Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/7df859-2851-43c3-a32b-ab04720930cf/1/rjAPyj6WVvmfm8VIV7ktrdA2PhA.roa
File: rjAPyj6WVvmfm8VIV7ktrdA2PhA.roa (raw, json)
Hash identifier: SsCoPcgLsHt/WZayhQKIk0g98xBV4i17we87NEu3j58=
Subject key identifier: AE:30:0F:CA:3E:96:56:F9:9F:9B:C5:48:57:B9:2D:AD:D0:36:3E:10
Certificate issuer: /CN=eaeea20bbbdb9a5d1cdc7114e2af518e76b1426e
Certificate serial: 01851028EC8B9991589BAEEC09FCF4F58F1A
Authority key identifier: EA:EE:A2:0B:BB:DB:9A:5D:1C:DC:71:14:E2:AF:51:8E:76:B1:42:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6u6iC7vbml0c3HEU4q9RjnaxQm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/7df859-2851-43c3-a32b-ab04720930cf/1/rjAPyj6WVvmfm8VIV7ktrdA2PhA.roa
Signing time: Wed 14 Dec 2022 10:23:15 +0000
ROA not before: Wed 14 Dec 2022 10:23:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 2.57.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:10:28:ec:8b:99:91:58:9b:ae:ec:09:fc:f4:f5:8f:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaeea20bbbdb9a5d1cdc7114e2af518e76b1426e
Validity
Not Before: Dec 14 10:23:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae300fca3e9656f99f9bc54857b92dadd0363e10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d3:52:4f:13:ed:09:d9:2e:91:3c:4f:ae:23:
89:c4:58:64:af:4b:70:e0:ac:32:9a:0c:56:07:1e:
8e:b9:3e:c0:e1:90:5c:b0:b7:d4:93:cc:cc:a2:69:
0b:40:a2:3b:9a:fd:0c:ec:e1:7f:c2:fc:08:62:7d:
be:e5:2b:5d:6c:ae:1a:5c:ed:eb:22:5a:1d:bc:6a:
99:db:e1:32:70:74:f4:a4:91:4c:e0:f2:ac:65:71:
e7:57:f2:00:6e:7f:75:90:c0:aa:57:69:fd:bc:3c:
7f:58:f8:23:89:2e:4b:07:87:8b:01:3b:32:00:ed:
0e:48:f8:10:50:ce:41:38:83:1b:2e:20:e1:1b:50:
d1:ed:91:5e:02:63:ac:ac:63:60:06:97:7c:83:ac:
cb:38:ad:5a:2e:45:6b:4c:04:ba:4f:7a:a6:ee:70:
a0:d4:cf:f0:13:41:16:88:be:69:c7:32:8b:4a:49:
3b:7c:d7:29:8d:80:81:41:2d:25:c7:cf:95:ac:f5:
18:46:59:1b:10:e9:ed:ab:ca:09:46:5a:65:93:0f:
47:25:e3:17:7c:71:02:94:e0:e8:a2:f7:a1:8a:33:
c8:a8:6d:bc:88:0c:b7:de:19:57:5d:82:ca:19:73:
ca:22:fd:6f:aa:33:97:8b:10:7f:bc:6c:89:7f:ca:
c3:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:30:0F:CA:3E:96:56:F9:9F:9B:C5:48:57:B9:2D:AD:D0:36:3E:10
X509v3 Authority Key Identifier:
keyid:EA:EE:A2:0B:BB:DB:9A:5D:1C:DC:71:14:E2:AF:51:8E:76:B1:42:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6u6iC7vbml0c3HEU4q9RjnaxQm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/7df859-2851-43c3-a32b-ab04720930cf/1/rjAPyj6WVvmfm8VIV7ktrdA2PhA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/7df859-2851-43c3-a32b-ab04720930cf/1/6u6iC7vbml0c3HEU4q9RjnaxQm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.12.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:9a:7a:ce:9d:a1:7c:cf:64:9f:71:38:00:54:f8:03:f5:7c:
a1:db:e6:46:4a:fe:34:a6:3b:9f:47:c5:33:a2:8b:b9:3a:2e:
f2:4e:1f:ed:f9:4c:2a:3c:23:1d:bb:f0:7e:ea:d6:04:4f:99:
46:f3:0e:53:25:20:44:61:36:b8:fc:59:c9:22:fa:94:40:7f:
be:af:f2:71:8e:37:07:31:8b:0a:62:01:a5:39:5f:0d:5c:cc:
f5:74:91:3e:4a:66:1c:69:87:b5:53:0f:8f:b9:fb:ca:39:a1:
5e:59:00:88:62:90:9f:e4:f4:08:40:b7:34:2d:ed:94:3e:c7:
40:ab:b7:16:fd:96:18:d5:dc:34:ad:11:25:14:a2:d8:f6:65:
dc:3d:8e:fd:a2:dd:2e:b3:2f:3b:b6:ac:e5:8e:72:8a:02:3f:
5e:c8:44:7e:75:5f:28:02:4c:a5:5a:65:70:18:85:b8:af:77:
03:30:e6:ae:ed:93:27:a5:d4:99:7b:52:7e:bb:29:0a:36:56:
9d:c4:c3:49:75:21:69:94:c3:cb:90:f9:78:a9:93:6b:4f:d7:
c3:e2:f0:ce:72:97:1c:ef:ba:97:11:d4:c1:5a:be:1c:9a:23:
2a:5a:03:96:84:de:12:b8:18:df:4b:cb:07:00:09:8a:16:17:
c7:cb:04:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:58 2023 by rpki-client on console-fra.rpki-client.org