Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/df94e2-7cc9-41a1-952f-f3797cfd65ae/1/7gygic0UKXosHbpis23Bw2-Ot6E.roa
File: 7gygic0UKXosHbpis23Bw2-Ot6E.roa (raw, json)
Hash identifier: JJIBvWUNg7uR2pBw6OJkiSeHTuyF180RN8jklZpL9CA=
Subject key identifier: EE:0C:A0:89:CD:14:29:7A:2C:1D:BA:62:B3:6D:C1:C3:6F:8E:B7:A1
Certificate issuer: /CN=d7faf3a3f2140cb7c6ff0cd6a7f5614a05e4e467
Certificate serial: 7B2405
Authority key identifier: D7:FA:F3:A3:F2:14:0C:B7:C6:FF:0C:D6:A7:F5:61:4A:05:E4:E4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1_rzo_IUDLfG_wzWp_VhSgXk5Gc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/df94e2-7cc9-41a1-952f-f3797cfd65ae/1/7gygic0UKXosHbpis23Bw2-Ot6E.roa
Signing time: Sat 01 Jan 2022 01:54:44 +0000
ROA not before: Sat 01 Jan 2022 01:54:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210103
IP address blocks: 146.19.11.0/24 maxlen: 24
2a12:1d00::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8070149 (0x7b2405)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7faf3a3f2140cb7c6ff0cd6a7f5614a05e4e467
Validity
Not Before: Jan 1 01:54:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee0ca089cd14297a2c1dba62b36dc1c36f8eb7a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ee:4f:43:fc:aa:3f:21:91:d4:43:45:d0:b3:
4b:67:a3:a9:5c:d6:0a:1f:2f:4c:5f:a1:42:8d:d0:
43:e1:16:8b:67:67:69:b4:9b:4c:5c:a1:2a:fe:48:
dd:b1:f7:2e:e6:aa:a0:df:fd:d7:7c:b3:67:82:2f:
19:2f:15:84:40:96:cd:32:17:b8:e6:da:61:ac:6e:
bf:50:da:26:73:38:fe:be:94:c9:a3:f9:c3:51:9f:
40:e6:1d:52:47:72:ae:f4:37:96:31:eb:2c:62:3f:
44:54:af:86:39:4d:fa:50:06:fa:75:d8:83:b1:35:
a2:44:99:d4:2e:c7:5c:ae:6a:ce:8c:d8:cc:48:46:
9f:da:74:b8:ef:f3:ef:b2:41:7d:49:56:5a:85:91:
6f:0f:4e:e8:13:ee:0f:fc:3b:05:30:d0:56:3f:57:
1f:0f:45:7f:9e:92:b7:48:ac:5b:30:08:6c:8c:b8:
7e:3f:76:bf:ea:c4:35:ba:3a:a6:cf:f4:89:cd:20:
e6:2c:19:5e:9d:ac:ca:d5:28:af:ee:30:71:19:e5:
27:9b:e5:57:cb:26:be:15:ce:cd:c0:10:0d:7a:6a:
86:7a:5e:b0:c6:bc:48:8b:bf:90:fa:fd:a0:71:c1:
51:d6:bc:ea:5a:31:85:e8:e8:24:ba:dd:56:54:c2:
ae:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:0C:A0:89:CD:14:29:7A:2C:1D:BA:62:B3:6D:C1:C3:6F:8E:B7:A1
X509v3 Authority Key Identifier:
keyid:D7:FA:F3:A3:F2:14:0C:B7:C6:FF:0C:D6:A7:F5:61:4A:05:E4:E4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1_rzo_IUDLfG_wzWp_VhSgXk5Gc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/df94e2-7cc9-41a1-952f-f3797cfd65ae/1/7gygic0UKXosHbpis23Bw2-Ot6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/df94e2-7cc9-41a1-952f-f3797cfd65ae/1/1_rzo_IUDLfG_wzWp_VhSgXk5Gc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.11.0/24
IPv6:
2a12:1d00::/29
Signature Algorithm: sha256WithRSAEncryption
40:eb:a9:e2:4c:f1:11:b5:15:53:11:60:52:d4:66:35:ba:cd:
4c:f3:20:3c:af:ea:64:c2:f3:4d:4f:cd:e6:97:99:93:d9:46:
54:ec:e2:bd:ae:0e:f0:e4:7a:26:cc:73:d7:97:49:c0:0c:6b:
98:11:46:9c:92:cf:08:95:12:eb:6e:2c:ee:3f:41:0c:59:4d:
05:2f:a4:30:52:69:3f:7a:91:96:46:67:a0:39:dd:84:46:ad:
b9:40:83:2f:42:a4:da:61:ea:11:ca:d1:1f:18:cc:c9:cb:af:
07:98:53:83:0b:c3:05:b9:b2:4e:8c:b7:f1:37:82:8f:72:e5:
5c:a9:1f:c0:c8:0a:37:02:43:50:68:8e:6a:aa:4b:66:dd:f2:
1f:4c:40:9b:1e:20:da:7f:e7:7e:4f:98:87:74:7d:61:9b:1e:
63:98:16:5a:52:03:fd:b0:c2:22:29:ec:f5:d4:1d:ac:a4:01:
68:ee:5b:8d:6d:df:b6:94:1d:c2:fe:d7:28:8b:8f:c8:ba:8e:
16:21:79:76:5d:b9:81:f0:a7:69:f4:da:35:7e:76:87:ed:a0:
2e:25:6f:dd:a5:a6:80:30:1f:08:47:46:66:72:20:9e:52:3e:
44:85:ce:9a:3e:9b:33:13:94:ab:80:85:7d:c4:8c:18:cb:af:
1a:c9:6c:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:02 2023 by rpki-client on console-ams.rpki-client.org