Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/tOiN26_UlpgOfpysribAIzJuy44.roa
File: tOiN26_UlpgOfpysribAIzJuy44.roa (raw, json)
Hash identifier: EKUYnjTHNEbYUpTChnfVJCrXfARjU4O3kIePKG3QJYo=
Subject key identifier: B4:E8:8D:DB:AF:D4:96:98:0E:7E:9C:AC:AE:26:C0:23:32:6E:CB:8E
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 48851FAE
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/tOiN26_UlpgOfpysribAIzJuy44.roa
Signing time: Sat 01 Jan 2022 03:00:45 +0000
ROA not before: Sat 01 Jan 2022 03:00:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212496
IP address blocks: 146.185.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1216683950 (0x48851fae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 1 03:00:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4e88ddbafd496980e7e9cacae26c023326ecb8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:39:f5:70:04:91:a9:69:1c:f4:20:e0:09:9f:
47:71:e0:25:f3:ac:d2:d0:b9:e1:e6:b7:6f:dc:7e:
5c:03:16:7f:9e:ff:3a:ac:2e:e4:6d:93:3b:27:f5:
85:29:40:97:d7:96:55:04:3f:44:ab:cd:c9:90:0d:
59:ed:a6:73:fa:f6:5c:65:d7:66:73:97:7c:56:aa:
78:09:84:2e:00:be:80:7a:1b:84:07:9a:fd:8a:87:
92:50:9a:79:f0:4e:95:2a:60:d3:d6:e9:51:98:c7:
7c:8f:1d:54:ef:03:2a:2a:e6:f2:45:b5:2f:85:3b:
fe:a2:ee:c2:61:a2:d3:f1:53:58:61:ba:4c:13:02:
5f:61:3c:79:35:77:f6:a3:4c:c3:1a:02:85:84:35:
4a:9b:0a:9d:7f:3d:e1:ab:c8:e6:5e:d5:c1:2b:d7:
1a:5d:b6:cc:34:9b:73:29:67:01:6d:9b:46:59:e2:
b2:2f:db:1e:59:a1:5d:2b:aa:9d:74:c8:d0:56:50:
93:c1:3d:cb:d2:ec:d2:48:ad:d7:34:d6:5d:5f:be:
7d:02:99:bc:72:c7:5c:bf:ea:f9:83:c7:8a:3d:23:
ea:a5:02:71:2f:16:26:60:68:0c:03:08:36:b6:85:
26:a1:65:1b:7e:8c:29:5e:e2:6e:bb:f3:2e:75:24:
6d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:E8:8D:DB:AF:D4:96:98:0E:7E:9C:AC:AE:26:C0:23:32:6E:CB:8E
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/tOiN26_UlpgOfpysribAIzJuy44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.185.239.0/24
Signature Algorithm: sha256WithRSAEncryption
92:9e:2a:36:4a:7b:ab:e5:c3:5e:a0:f4:9e:2a:27:3b:26:ad:
60:fe:fc:18:e1:b8:cf:f6:86:8f:66:72:b5:8d:c1:11:c0:47:
17:b9:c0:f8:07:d7:2a:77:56:b1:90:57:8c:fd:a9:2e:bf:5f:
95:2d:5f:65:28:ca:6f:fd:1a:dc:c1:b3:fc:52:d5:65:62:67:
db:06:61:77:2c:25:0a:d9:40:06:d0:da:4b:07:43:17:6c:73:
6c:96:e7:47:2c:fc:56:3a:49:80:6d:60:b7:70:aa:6e:bc:da:
b1:e7:ca:8e:f2:8c:64:6b:2b:dd:5d:f4:06:61:25:ee:96:7c:
eb:1a:98:71:c2:61:93:37:97:ce:8e:12:6c:cc:6d:f2:7f:10:
5f:a9:07:c6:bc:d4:3f:33:b9:9e:b3:ec:e1:b1:12:2f:87:8d:
91:41:9b:58:2a:1e:5a:76:45:4f:87:4c:2a:58:13:b1:ce:3a:
49:c9:2a:5a:3c:50:66:53:57:b0:31:18:f6:a4:ee:3b:a5:18:
ae:a1:25:11:34:14:51:42:9c:16:d4:31:be:2e:3f:90:69:2f:
73:e0:e6:2f:12:60:75:cc:09:bf:9a:08:b9:26:06:8a:e0:e1:
da:a1:f9:d4:44:de:75:49:36:cb:57:a2:48:f4:7f:8f:f1:fb:
e2:fd:db:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:44 2023 by rpki-client on console-ams.rpki-client.org