Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/R360vPN607gzqmQn7uwzR7QBWpM.roa
File: R360vPN607gzqmQn7uwzR7QBWpM.roa (raw, json)
Hash identifier: T7t0ehqmh4vAeNXNPrLCxL4zVjqfZaAHdisTa+Pi014=
Subject key identifier: 47:7E:B4:BC:F3:7A:D3:B8:33:AA:64:27:EE:EC:33:47:B4:01:5A:93
Certificate issuer: /CN=3a178048d127af3433f17bccda5d07d657eca688
Certificate serial: 016890
Authority key identifier: 3A:17:80:48:D1:27:AF:34:33:F1:7B:CC:DA:5D:07:D6:57:EC:A6:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OheASNEnrzQz8XvM2l0H1lfspog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/R360vPN607gzqmQn7uwzR7QBWpM.roa
Signing time: Wed 27 Apr 2022 14:18:01 +0000
ROA not before: Wed 27 Apr 2022 14:18:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41171
IP address blocks: 146.19.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92304 (0x16890)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a178048d127af3433f17bccda5d07d657eca688
Validity
Not Before: Apr 27 14:18:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=477eb4bcf37ad3b833aa6427eeec3347b4015a93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d9:14:91:bb:da:17:59:25:9d:ba:d3:67:59:
e9:40:be:7c:cb:1d:d6:32:a4:6c:a6:10:a7:3c:23:
8b:79:47:53:5c:7f:33:45:56:e8:b6:d9:2e:24:a4:
af:5c:96:f1:2e:5e:13:93:03:97:34:52:6b:11:dc:
b9:8d:cf:92:c4:32:94:a7:c0:4d:32:15:91:bb:6f:
9e:b5:7a:16:8c:e4:6d:0e:89:40:42:1f:68:58:95:
ac:74:55:3a:34:04:c8:1b:26:e8:74:32:39:f9:8d:
ba:08:47:bd:ac:e3:44:02:69:6f:d5:a0:9c:78:a3:
a6:a3:53:7a:e6:7f:fd:f1:ac:5b:ac:e3:60:e9:11:
b6:6d:47:d2:d6:5b:89:a1:ca:aa:ac:a4:81:13:0f:
29:ca:d8:2b:a8:79:46:54:76:04:51:aa:0e:b3:d8:
b7:9f:a8:cf:fe:a6:5f:b5:69:d1:03:0b:a2:ff:1d:
d9:e8:9f:e6:45:cd:30:c8:db:0e:15:94:d0:e5:c1:
3d:67:ba:22:7a:be:91:3a:2c:73:88:67:77:b5:ff:
f2:c4:84:1a:60:41:25:f0:3a:0f:fd:5d:08:3d:3d:
16:09:3e:d3:14:26:c4:52:7d:51:ac:97:57:dc:e4:
22:ec:0f:bc:8c:ae:dd:08:7c:08:a2:35:60:ed:fc:
83:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:7E:B4:BC:F3:7A:D3:B8:33:AA:64:27:EE:EC:33:47:B4:01:5A:93
X509v3 Authority Key Identifier:
keyid:3A:17:80:48:D1:27:AF:34:33:F1:7B:CC:DA:5D:07:D6:57:EC:A6:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OheASNEnrzQz8XvM2l0H1lfspog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/R360vPN607gzqmQn7uwzR7QBWpM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/OheASNEnrzQz8XvM2l0H1lfspog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.142.0/24
Signature Algorithm: sha256WithRSAEncryption
54:23:19:05:c3:74:ef:41:7f:0f:33:75:6a:26:a7:b2:29:75:
54:58:cb:e8:da:ff:60:30:9f:54:ad:14:70:4b:90:91:fc:76:
cd:c1:dc:46:f0:73:4b:6b:ed:2f:76:66:88:8e:9c:18:64:93:
41:c1:55:be:b9:00:3c:2d:8f:84:bf:5f:27:21:1f:f0:91:54:
0c:26:85:0a:81:89:a2:bd:5a:2d:68:5f:6e:01:d3:cd:ba:aa:
2e:d0:76:af:a5:b7:fd:e9:60:36:40:a5:86:e5:1f:2f:95:45:
80:41:33:36:5d:75:20:8b:33:37:2e:07:98:07:97:31:af:f9:
bb:b6:a4:07:12:64:b9:15:43:3e:9e:5f:c0:f2:c3:dd:4a:74:
ca:61:f1:e6:42:ab:65:34:3d:04:33:df:c9:40:90:69:8b:5a:
05:db:08:36:f1:5a:84:4d:97:9d:0e:d8:fa:32:a0:91:88:21:
ff:1e:92:4f:ce:8e:33:e3:63:41:00:4d:1f:5a:a6:db:d5:09:
ee:c5:66:46:22:d4:db:ba:6e:f5:6a:43:3e:3b:7c:b0:3b:17:
b3:e8:ba:1c:cb:62:27:5d:19:ac:59:59:76:ec:b4:e9:6f:74:
b9:84:3f:05:c3:cc:26:70:00:5b:40:c7:b8:5e:a2:84:1f:61:
76:89:8a:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:14 2023 by rpki-client on console-ams.rpki-client.org