Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/ODkC5hESv_pzNXGRXtebgEZufIU.roa
File: ODkC5hESv_pzNXGRXtebgEZufIU.roa (raw, json)
Hash identifier: oVTfQ7idhRWnUb3ssbpcW7F4wTTSYtWDejZnNLDWXps=
Subject key identifier: 38:39:02:E6:11:12:BF:FA:73:35:71:91:5E:D7:9B:80:46:6E:7C:85
Certificate issuer: /CN=3a178048d127af3433f17bccda5d07d657eca688
Certificate serial: 044AE7
Authority key identifier: 3A:17:80:48:D1:27:AF:34:33:F1:7B:CC:DA:5D:07:D6:57:EC:A6:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OheASNEnrzQz8XvM2l0H1lfspog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/ODkC5hESv_pzNXGRXtebgEZufIU.roa
Signing time: Thu 28 Apr 2022 10:12:50 +0000
ROA not before: Thu 28 Apr 2022 10:12:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 146.19.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 281319 (0x44ae7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a178048d127af3433f17bccda5d07d657eca688
Validity
Not Before: Apr 28 10:12:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=383902e61112bffa733571915ed79b80466e7c85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:61:6e:a0:cd:27:c3:26:d8:05:ac:cc:c0:c3:
30:52:4d:74:8b:14:1a:2e:60:e4:01:23:42:37:73:
b0:9a:cd:25:30:65:52:c4:44:db:24:54:38:5b:d0:
1a:64:b7:de:49:9e:d7:d1:5a:8f:c1:93:de:80:e4:
f6:9f:cd:5c:00:64:16:40:c2:09:48:ef:98:82:73:
87:e3:16:de:37:58:bb:41:ee:2a:ab:18:4b:c0:e6:
57:2e:d0:01:8b:5e:29:52:29:45:c3:ff:df:ce:4f:
63:cf:fa:60:ad:98:36:2e:ed:e2:90:ca:6b:d5:04:
62:5d:42:ff:00:cb:a8:88:58:7e:54:d7:45:80:27:
f6:b0:49:26:b3:57:2d:4d:9f:7f:c1:a3:dc:a7:12:
60:54:5b:99:0f:38:ee:d9:ba:1d:24:92:ad:94:99:
f7:80:9b:c9:a3:92:7c:e2:35:70:d9:6e:e2:cb:9a:
1a:05:70:69:f4:40:a7:66:71:dc:7c:bb:66:9b:a5:
1d:7a:a1:ef:66:b3:2f:f4:47:7e:4f:40:2f:9e:62:
3a:3e:2d:56:4b:ab:f8:16:73:29:31:cc:f1:ef:76:
c3:58:40:38:1d:30:13:ab:76:03:aa:e0:81:66:2b:
28:af:8a:77:17:50:2d:2e:47:fc:34:81:90:0b:84:
69:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:39:02:E6:11:12:BF:FA:73:35:71:91:5E:D7:9B:80:46:6E:7C:85
X509v3 Authority Key Identifier:
keyid:3A:17:80:48:D1:27:AF:34:33:F1:7B:CC:DA:5D:07:D6:57:EC:A6:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OheASNEnrzQz8XvM2l0H1lfspog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/ODkC5hESv_pzNXGRXtebgEZufIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/OheASNEnrzQz8XvM2l0H1lfspog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.142.0/24
Signature Algorithm: sha256WithRSAEncryption
61:ea:77:cc:e1:fe:09:23:4d:2e:79:c7:e4:f2:2d:65:fe:3b:
c2:11:39:c0:54:0c:ae:6b:d4:35:65:7e:a0:d4:b2:2c:7d:c3:
2b:7d:f3:b3:ec:7b:4f:3c:99:35:fd:b3:67:7a:69:d8:55:bb:
78:96:ea:39:85:d0:20:ee:7e:a7:4c:a2:e5:98:25:86:81:e2:
8e:b0:20:fe:11:3a:2f:c5:00:e7:cd:f5:52:c6:5f:59:3e:35:
c0:cc:8d:fe:0c:d0:62:c5:46:5c:d1:8b:23:90:da:0c:ae:66:
7e:20:c1:0f:41:ef:20:e8:07:b8:ad:90:e4:a1:4c:81:a9:8a:
69:c7:99:9e:3d:96:15:72:05:c7:f6:61:a9:de:04:8e:82:f7:
33:a9:fc:55:c5:30:82:94:3a:f2:65:34:8a:0f:dd:02:31:b2:
bd:40:3f:ab:30:ca:01:cb:b3:ae:b5:91:9d:4e:4d:b9:66:7b:
88:86:2b:a8:76:af:3f:71:db:67:df:89:95:f3:97:9a:10:4b:
b6:c4:cb:30:5f:c5:58:6d:9a:a0:f0:7b:e1:6d:35:10:3b:6c:
23:33:02:d1:db:98:d2:b1:06:57:0a:e9:c0:a4:72:ae:33:f9:
9c:97:76:17:21:1a:da:e5:a7:cc:4e:46:d8:ef:25:c3:67:9f:
e1:a6:89:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:14 2023 by rpki-client on console-ams.rpki-client.org