Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a11477-7d10-47e9-8b5c-7b7244e69a93/1/cl_mNXWVY-D39D5yFkTaLEKK8pM.roa
File: cl_mNXWVY-D39D5yFkTaLEKK8pM.roa (raw, json)
Hash identifier: oR9qKWF6FAAtawUY20RmAmGVn2o92t2k4ozwtlljHDQ=
Subject key identifier: 72:5F:E6:35:75:95:63:E0:F7:F4:3E:72:16:44:DA:2C:42:8A:F2:93
Certificate issuer: /CN=1f773a137d5bfb5869f57dac7f359ec2818047a4
Certificate serial: 011B23A7
Authority key identifier: 1F:77:3A:13:7D:5B:FB:58:69:F5:7D:AC:7F:35:9E:C2:81:80:47:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H3c6E31b-1hp9X2sfzWewoGAR6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a11477-7d10-47e9-8b5c-7b7244e69a93/1/cl_mNXWVY-D39D5yFkTaLEKK8pM.roa
Signing time: Sat 04 Jun 2022 20:41:26 +0000
ROA not before: Sat 04 Jun 2022 20:41:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207967
IP address blocks: 146.19.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18555815 (0x11b23a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f773a137d5bfb5869f57dac7f359ec2818047a4
Validity
Not Before: Jun 4 20:41:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=725fe635759563e0f7f43e721644da2c428af293
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5e:04:52:62:b4:bf:91:69:08:e3:ca:fe:6e:
bc:47:5f:d1:e4:f0:0e:66:22:56:b0:d5:f6:a8:e0:
f5:94:65:d9:04:3e:7f:a6:51:07:04:ac:23:dd:fc:
05:97:51:4d:71:24:3e:68:d9:aa:7d:93:f2:cb:58:
a3:72:21:c8:9e:50:43:62:6e:65:97:44:1c:f1:3d:
f9:3f:32:dd:14:c5:a0:0b:26:12:25:78:62:32:a2:
8a:bc:4d:5f:c0:20:e7:57:43:6f:59:b5:9f:15:8f:
8c:9a:3b:26:bf:9e:f5:b7:b2:c7:5c:b8:9b:3f:3a:
3f:a9:a7:67:f3:61:5d:bc:12:92:ec:84:7b:fd:62:
3e:07:3f:47:f1:0b:6a:c8:57:9f:4c:2e:75:c4:0c:
4b:27:38:e7:7d:7b:05:cb:36:eb:07:7d:40:36:f5:
0c:eb:f3:6f:15:b8:57:48:78:c6:2f:eb:34:69:ee:
a8:f0:30:2f:a0:5a:5c:93:88:8d:e0:ac:91:04:b9:
c3:b4:6d:84:d3:99:6e:04:a0:ae:59:f0:b7:0a:4b:
52:52:f9:bf:f1:e8:8c:48:db:31:dc:65:e4:d9:90:
be:0b:24:27:7a:cd:e8:5d:e9:45:cd:3a:cb:b8:e7:
2b:f7:92:f2:4a:3f:a2:03:95:e1:c0:a5:bb:84:85:
21:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:5F:E6:35:75:95:63:E0:F7:F4:3E:72:16:44:DA:2C:42:8A:F2:93
X509v3 Authority Key Identifier:
keyid:1F:77:3A:13:7D:5B:FB:58:69:F5:7D:AC:7F:35:9E:C2:81:80:47:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H3c6E31b-1hp9X2sfzWewoGAR6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a11477-7d10-47e9-8b5c-7b7244e69a93/1/cl_mNXWVY-D39D5yFkTaLEKK8pM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a11477-7d10-47e9-8b5c-7b7244e69a93/1/H3c6E31b-1hp9X2sfzWewoGAR6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.128.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:a1:4d:0c:82:ae:8c:25:53:0b:95:65:91:ff:fc:08:bb:14:
11:20:1b:7c:aa:64:96:a5:5e:d8:d3:02:e1:7b:1f:3f:85:c7:
cb:b6:9a:8a:dc:ac:06:e1:07:da:e0:77:ce:9d:27:9d:29:4a:
55:04:e1:c0:9c:4e:2f:fc:9d:00:23:68:d3:99:10:48:42:e5:
0d:23:19:ec:68:5e:92:74:4e:8a:02:47:7e:a8:c8:ae:42:8e:
b9:23:a9:69:e3:02:14:d8:63:45:66:2f:fc:a2:17:01:b7:a0:
2a:12:33:93:ce:c8:4f:7c:76:28:d3:91:86:79:76:95:5c:a4:
78:bc:89:f0:4c:53:dc:a5:c6:21:66:b0:85:c4:20:8d:1b:ec:
8a:17:96:43:5d:2e:ad:06:01:88:99:bc:a7:d6:fa:1d:bf:3e:
b1:76:2c:d0:61:48:a0:9b:45:97:f2:13:58:36:19:85:81:da:
bd:89:c5:b5:a7:e0:8b:d0:be:af:d5:67:05:14:3c:b1:69:a0:
b5:87:06:d4:f5:cb:28:fe:25:17:30:1f:6a:02:3c:a7:27:83:
95:f1:be:6d:56:47:66:2d:c7:d9:42:07:7b:0a:c3:95:45:2d:
bd:43:c1:4a:4e:15:c6:8b:4a:1c:99:36:96:49:28:9a:f8:89:
85:63:21:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:30 2023 by rpki-client on console-fra.rpki-client.org