f9:2b:3e:8e:
61:47:66:49:19:be:a3:2c:8d:45:cb:c9:b2:4f:d6:
c8:e1:23:da:d2:de:a7:39:6b:04:ab:dd:3d:d8:8b:
d7:59:04:d7:c9:ad:44:ac:09:64:96:d7:39:5e:69:
59:09:da:76:5e:45:e3:15:e0:c3:f1:f8:12:b6:75:
16:f1:44:12:68:07:64:20:dc:77:80:38:4f:8b:d3:
97:6b:a5:d2:bc:42:8d:ab:3f:cd:9e:04:a4:cd:dd:
d6:c0:5b:1f:16:60:56:df:87:19:74:28:c5:f4:cf:
73:63:a1:f9:08:a9:f4:c3:eb:1f:51:30:1e:93:8c:
27:b3:eb:89:a7:a2:cb:7d:df:83:f3:fc:5a:41:48:
09:24:63:5c:06:a4:02:36:86:8b:df:19:60:fc:c4:
20:b3:ac:aa:56:6e:7c:6e:20:5e:fa:55:cb:8f:08:
d5:bc:8f:b2:c6:b3:16:8b:26:69:3f:4b:b9:0e:d4:
2a:b1:b9:08:9d:f0:2b:b3:81:6a:69:33:ea:a3:b1:
85:a2:79:5f:cb:7b:d6:2c:d0:8a:76:af:9e:94:a4:
2d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:BD:DE:30:31:90:BB:B1:E2:20:16:58:99:B4:8A:59:62:B1:61:2D
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/eL3eMDGQu7HiIBZYmbSKWWKxYS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.199.0/24
109.205.215.0/24
164.215.101.0/24
Signature Algorithm: sha256WithRSAEncryption
08:16:5b:65:1a:fc:f1:06:14:af:1f:b7:44:d2:81:4b:df:e3:
e2:9b:fc:5d:df:ca:ff:4d:cf:b5:7d:a0:b9:a8:ef:01:11:b7:
c5:b4:3d:a5:f7:2d:26:c4:b4:ff:86:3f:d9:da:b9:fc:23:2f:
c7:2d:90:c6:0b:f5:60:c7:73:a1:c1:1a:a3:44:d3:5d:12:9e:
34:42:af:a0:83:70:00:bf:7e:d3:57:ef:98:20:97:9f:b0:69:
b5:ff:83:69:01:0b:44:68:4f:43:91:08:e3:be:51:34:82:5c:
56:aa:16:e0:b6:21:fd:a0:b8:4c:89:8d:a2:41:e2:a8:4a:df:
7a:f2:6d:1e:e2:fd:36:b4:60:84:eb:93:66:5b:c8:c3:f4:77:
19:e2:38:d3:6b:40:54:f0:a5:e3:e0:02:9e:d5:6d:aa:04:8b:
45:ce:76:ac:2e:cc:61:1d:f8:f8:f6:46:d5:87:4e:57:8c:a1:
22:02:f2:41:a1:08:fc:a4:49:cc:e1:f8:a9:fa:6c:2c:65:4b:
80:76:2f:6b:5d:1f:7f:85:77:63:0f:9a:1a:bc:c6:3c:be:cf:
98:0b:34:9e:93:18:3c:a0:80:79:b5:ad:4d:75:5b:bb:68:8c:
9e:e8:21:bc:a0:e7:62:68:2e:f8:60:05:5f:19:db:d5:26:c5:
4d:c6:b0:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:51 2023 by rpki-client on console-ams.rpki-client.org