Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/1EH_MgoeMDLRcFnZtxJ-Ui_TnJE.roa
File: 1EH_MgoeMDLRcFnZtxJ-Ui_TnJE.roa (raw, json)
Hash identifier: 4U/Tb8s70hBh+2LaO/m1Z+YYWwfiEDlnG/1/ebSnv1g=
Subject key identifier: D4:41:FF:32:0A:1E:30:32:D1:70:59:D9:B7:12:7E:52:2F:D3:9C:91
Certificate issuer: /CN=3a178048d127af3433f17bccda5d07d657eca688
Certificate serial: 611C
Authority key identifier: 3A:17:80:48:D1:27:AF:34:33:F1:7B:CC:DA:5D:07:D6:57:EC:A6:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OheASNEnrzQz8XvM2l0H1lfspog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/1EH_MgoeMDLRcFnZtxJ-Ui_TnJE.roa
Signing time: Wed 27 Apr 2022 14:18:00 +0000
ROA not before: Wed 27 Apr 2022 14:18:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5089
IP address blocks: 146.19.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24860 (0x611c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a178048d127af3433f17bccda5d07d657eca688
Validity
Not Before: Apr 27 14:18:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d441ff320a1e3032d17059d9b7127e522fd39c91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:70:b3:2f:4d:75:c6:5d:32:6b:89:af:8c:18:
e8:3a:9d:a8:7c:9d:da:69:94:f1:5e:f1:9f:8d:a4:
68:d7:b3:f7:36:74:3b:4c:7b:77:66:04:44:30:1c:
ff:9b:0e:e1:65:eb:0b:ff:46:70:09:3a:3d:e2:d5:
f8:db:5c:91:8e:9d:24:76:75:d0:68:8f:17:b6:1d:
06:10:31:72:01:60:71:70:27:77:d7:50:24:06:1b:
99:9a:86:55:50:96:12:ab:d6:fd:65:38:21:f2:bb:
af:4c:07:56:62:92:66:42:6d:eb:9f:69:9b:b2:05:
cf:a3:e1:40:37:1e:c4:d4:56:5c:08:72:d8:37:2c:
bc:e4:bc:c8:35:ae:a9:b7:c2:5d:b1:e9:88:b9:e7:
ad:73:03:f3:fa:21:3c:ee:c9:c6:f4:3b:c9:ca:77:
09:e4:7e:7e:fb:4f:de:44:1d:bc:0f:04:4d:47:27:
5d:ba:c8:22:98:69:41:39:24:43:9c:cd:29:87:30:
5c:c5:7d:f8:b1:fe:88:5f:7b:30:89:d9:f9:b5:17:
74:f8:1f:84:81:d7:d2:83:e5:70:97:a4:2c:15:ba:
10:ab:68:ed:8d:cc:e0:99:07:06:87:da:c0:f7:4a:
3f:97:fc:23:5c:13:48:68:93:73:41:6f:b6:49:14:
94:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:41:FF:32:0A:1E:30:32:D1:70:59:D9:B7:12:7E:52:2F:D3:9C:91
X509v3 Authority Key Identifier:
keyid:3A:17:80:48:D1:27:AF:34:33:F1:7B:CC:DA:5D:07:D6:57:EC:A6:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OheASNEnrzQz8XvM2l0H1lfspog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/1EH_MgoeMDLRcFnZtxJ-Ui_TnJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/OheASNEnrzQz8XvM2l0H1lfspog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.142.0/24
Signature Algorithm: sha256WithRSAEncryption
03:f3:65:37:3d:05:59:fb:44:be:c7:b4:49:4c:87:0c:8a:96:
f6:1a:f6:cc:ba:e5:cf:bf:a6:7d:ef:d3:07:21:b6:1c:db:b1:
39:e1:0e:ef:21:6e:e4:05:42:12:05:15:66:0b:79:41:26:d5:
af:ff:7c:3b:a3:73:c6:1d:3a:74:a6:7a:ec:b5:a2:a1:5d:94:
4c:18:46:99:bb:03:02:d7:e9:85:0a:ec:cf:81:33:65:02:ac:
c3:f1:6e:66:79:08:49:63:aa:9c:b0:a3:6c:eb:b3:39:c7:06:
53:44:b2:bf:06:6d:5b:22:fe:7d:24:1f:82:05:5a:d8:01:94:
17:86:81:f7:89:52:8e:42:1f:80:96:be:2b:04:15:da:50:83:
b2:2b:b6:93:2e:5a:dd:f7:3f:e3:41:59:e7:89:ce:ad:b8:94:
46:df:a6:45:57:d6:87:47:e7:8f:88:1e:55:62:8c:80:79:3a:
b0:c3:ce:55:1e:43:93:04:fd:8e:7e:3f:12:0c:c5:59:30:dc:
bf:40:3f:c4:26:22:bd:f2:b5:10:0b:b9:6d:8c:9b:6c:12:ba:
b1:74:94:2f:1f:da:f2:da:f8:7e:61:b2:a1:78:0c:7c:16:d7:
7b:ca:11:50:87:21:17:6e:5c:65:c2:f3:97:6f:af:e2:bd:c6:
8c:d3:5e:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:26 2023 by rpki-client on console-fra.rpki-client.org