Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/rCEye3keV7fe5yBSDMdgGx5QT4U.roa
File: rCEye3keV7fe5yBSDMdgGx5QT4U.roa (raw, json)
Hash identifier: 2WSrfUwcjXIZ8jIap5KwWb/oteeibGQAWvWzVStjoTk=
Subject key identifier: AC:21:32:7B:79:1E:57:B7:DE:E7:20:52:0C:C7:60:1B:1E:50:4F:85
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 0184435BF26D8329EA83374A808C095879B9
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/rCEye3keV7fe5yBSDMdgGx5QT4U.roa
Signing time: Fri 04 Nov 2022 15:56:50 +0000
ROA not before: Fri 04 Nov 2022 15:56:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56769
IP address blocks: 192.162.67.0/24 maxlen: 24
192.162.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:43:5b:f2:6d:83:29:ea:83:37:4a:80:8c:09:58:79:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Nov 4 15:56:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac21327b791e57b7dee720520cc7601b1e504f85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f8:2e:3f:ec:53:3c:23:c3:3f:bd:9a:d1:8b:
d8:c6:33:b5:ec:64:d6:9a:f1:47:01:69:a0:8a:63:
22:1b:c2:ee:e6:67:7b:1c:de:61:ab:da:68:29:28:
3a:09:67:1e:36:b4:d0:53:94:a4:d2:f6:51:6f:e5:
a3:f5:4e:b7:db:79:e6:e8:12:51:0d:33:c1:23:54:
f2:3b:b5:5c:3e:65:c3:d2:92:08:c6:bf:65:29:9a:
e3:37:bc:46:98:e7:60:58:d4:d3:46:07:37:65:b2:
4d:29:44:0f:69:e2:5a:dd:62:6b:0a:57:f1:00:ba:
e5:71:4d:24:25:cc:9d:1c:8d:44:9f:ad:8f:ac:48:
e0:a5:f4:13:ad:ab:b3:a3:d6:71:64:c2:0d:6d:7b:
7c:14:1b:0c:e0:8e:50:26:55:a1:63:b9:52:dd:4c:
9e:1e:fc:17:a4:89:b0:83:84:7e:61:cc:ae:d9:cc:
9d:6b:41:83:56:9e:14:d2:de:6a:40:78:b1:7b:40:
38:2e:1a:3d:c0:20:9e:fa:a3:4a:f8:61:6f:04:24:
51:10:88:e1:7d:73:7d:57:9b:54:c5:73:34:36:6d:
8b:4a:22:f0:dc:12:77:fe:08:d6:fc:fa:7e:db:bb:
69:76:65:9d:95:3e:08:fa:87:f2:fa:e1:19:58:49:
e7:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:21:32:7B:79:1E:57:B7:DE:E7:20:52:0C:C7:60:1B:1E:50:4F:85
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/rCEye3keV7fe5yBSDMdgGx5QT4U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.162.66.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:de:77:33:08:6d:46:f6:3c:24:7e:b6:07:4c:90:16:a5:55:
19:11:e2:45:67:7b:5f:d8:c3:ed:83:d2:32:95:f8:92:e1:8d:
e7:42:b6:c7:b0:94:27:92:20:ff:0c:f8:20:4d:5b:6f:4a:7d:
f8:22:f8:17:7f:03:86:75:ce:fa:8d:8f:36:91:3a:d3:8f:f1:
7e:be:05:aa:a1:08:a5:ad:12:35:62:b5:8b:cb:8b:56:31:b5:
2d:59:9d:22:bf:a8:24:8c:46:99:fe:51:74:83:bf:a3:96:b5:
b4:cc:2d:31:0c:b6:1e:3e:57:53:17:61:7c:b4:5b:d8:98:e6:
7c:9e:3e:f5:80:20:d8:c3:91:27:17:dd:e8:cb:4b:09:dd:fe:
d2:3d:30:24:49:a9:1c:10:09:0c:15:0c:5e:ec:aa:84:f4:ed:
dd:8a:f2:cc:78:6b:82:88:aa:d0:92:c5:8e:cb:53:a3:c7:72:
5d:6a:49:4f:c9:ee:48:1e:ea:f1:3a:37:e8:d9:bd:7e:de:b6:
39:96:e1:72:d5:24:40:89:c0:8d:a7:f0:85:fb:d7:2b:4c:3f:
51:89:3b:27:24:f9:cf:94:31:31:5b:c1:e4:3b:68:0f:b0:e1:
bd:11:27:25:a3:cf:ca:57:c8:0f:aa:8b:f1:40:c1:4b:a1:ad:
7a:0f:a1:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:01 2024 by rpki-client on console-fra.rpki-client.org