Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/4b0283-a90c-4d64-8301-d221ebd0818d/1/3EjsOmEG0A2LZW1yAjBe4uH2CWM.roa
File: 3EjsOmEG0A2LZW1yAjBe4uH2CWM.roa (raw, json)
Hash identifier: nIyVj8LEP3fTPOxBh1MkeRwSg8sj03q/64Y3yVdIvlw=
Subject key identifier: DC:48:EC:3A:61:06:D0:0D:8B:65:6D:72:02:30:5E:E2:E1:F6:09:63
Certificate issuer: /CN=9bed36af13da482fdf79fb5403e5074860eecd0d
Certificate serial: 036FA8A5
Authority key identifier: 9B:ED:36:AF:13:DA:48:2F:DF:79:FB:54:03:E5:07:48:60:EE:CD:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m-02rxPaSC_feftUA-UHSGDuzQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/4b0283-a90c-4d64-8301-d221ebd0818d/1/3EjsOmEG0A2LZW1yAjBe4uH2CWM.roa
Signing time: Mon 20 Jun 2022 10:24:47 +0000
ROA not before: Mon 20 Jun 2022 10:24:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199311
IP address blocks: 134.19.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57649317 (0x36fa8a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bed36af13da482fdf79fb5403e5074860eecd0d
Validity
Not Before: Jun 20 10:24:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc48ec3a6106d00d8b656d7202305ee2e1f60963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:ca:e8:0e:47:32:a0:c2:51:00:d2:d6:e5:fc:
85:26:63:30:64:f7:84:2d:43:34:46:3b:7a:42:b1:
8e:22:fa:f1:20:ff:28:a7:2c:77:8b:98:2f:be:dc:
9a:62:b3:58:98:97:f2:b9:76:43:04:34:65:2b:9c:
0e:7e:8b:ed:18:7f:52:ec:7a:dd:0b:6f:0d:bc:82:
cb:7f:df:63:b6:9b:99:30:5f:be:21:be:3d:51:3c:
94:41:15:b4:c1:f5:d2:6c:86:0f:0a:ec:d6:ca:09:
87:ef:5a:e4:35:d8:b7:6f:46:ec:70:18:42:08:27:
0d:bb:4a:5e:16:92:b0:b6:4b:54:43:24:6b:f2:f7:
5f:7f:5a:fb:a8:15:bf:cc:c9:5a:2e:ed:a3:b2:a6:
25:68:1e:a6:cc:4d:44:18:18:dc:a6:08:31:9f:4e:
2b:40:8c:17:85:0d:b2:ee:4f:f1:6b:8a:de:2d:83:
84:7a:23:3d:76:a3:d4:06:56:68:a0:ca:e2:06:ae:
1a:63:5e:a6:a4:ce:8c:1d:11:9a:da:7b:0c:9a:3b:
dd:c1:47:83:f2:41:e3:fe:70:55:1d:85:6a:9c:9c:
94:93:32:ab:d4:c8:4d:76:26:20:81:29:f2:d2:7d:
01:3c:b4:cb:76:e7:7d:98:8e:0b:a6:c2:0a:12:a0:
74:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:48:EC:3A:61:06:D0:0D:8B:65:6D:72:02:30:5E:E2:E1:F6:09:63
X509v3 Authority Key Identifier:
keyid:9B:ED:36:AF:13:DA:48:2F:DF:79:FB:54:03:E5:07:48:60:EE:CD:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m-02rxPaSC_feftUA-UHSGDuzQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4b0283-a90c-4d64-8301-d221ebd0818d/1/3EjsOmEG0A2LZW1yAjBe4uH2CWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4b0283-a90c-4d64-8301-d221ebd0818d/1/m-02rxPaSC_feftUA-UHSGDuzQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.19.220.0/24
Signature Algorithm: sha256WithRSAEncryption
06:7a:d7:e6:24:2c:0f:d0:21:58:80:93:15:55:13:2f:bf:b7:
5f:eb:11:1a:9a:b1:07:3e:cd:c9:30:f7:50:3e:ff:0f:0e:a0:
2e:37:c9:73:52:03:3f:a2:ae:a1:83:9c:c8:02:ca:b9:4c:c0:
1b:fc:69:f3:07:c1:c2:b8:b9:2e:8a:8b:d6:38:e3:3c:bb:52:
e3:99:9b:69:22:d7:df:04:a8:91:93:0e:20:b5:fd:ef:78:ba:
41:c4:02:80:d8:33:7e:d4:32:7c:e4:c8:f8:ce:b2:44:39:f6:
85:ce:8c:bf:1f:c6:a3:71:d1:04:da:b8:d1:cd:c2:cb:fc:b5:
4d:ff:01:59:1a:88:5c:ae:37:01:6e:39:0b:a7:d1:da:06:df:
d2:e4:ff:25:22:62:95:83:40:8f:d5:ca:76:33:13:57:94:53:
eb:eb:36:83:c7:42:ed:38:af:5b:61:04:4a:56:6a:cd:40:12:
1e:86:c5:89:8b:42:27:b5:83:52:09:ed:d2:fe:d2:8b:cc:79:
39:61:7f:a0:f4:1a:cc:cf:cd:a7:41:11:d5:b7:d1:43:70:47:
1c:79:60:51:43:1f:06:39:ad:70:4f:1d:b2:26:f4:c8:28:6a:
26:7a:0b:21:0a:c9:78:c4:f3:36:56:8b:fd:04:b5:97:ba:17:
bb:c8:e7:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:37 2023 by rpki-client on console.sobornost.net