Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/8c9495-e709-4a3d-babd-76ad54bfaaab/1/oGBZQ2tqMKnDW3glyMgyvny_YtI.roa
File: oGBZQ2tqMKnDW3glyMgyvny_YtI.roa (raw, json)
Hash identifier: DJ8f5Z/IkFtP3Rs3iQLQELX50ECSFmDz1niOPsHFC7k=
Subject key identifier: A0:60:59:43:6B:6A:30:A9:C3:5B:78:25:C8:C8:32:BE:7C:BF:62:D2
Certificate issuer: /CN=47c87cf93dc67baa74dacf242cde6c797fa840eb
Certificate serial: 021375
Authority key identifier: 47:C8:7C:F9:3D:C6:7B:AA:74:DA:CF:24:2C:DE:6C:79:7F:A8:40:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R8h8-T3Ge6p02s8kLN5seX-oQOs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/8c9495-e709-4a3d-babd-76ad54bfaaab/1/oGBZQ2tqMKnDW3glyMgyvny_YtI.roa
Signing time: Fri 06 May 2022 16:52:58 +0000
ROA not before: Fri 06 May 2022 16:52:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20648
IP address blocks: 146.19.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136053 (0x21375)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47c87cf93dc67baa74dacf242cde6c797fa840eb
Validity
Not Before: May 6 16:52:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a06059436b6a30a9c35b7825c8c832be7cbf62d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:10:82:ca:00:d1:ee:d5:fd:d7:bc:9a:f0:c1:
be:78:0c:de:85:49:54:3a:d6:cd:b9:72:5c:64:31:
d2:be:6a:92:a3:81:a0:e8:f8:20:38:02:71:1f:0c:
5a:27:00:d5:f2:6e:f0:20:2f:c5:26:5f:4e:0a:ac:
e4:22:65:b6:0a:7f:b7:02:5c:27:d5:d2:6a:29:9c:
c3:fc:cf:c4:5d:ce:47:20:cc:76:a3:42:de:1f:b2:
03:b3:7d:4b:1e:55:69:39:eb:b1:3c:12:9a:10:17:
92:30:d0:41:12:70:9d:c2:f8:9d:a9:5b:e9:09:9c:
24:7a:7f:f2:5f:5a:3d:45:3d:c2:ab:cf:f5:a4:12:
12:c5:1e:d9:94:96:73:54:92:8f:14:aa:3a:6d:41:
a7:17:3e:a1:e0:aa:01:e8:6d:7c:d1:ec:16:03:5d:
8c:58:73:bc:84:1d:47:2a:31:6e:d4:89:36:11:2d:
3e:ca:03:0f:cf:f6:52:5b:6e:5f:73:f9:38:13:89:
91:71:a5:94:52:86:75:c7:bf:00:29:53:0f:f7:72:
b0:3c:6e:fa:b4:0a:57:72:68:01:98:50:59:02:b0:
af:56:d9:cd:cf:72:7e:01:93:df:bf:bc:6b:b3:de:
63:9b:9b:c5:51:97:05:5b:6d:d0:02:a7:c7:cf:20:
15:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:60:59:43:6B:6A:30:A9:C3:5B:78:25:C8:C8:32:BE:7C:BF:62:D2
X509v3 Authority Key Identifier:
keyid:47:C8:7C:F9:3D:C6:7B:AA:74:DA:CF:24:2C:DE:6C:79:7F:A8:40:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R8h8-T3Ge6p02s8kLN5seX-oQOs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/8c9495-e709-4a3d-babd-76ad54bfaaab/1/oGBZQ2tqMKnDW3glyMgyvny_YtI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/8c9495-e709-4a3d-babd-76ad54bfaaab/1/R8h8-T3Ge6p02s8kLN5seX-oQOs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.2.0/24
Signature Algorithm: sha256WithRSAEncryption
49:a4:9a:42:e1:09:68:11:fe:a0:9f:be:1b:5b:d2:d5:a9:bc:
ec:fa:d8:7f:b8:5a:00:51:f8:d8:9e:09:85:e1:ff:9b:7d:e3:
cb:a6:cb:f5:3b:fe:b1:12:62:23:6a:7e:63:d6:d5:e0:9c:63:
4e:51:5a:07:9d:5e:32:71:36:cc:11:85:b6:f2:e3:58:ee:2f:
06:e9:9e:b1:64:9a:6b:cc:9d:8a:e4:fb:9a:d4:d7:66:08:f1:
26:ca:e9:38:05:15:be:98:3e:b5:e7:17:39:b2:3a:5c:cd:8a:
ce:22:a2:9f:bc:a0:ed:d4:67:ef:30:33:43:8e:60:01:dc:9e:
30:ac:71:74:44:73:3a:60:d6:77:1e:66:d6:3e:b1:16:ec:2c:
c9:6c:0f:4a:99:9b:26:2d:b3:a1:21:8e:3d:98:0b:85:36:c3:
95:33:b6:e5:88:4a:b1:e6:ac:3a:c4:1d:dc:80:11:e9:d2:52:
42:63:5a:e1:46:6f:02:97:10:f4:03:18:61:3c:5d:ab:c0:87:
88:f9:4b:22:88:06:57:db:fc:ba:40:48:e5:4d:ce:9b:b6:5e:
e1:a6:bb:f1:47:37:d4:2d:38:c4:f0:64:04:0c:29:85:13:83:
b6:d2:e7:91:e9:49:15:6f:57:6d:da:03:98:59:dc:77:55:20:
27:aa:64:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:21 2024 by rpki-client on console-ams.rpki-client.org