Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/9a4ef5-42fa-435f-a8fe-b1f4fc7522a0/1/Ey4ALFlgw0QVU8RBd-a3t4m8ouM.roa
File: Ey4ALFlgw0QVU8RBd-a3t4m8ouM.roa (raw, json)
Hash identifier: qJDqOc2a9ZyL1KgBnu2NGvffRTuMV2y0vKGZfzPAOV0=
Subject key identifier: 13:2E:00:2C:59:60:C3:44:15:53:C4:41:77:E6:B7:B7:89:BC:A2:E3
Certificate issuer: /CN=dce6e13e413baf381b625131e924e947843436f5
Certificate serial: 0184800555B0995095AA7E90FD9ED5616949
Authority key identifier: DC:E6:E1:3E:41:3B:AF:38:1B:62:51:31:E9:24:E9:47:84:34:36:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ObhPkE7rzgbYlEx6STpR4Q0NvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/9a4ef5-42fa-435f-a8fe-b1f4fc7522a0/1/Ey4ALFlgw0QVU8RBd-a3t4m8ouM.roa
Signing time: Wed 16 Nov 2022 10:39:04 +0000
ROA not before: Wed 16 Nov 2022 10:39:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6830
IP address blocks: 194.1.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:80:05:55:b0:99:50:95:aa:7e:90:fd:9e:d5:61:69:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dce6e13e413baf381b625131e924e947843436f5
Validity
Not Before: Nov 16 10:39:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=132e002c5960c3441553c44177e6b7b789bca2e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ec:12:8b:96:8f:1d:b7:fc:c7:e8:fe:e8:e5:
15:69:8c:71:f4:0f:7c:48:50:36:7f:c6:95:5f:d5:
ab:98:2a:b7:53:3d:55:0b:d0:97:9a:3a:62:c5:70:
2d:17:ad:5e:b6:85:6e:8f:ce:54:00:a0:c0:a5:29:
94:39:50:63:2f:59:60:cd:91:ff:fd:b7:22:91:36:
4e:05:52:d6:f1:b6:0a:c1:51:43:61:12:08:11:a9:
bf:4a:29:8d:0a:df:46:96:c4:80:9f:2a:64:fc:47:
98:ce:2e:bb:d3:b4:94:fe:af:73:17:9a:a1:66:b1:
15:3b:ed:22:6f:d1:5a:98:bf:d8:5a:90:71:e9:ee:
ef:8d:2a:36:02:15:5d:a3:62:1e:d5:52:a3:c6:8b:
80:09:61:11:5b:4a:86:37:2b:16:de:15:88:da:ee:
96:0b:3f:af:7d:a5:dc:13:a0:e9:b4:ff:53:ad:24:
fb:23:43:ce:a2:c4:0b:24:f1:86:04:4d:52:f0:91:
4d:13:44:4a:3d:55:85:a6:9e:d5:b4:40:3a:83:e9:
03:47:55:58:f0:f9:6f:cd:8e:b2:91:74:9c:a9:9f:
e7:0e:c9:bc:06:1b:cc:16:32:4c:51:a6:bd:3a:fc:
44:f1:ff:ad:a6:58:a9:c8:f4:6f:cc:63:ec:a5:30:
77:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:2E:00:2C:59:60:C3:44:15:53:C4:41:77:E6:B7:B7:89:BC:A2:E3
X509v3 Authority Key Identifier:
keyid:DC:E6:E1:3E:41:3B:AF:38:1B:62:51:31:E9:24:E9:47:84:34:36:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ObhPkE7rzgbYlEx6STpR4Q0NvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/9a4ef5-42fa-435f-a8fe-b1f4fc7522a0/1/Ey4ALFlgw0QVU8RBd-a3t4m8ouM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/9a4ef5-42fa-435f-a8fe-b1f4fc7522a0/1/3ObhPkE7rzgbYlEx6STpR4Q0NvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.1.245.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:ab:c8:b1:7d:e2:f8:29:14:cd:08:81:69:dd:91:1b:7c:d6:
71:69:e5:26:8c:d3:5f:eb:91:75:e6:69:08:15:46:b3:7a:4d:
89:19:d9:aa:c1:dc:22:df:9d:37:b4:3b:06:b6:7b:5b:0a:bc:
5f:91:41:e7:13:37:4e:a0:5c:7c:20:c0:10:b4:33:88:a5:7d:
bb:2b:bd:d3:8d:d1:00:65:90:25:a9:65:99:88:54:74:bd:18:
43:4e:cf:d2:75:21:36:47:c0:9e:39:37:18:28:92:97:f5:ab:
dd:3e:50:31:99:30:3c:a1:ff:81:8b:c4:9e:97:2b:28:ba:c7:
16:b9:2c:2d:6b:c8:7d:47:1f:c3:81:8f:21:52:2b:bf:31:af:
90:01:1e:dc:de:97:90:bb:5a:b2:12:81:52:87:8d:b6:fe:cb:
c3:12:7e:d1:20:18:62:c6:21:d2:e6:f8:18:9b:34:48:df:6c:
cc:e9:83:82:66:c2:27:dd:61:45:0f:55:2b:59:88:07:9c:c0:
e0:d9:e0:03:c8:04:06:f9:95:0e:a8:49:01:c6:a9:db:ce:f7:
36:6e:96:d7:28:ca:e5:f6:63:3a:d4:d9:af:08:f2:b7:3a:21:
fb:5b:b0:6c:12:5f:d0:48:13:10:fc:f8:0f:6f:a6:e2:e6:f4:
c5:68:a6:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:34 2023 by rpki-client on console-fra.rpki-client.org