Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/82abf8-d374-46cd-b690-ada87620447d/1/LXzRWY5mdBXn6h926Fvt38a7ALQ.roa
File: LXzRWY5mdBXn6h926Fvt38a7ALQ.roa (raw, json)
Hash identifier: KF9fYWs77IjyvgFDe8jdIVm4FOppaTfI6gHi57DbS14=
Subject key identifier: 2D:7C:D1:59:8E:66:74:15:E7:EA:1F:76:E8:5B:ED:DF:C6:BB:00:B4
Certificate issuer: /CN=df05957c259f0766209bb485a1f1fa6afa2f930a
Certificate serial: 674FE5
Authority key identifier: DF:05:95:7C:25:9F:07:66:20:9B:B4:85:A1:F1:FA:6A:FA:2F:93:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3wWVfCWfB2Ygm7SFofH6avovkwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/82abf8-d374-46cd-b690-ada87620447d/1/LXzRWY5mdBXn6h926Fvt38a7ALQ.roa
Signing time: Sat 01 Jan 2022 00:53:48 +0000
ROA not before: Sat 01 Jan 2022 00:53:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 146.19.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6770661 (0x674fe5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df05957c259f0766209bb485a1f1fa6afa2f930a
Validity
Not Before: Jan 1 00:53:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d7cd1598e667415e7ea1f76e85beddfc6bb00b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:5c:70:05:83:f9:44:02:f9:25:01:81:a6:a2:
87:4e:1c:12:82:82:6d:fc:0c:a5:cf:b9:c2:f2:4e:
ad:f5:53:94:17:34:b3:3f:ea:77:6b:19:4a:fb:e7:
f5:50:30:9f:a0:37:d4:18:ce:f9:3c:c1:2e:43:b0:
49:11:d4:c3:74:49:54:91:18:a0:dc:55:19:ff:9a:
84:c5:d9:d2:73:17:5c:0f:86:3d:df:cf:ed:ad:42:
2e:90:66:c3:34:7b:9d:b0:df:a9:b3:1a:e0:d7:d8:
d7:ff:3f:11:0b:f7:86:91:5c:8c:24:f9:b9:ad:5a:
78:f6:d2:51:72:63:05:7c:7e:8b:4e:60:c7:df:11:
09:7c:e9:49:ef:79:70:a1:01:df:8e:3b:96:74:8e:
9c:10:61:00:38:f6:3a:44:55:60:7f:c6:b7:e9:42:
9c:90:65:f2:03:0a:f8:ae:d0:92:bb:ce:13:64:4b:
ea:b4:a2:ec:9e:76:f8:08:61:39:17:1f:ae:1b:be:
40:d0:21:58:2c:d6:85:b2:e6:09:60:07:36:e8:b9:
bc:c9:51:2b:88:66:85:d3:65:5c:af:66:42:83:e4:
dd:d6:a2:34:57:20:e3:72:1c:97:cc:c2:22:10:47:
d4:2c:c7:f8:11:ac:6d:73:23:86:36:c6:a1:e8:ab:
cd:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:7C:D1:59:8E:66:74:15:E7:EA:1F:76:E8:5B:ED:DF:C6:BB:00:B4
X509v3 Authority Key Identifier:
keyid:DF:05:95:7C:25:9F:07:66:20:9B:B4:85:A1:F1:FA:6A:FA:2F:93:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3wWVfCWfB2Ygm7SFofH6avovkwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/82abf8-d374-46cd-b690-ada87620447d/1/LXzRWY5mdBXn6h926Fvt38a7ALQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/82abf8-d374-46cd-b690-ada87620447d/1/3wWVfCWfB2Ygm7SFofH6avovkwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.15.0/24
Signature Algorithm: sha256WithRSAEncryption
02:73:20:d0:17:e7:06:a2:e0:4a:13:75:d6:b7:e8:b7:f8:cc:
ee:a8:04:5e:f2:57:2a:17:6c:28:38:ba:fb:9a:3b:d8:d1:73:
72:f4:92:9a:01:be:65:4e:b7:fa:7d:20:a5:bd:b0:c0:07:b6:
6b:73:ec:91:49:c7:e2:52:0a:2a:90:96:7c:e3:46:73:5f:62:
e8:87:05:66:a0:ab:9f:e3:a3:d2:8f:b6:fd:82:6b:13:53:18:
a3:ae:39:97:bb:a2:0b:f5:58:99:d5:4c:ed:a6:fe:2b:dd:9e:
b2:16:55:9b:4f:70:86:b8:23:d5:ef:19:03:3f:eb:8b:89:69:
15:a0:5b:32:6e:e6:de:8d:53:7e:3c:12:85:74:f8:fa:f0:1b:
f7:6c:73:d0:69:32:e5:ac:31:55:fc:07:bf:c5:b9:a7:c8:6d:
0a:22:db:c1:34:f2:8d:52:5b:66:34:5a:ed:c5:7b:53:3b:3a:
6d:e5:86:4e:8e:ab:d7:53:11:a7:e8:05:b6:c1:5f:07:91:4f:
f7:25:98:6f:1f:f9:2e:18:b9:61:8e:78:89:d5:a7:72:ff:71:
f4:05:e2:b9:7c:50:06:0f:9b:ad:09:c9:21:96:0c:1c:68:8f:
d6:4c:32:1e:ee:56:a7:ee:f2:f5:4e:1c:64:b4:f7:b9:bf:47:
7f:fd:12:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:29 2023 by rpki-client on console-ams.rpki-client.org