Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/7df859-2851-43c3-a32b-ab04720930cf/1/AE3mkhBsrPy_0YoH8UlvvwPIoyM.roa
File: AE3mkhBsrPy_0YoH8UlvvwPIoyM.roa (raw, json)
Hash identifier: mlyXQUNqvSZDEch7Z4kekmlLWMtl9nF3MZ5tYewb6Ow=
Subject key identifier: 00:4D:E6:92:10:6C:AC:FC:BF:D1:8A:07:F1:49:6F:BF:03:C8:A3:23
Certificate issuer: /CN=eaeea20bbbdb9a5d1cdc7114e2af518e76b1426e
Certificate serial: 01851028EC15A92D913818E11D35880B729B
Authority key identifier: EA:EE:A2:0B:BB:DB:9A:5D:1C:DC:71:14:E2:AF:51:8E:76:B1:42:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6u6iC7vbml0c3HEU4q9RjnaxQm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/7df859-2851-43c3-a32b-ab04720930cf/1/AE3mkhBsrPy_0YoH8UlvvwPIoyM.roa
Signing time: Wed 14 Dec 2022 10:23:15 +0000
ROA not before: Wed 14 Dec 2022 10:23:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 2.57.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:10:28:ec:15:a9:2d:91:38:18:e1:1d:35:88:0b:72:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaeea20bbbdb9a5d1cdc7114e2af518e76b1426e
Validity
Not Before: Dec 14 10:23:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=004de692106cacfcbfd18a07f1496fbf03c8a323
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:1c:11:0c:55:7a:4f:c9:9a:34:db:fd:e3:e7:
6e:e0:e1:91:05:d0:a8:82:e0:69:1a:ad:37:bf:37:
8f:cb:d5:72:e5:9e:cc:06:2e:74:52:55:bc:4a:96:
a9:cc:e2:60:cf:9b:3c:55:7f:86:69:70:d9:5d:eb:
3c:c2:77:20:06:d5:04:99:61:e9:72:97:72:c9:8f:
96:c5:cb:83:d5:2c:a1:0d:7a:02:47:3c:7c:8e:c5:
6b:23:85:37:81:91:86:17:42:67:2e:de:40:c2:21:
99:03:20:c8:bf:f2:95:3f:b2:02:29:13:c1:dd:10:
68:e6:ab:4d:7a:a2:e8:df:00:f1:c8:7b:da:18:c7:
a4:b2:8b:d5:8b:36:b5:e8:87:a3:25:f9:21:3d:a4:
41:bd:4b:ec:79:fa:40:3d:93:fe:05:c1:40:9a:5b:
1c:69:3c:c6:84:68:6c:5a:6e:bd:c5:ff:a4:4d:a7:
00:a6:b2:81:aa:ee:c3:84:1e:e4:53:51:ea:4c:55:
6c:48:69:bd:bd:0b:bd:b0:4d:72:5a:4b:5e:db:ca:
ca:73:a9:8e:c9:16:5e:bf:ff:d1:0a:6e:d7:0e:22:
72:f7:9f:5a:c0:60:75:21:f0:eb:11:88:6d:77:4d:
82:a0:1d:f0:66:e7:0e:7e:3e:31:48:ab:ad:bb:0a:
c3:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:4D:E6:92:10:6C:AC:FC:BF:D1:8A:07:F1:49:6F:BF:03:C8:A3:23
X509v3 Authority Key Identifier:
keyid:EA:EE:A2:0B:BB:DB:9A:5D:1C:DC:71:14:E2:AF:51:8E:76:B1:42:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6u6iC7vbml0c3HEU4q9RjnaxQm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/7df859-2851-43c3-a32b-ab04720930cf/1/AE3mkhBsrPy_0YoH8UlvvwPIoyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/7df859-2851-43c3-a32b-ab04720930cf/1/6u6iC7vbml0c3HEU4q9RjnaxQm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.12.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:4d:27:05:d4:db:87:9f:27:0c:63:5b:1f:63:9c:c9:a8:2e:
d3:fb:70:28:79:ed:de:68:80:75:eb:e8:88:f2:f8:06:41:1d:
cc:fa:db:57:e7:00:20:26:98:30:18:e8:ac:79:46:9e:17:ff:
b6:18:2a:5b:e5:ac:8b:8d:bc:87:d0:8d:bb:31:58:5c:2f:7a:
46:89:36:16:5f:87:56:52:0c:f3:2f:a8:6d:1e:ff:35:15:a8:
c7:c6:7e:3c:eb:0e:dd:de:24:c8:23:4d:d7:39:d2:f5:2f:63:
3f:74:e6:82:ac:86:d3:a3:db:31:dd:1f:c9:10:ec:37:de:c9:
28:1b:d8:1b:25:95:ca:63:ad:c6:61:c3:11:bc:e3:61:16:de:
27:75:09:17:98:93:b7:4f:92:07:7d:ca:10:d0:dc:39:5d:db:
c3:52:25:9c:0e:54:bc:60:09:8e:1e:d7:6c:27:26:1c:a7:18:
96:da:aa:0f:19:c1:5d:1c:da:75:8c:4e:76:dc:a6:86:91:c6:
2c:9b:c3:59:ef:e6:5d:9c:03:66:5e:5c:dd:6f:ff:32:a4:16:
bf:89:67:12:5e:df:79:00:9e:33:bb:ab:75:73:a8:39:6c:2c:
3d:ec:69:c2:ce:b4:72:b6:7e:72:18:6e:7c:b1:1e:8c:7f:71:
e9:b0:cf:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:48 2023 by rpki-client on console-ams.rpki-client.org