Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/930cab-6687-4fef-83d4-fa165414c901/1/IzP8fylcKgD7DBTvxf0wpEfW24Q.roa
File: IzP8fylcKgD7DBTvxf0wpEfW24Q.roa (raw, json)
Hash identifier: +QFOtq5mMxvQo6/pqXX2etd3s8VSCYBGtNxLtxWKOsU=
Subject key identifier: 23:33:FC:7F:29:5C:2A:00:FB:0C:14:EF:C5:FD:30:A4:47:D6:DB:84
Certificate issuer: /CN=0e41f9a0c86cebcc63c43fa0539d4249814ab740
Certificate serial: 6E1B
Authority key identifier: 0E:41:F9:A0:C8:6C:EB:CC:63:C4:3F:A0:53:9D:42:49:81:4A:B7:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DkH5oMhs68xjxD-gU51CSYFKt0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/930cab-6687-4fef-83d4-fa165414c901/1/IzP8fylcKgD7DBTvxf0wpEfW24Q.roa
Signing time: Fri 14 Jan 2022 11:43:29 +0000
ROA not before: Fri 14 Jan 2022 11:43:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 146.19.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28187 (0x6e1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e41f9a0c86cebcc63c43fa0539d4249814ab740
Validity
Not Before: Jan 14 11:43:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2333fc7f295c2a00fb0c14efc5fd30a447d6db84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:65:bf:80:e5:6a:01:d1:34:32:30:8c:c8:da:
90:28:0f:10:22:44:1f:63:f6:f4:d9:f8:5a:ed:74:
09:ab:a6:79:d7:16:bc:83:74:cd:66:39:a7:de:ff:
7c:97:8e:bd:9e:c4:46:22:fe:f1:4d:02:31:5a:bc:
7a:1d:83:ee:e7:35:6f:e9:92:a1:7b:7b:02:e6:77:
b7:c3:86:7f:cb:1f:72:59:0c:9b:4e:49:19:a9:0c:
19:06:ac:88:7e:5e:57:15:5e:08:e0:65:22:ef:cb:
d6:a0:25:09:02:69:a3:73:f7:a4:b3:f5:fb:c6:c5:
84:77:64:e2:87:b9:5b:1a:6f:33:15:61:9a:5a:ce:
90:14:79:a3:02:0d:cb:87:c3:8f:0c:a8:c2:66:b6:
cc:36:08:53:14:d6:1d:9b:dd:7b:cc:bd:20:89:0a:
52:c4:d9:b1:d0:ff:a0:37:7f:a6:c5:51:a8:d7:22:
4f:8a:72:52:2b:8e:57:9a:82:c2:16:d6:31:66:83:
10:63:56:52:e7:8d:12:35:29:98:2e:be:22:20:3a:
6d:55:91:27:db:d8:38:bd:da:4d:92:f5:11:03:ac:
d4:a1:a7:44:a2:e5:fd:20:a0:9a:0c:ba:b9:69:29:
a3:ec:65:5f:63:6b:a5:aa:e3:d2:6c:64:ba:85:01:
ad:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:33:FC:7F:29:5C:2A:00:FB:0C:14:EF:C5:FD:30:A4:47:D6:DB:84
X509v3 Authority Key Identifier:
keyid:0E:41:F9:A0:C8:6C:EB:CC:63:C4:3F:A0:53:9D:42:49:81:4A:B7:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DkH5oMhs68xjxD-gU51CSYFKt0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/930cab-6687-4fef-83d4-fa165414c901/1/IzP8fylcKgD7DBTvxf0wpEfW24Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/930cab-6687-4fef-83d4-fa165414c901/1/DkH5oMhs68xjxD-gU51CSYFKt0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.254.0/24
Signature Algorithm: sha256WithRSAEncryption
40:48:a0:46:46:26:5e:b3:f4:ed:4a:02:26:64:01:df:93:45:
d9:8c:4d:4f:b2:09:84:e5:1b:62:e3:2a:0b:46:2c:e1:da:1c:
39:9d:fc:a0:32:30:27:3e:ff:49:d6:81:6a:7e:8e:8f:ce:54:
ee:1a:17:bd:eb:a0:f7:75:16:62:09:b1:82:ea:1e:87:da:34:
7e:e3:ac:b9:2d:91:4a:de:e7:ac:2d:61:68:06:c0:12:c5:64:
e9:25:de:f3:6d:47:4e:d6:a0:e3:4e:7e:38:94:23:98:f3:1c:
fd:f5:73:74:a8:25:4d:cb:0a:59:7c:fc:00:2b:0d:e8:fb:6d:
5b:bf:4e:a7:c4:9e:35:0c:1c:66:e0:96:0c:06:f2:f4:3b:d4:
88:dc:d9:e5:e3:3e:99:67:e0:9b:7a:c2:9c:5b:fc:7a:97:cc:
52:61:43:ac:0f:1e:1c:11:36:19:7d:9d:0d:56:fb:fc:71:22:
a6:45:90:45:f3:e0:11:46:2f:dc:44:08:f9:76:80:ea:21:f9:
e8:09:c7:34:bc:73:84:35:33:03:12:18:95:8e:76:c7:fc:ea:
f9:91:f1:91:93:0e:ba:c7:ba:bc:6c:c2:42:d9:35:b0:97:85:
30:8f:0d:b8:6a:61:b8:51:5d:06:c0:c7:8c:50:02:2b:94:63:
19:0c:c3:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:59 2023 by rpki-client on console-ams.rpki-client.org