Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/4a2cb4-caba-4b98-8b3d-56e067c82330/1/TYuOOrNttOtVbdB-U-Gax4kPgLc.roa
File: TYuOOrNttOtVbdB-U-Gax4kPgLc.roa (raw, json)
Hash identifier: OlZa0gkJXqiOCMyhm38UGxXDLBAVMHSN7ZkObaUxI74=
Subject key identifier: 4D:8B:8E:3A:B3:6D:B4:EB:55:6D:D0:7E:53:E1:9A:C7:89:0F:80:B7
Certificate issuer: /CN=ae51fcf63f1064cc321c012ae769a7c75345e93b
Certificate serial: 0815
Authority key identifier: AE:51:FC:F6:3F:10:64:CC:32:1C:01:2A:E7:69:A7:C7:53:45:E9:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rlH89j8QZMwyHAEq52mnx1NF6Ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/4a2cb4-caba-4b98-8b3d-56e067c82330/1/TYuOOrNttOtVbdB-U-Gax4kPgLc.roa
Signing time: Wed 02 Feb 2022 06:34:13 +0000
ROA not before: Wed 02 Feb 2022 06:34:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43624
IP address blocks: 146.19.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2069 (0x815)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae51fcf63f1064cc321c012ae769a7c75345e93b
Validity
Not Before: Feb 2 06:34:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d8b8e3ab36db4eb556dd07e53e19ac7890f80b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:93:c3:fd:14:31:55:98:1a:13:93:19:c2:e5:
a9:da:13:f3:c7:08:85:46:17:00:57:8d:46:5d:89:
ee:54:01:35:ba:a5:97:3e:12:14:43:fc:69:b8:9f:
16:61:5d:97:c8:9e:24:36:e4:99:d3:6c:7f:d4:71:
2a:68:97:60:11:99:7a:ab:40:6b:1b:3f:fc:d1:77:
58:50:97:b0:6d:d1:5e:1d:f1:4b:7b:0d:ff:8e:9f:
8b:a8:61:75:9a:9a:14:39:ea:79:14:08:50:74:c6:
06:77:db:c3:f2:f0:59:0c:26:53:1d:1c:fe:05:8d:
7b:56:b2:c6:1b:63:e6:b6:93:7f:c8:f1:f0:88:95:
d4:5e:9e:15:ce:76:f2:d0:9b:c4:30:5f:f5:1c:10:
f5:b2:47:2e:d3:e4:70:f7:13:9c:62:38:41:61:6d:
17:0c:76:27:32:20:34:75:cf:a4:52:ee:2b:8e:91:
4f:c9:dd:19:94:fc:95:89:ce:d6:92:7e:08:06:5c:
f7:9d:ee:e3:05:92:f0:82:5a:1f:f9:29:6b:89:fa:
00:88:a4:89:2e:9d:c5:54:67:5e:54:c6:cf:94:e3:
bb:10:23:fb:28:1d:73:fb:fe:02:ce:4b:59:0c:ec:
72:73:cc:2e:fd:a8:6f:61:22:08:43:cc:e4:7a:94:
e6:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:8B:8E:3A:B3:6D:B4:EB:55:6D:D0:7E:53:E1:9A:C7:89:0F:80:B7
X509v3 Authority Key Identifier:
keyid:AE:51:FC:F6:3F:10:64:CC:32:1C:01:2A:E7:69:A7:C7:53:45:E9:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rlH89j8QZMwyHAEq52mnx1NF6Ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/4a2cb4-caba-4b98-8b3d-56e067c82330/1/TYuOOrNttOtVbdB-U-Gax4kPgLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/4a2cb4-caba-4b98-8b3d-56e067c82330/1/rlH89j8QZMwyHAEq52mnx1NF6Ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.44.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:15:d7:b5:49:23:5c:d6:2d:6b:2c:96:a1:27:2d:15:12:29:
89:1b:cf:d6:0f:d5:95:46:71:b7:48:c9:c9:b1:d3:78:79:eb:
2f:cc:24:70:8d:db:2c:fd:e3:f0:22:52:4d:1a:2f:5a:f3:ef:
d4:dd:c8:05:50:1a:fe:b4:59:b0:d8:7e:3a:0b:86:7f:5e:d5:
7c:8b:5c:d5:a2:d2:3f:bc:04:39:53:ac:49:a3:91:e3:a4:96:
a8:c1:a8:4c:2c:dd:f5:00:1a:3c:66:43:bd:00:21:34:9a:42:
28:c8:9e:1d:b0:5d:c7:74:a7:c5:c0:6b:ef:68:45:6c:0c:7b:
98:01:17:ed:65:56:95:84:a9:01:62:9b:86:53:6a:8f:e9:f3:
36:52:1b:54:70:59:b9:d4:d0:dc:ef:de:2a:ae:72:af:e1:ef:
a3:42:eb:7e:63:f6:fd:a6:ff:37:7c:9a:e7:32:89:b2:2b:67:
5b:b2:ad:b6:50:19:42:ef:1b:84:30:af:a7:a5:cd:12:75:a7:
2e:18:89:99:82:7b:29:28:c2:87:ef:b8:b9:7a:bd:07:35:c3:
0a:20:41:32:ee:9a:e5:ff:0d:3a:d7:61:35:64:71:40:23:a3:
76:ec:2e:bd:3c:93:96:2e:9b:9d:47:28:8f:40:93:f6:5d:3a:
46:d6:c2:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:28 2023 by rpki-client on console-ams.rpki-client.org