Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/c522d7-a489-4b76-9348-37624f6a5311/1/EQTO6FJHHN7stoBXfl3sDmIdh8M.roa
File: EQTO6FJHHN7stoBXfl3sDmIdh8M.roa (raw, json)
Hash identifier: mM1JgUFuAUOYM8gSL5yqtHhHjBJa6COxl1SoLXSSo5I=
Subject key identifier: 11:04:CE:E8:52:47:1C:DE:EC:B6:80:57:7E:5D:EC:0E:62:1D:87:C3
Certificate issuer: /CN=f0a115c717e589134a553670f3e2b5b9cda12d83
Certificate serial: 023B3D
Authority key identifier: F0:A1:15:C7:17:E5:89:13:4A:55:36:70:F3:E2:B5:B9:CD:A1:2D:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8KEVxxfliRNKVTZw8-K1uc2hLYM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/c522d7-a489-4b76-9348-37624f6a5311/1/EQTO6FJHHN7stoBXfl3sDmIdh8M.roa
Signing time: Thu 21 Apr 2022 13:05:33 +0000
ROA not before: Thu 21 Apr 2022 13:05:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42424
IP address blocks: 194.126.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146237 (0x23b3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0a115c717e589134a553670f3e2b5b9cda12d83
Validity
Not Before: Apr 21 13:05:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1104cee852471cdeecb680577e5dec0e621d87c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:9e:5f:90:33:86:d2:49:04:ce:a2:45:fb:60:
b5:b6:e6:58:b5:87:2e:04:1e:cc:4c:a0:39:d9:e2:
a1:76:17:bd:40:a1:6f:d4:48:07:6a:89:ff:52:63:
f7:28:31:3f:2c:d5:a1:09:49:35:7e:78:92:fc:d3:
cd:72:e1:31:9a:42:4d:e2:2c:9d:d7:60:19:f9:d1:
8b:ea:08:7c:4d:37:a0:9b:13:25:0a:df:54:2c:bf:
9c:f2:91:33:af:dd:74:98:3f:6b:1d:65:cf:7a:3a:
7e:63:19:bd:91:57:0c:f3:dc:e0:35:0f:7a:13:6d:
fc:0f:1e:8a:62:e5:d0:be:b2:3a:33:92:27:1d:fb:
d5:d0:5f:42:3f:b6:4e:9a:3a:f3:36:f8:60:74:a6:
2d:fd:72:82:70:5f:29:51:a1:01:e1:4d:21:81:1a:
85:04:d6:4a:2c:55:b8:bc:41:ec:97:a0:88:e8:eb:
72:69:72:65:12:7f:d4:5d:9b:4d:19:04:78:78:d4:
64:34:f6:c4:3b:d9:43:c1:fc:db:75:c3:3a:90:85:
1e:a2:a0:3c:55:80:d3:9a:e9:ef:57:1c:dc:0c:75:
c3:3d:7a:b1:c3:69:d5:a0:e3:67:51:dc:a9:dd:40:
1b:69:81:4d:78:5b:e3:05:2e:b1:68:63:7c:87:0f:
5f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:04:CE:E8:52:47:1C:DE:EC:B6:80:57:7E:5D:EC:0E:62:1D:87:C3
X509v3 Authority Key Identifier:
keyid:F0:A1:15:C7:17:E5:89:13:4A:55:36:70:F3:E2:B5:B9:CD:A1:2D:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8KEVxxfliRNKVTZw8-K1uc2hLYM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/c522d7-a489-4b76-9348-37624f6a5311/1/EQTO6FJHHN7stoBXfl3sDmIdh8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/c522d7-a489-4b76-9348-37624f6a5311/1/8KEVxxfliRNKVTZw8-K1uc2hLYM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.126.146.0/24
Signature Algorithm: sha256WithRSAEncryption
76:a4:48:93:c3:1f:90:9d:23:d9:6a:8f:d7:ec:0b:8c:b0:16:
98:83:db:56:41:f4:26:f9:80:08:86:e1:6d:0e:98:3a:b4:2c:
e2:a1:14:16:1e:82:dc:83:17:2c:97:1d:96:23:c5:8d:72:7a:
b5:fc:16:32:09:3a:a6:44:0a:53:75:19:22:2a:01:15:55:61:
3b:01:8a:bd:3d:56:cd:7c:d9:e6:5d:92:64:2a:ca:b4:5f:3a:
a6:e8:bb:1e:50:11:82:62:aa:1f:60:3a:42:a9:1a:c8:14:47:
34:a2:9a:a8:1f:b9:54:ee:60:2f:c1:75:e3:8a:e4:d7:ae:9d:
ce:16:57:e8:32:8b:a7:9f:ee:fb:bf:03:a1:c6:41:bf:d3:25:
62:65:a4:54:82:ff:f0:ce:3a:3b:3a:24:44:6e:35:eb:f6:b3:
43:fc:8d:e0:7c:6b:ca:95:4a:b4:6f:fa:56:2c:fe:99:ba:49:
d2:e2:36:cc:73:7a:bb:a3:a1:ee:e4:a0:74:2d:ad:ec:d6:b1:
19:b0:25:6b:a3:a7:be:29:e2:8f:0b:2c:11:d6:26:c4:74:e4:
61:5e:84:af:d8:91:1a:1f:35:f2:85:80:08:ff:d3:a6:cd:be:
66:19:36:df:c2:b6:41:1e:77:8b:4b:91:1e:35:0a:13:03:58:
bc:86:0b:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:32 2023 by rpki-client on console-ams.rpki-client.org