Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a11477-7d10-47e9-8b5c-7b7244e69a93/1/p5v2odJ2RgboBuxrDwAW_at0b1k.roa
File: p5v2odJ2RgboBuxrDwAW_at0b1k.roa (raw, json)
Hash identifier: FTPNX3LNLK5sXfEq8anCqLuRkorzHNBExAzg2IMsWo8=
Subject key identifier: A7:9B:F6:A1:D2:76:46:06:E8:06:EC:6B:0F:00:16:FD:AB:74:6F:59
Certificate issuer: /CN=1f773a137d5bfb5869f57dac7f359ec2818047a4
Certificate serial: 01843CA83EB9007EF4F09D70AECF66FD21CC
Authority key identifier: 1F:77:3A:13:7D:5B:FB:58:69:F5:7D:AC:7F:35:9E:C2:81:80:47:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H3c6E31b-1hp9X2sfzWewoGAR6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a11477-7d10-47e9-8b5c-7b7244e69a93/1/p5v2odJ2RgboBuxrDwAW_at0b1k.roa
Signing time: Thu 03 Nov 2022 08:42:49 +0000
ROA not before: Thu 03 Nov 2022 08:42:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 146.19.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:3c:a8:3e:b9:00:7e:f4:f0:9d:70:ae:cf:66:fd:21:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f773a137d5bfb5869f57dac7f359ec2818047a4
Validity
Not Before: Nov 3 08:42:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a79bf6a1d2764606e806ec6b0f0016fdab746f59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:6d:45:07:ae:ae:29:58:e9:46:07:1a:71:0c:
ce:f3:a8:6e:cd:e0:81:d5:cb:b8:ae:d9:06:63:39:
ae:65:f1:33:08:49:ec:7a:b5:d7:2f:95:63:36:16:
f5:bc:c7:43:d6:f1:f1:3d:1f:9c:59:d4:35:b4:f2:
34:78:98:ee:54:0e:8e:0b:f1:53:a7:e8:fc:fe:80:
88:71:8b:bc:c2:4f:51:ca:7a:68:64:07:19:49:f3:
69:cf:fb:35:bc:2d:ae:fe:e3:7b:c9:bc:2f:cf:b6:
1d:89:12:14:71:52:08:19:c6:5f:d7:86:a8:6a:e9:
a9:4a:2d:bf:4d:0d:9d:1a:72:20:90:d0:57:16:5b:
43:13:c4:2e:fd:31:a7:8a:14:94:49:c2:7c:71:a0:
8f:ac:d3:e4:81:a5:47:91:2d:aa:d6:12:97:c1:4d:
5a:18:d1:9a:96:26:5e:29:b7:32:5a:08:ff:97:9a:
6c:d8:24:a4:bf:cc:ac:f7:fd:26:7a:83:01:a0:87:
a2:e1:6d:01:ba:fc:b6:96:64:31:60:f6:b8:b0:bf:
8b:67:8e:a1:a8:06:51:eb:f1:f6:76:75:f2:01:20:
1e:8f:cb:dc:1e:ca:3f:26:69:0a:1a:a1:5b:9d:f5:
0d:9a:4a:7c:07:6a:53:cf:bf:23:b3:1b:8d:18:61:
bf:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:9B:F6:A1:D2:76:46:06:E8:06:EC:6B:0F:00:16:FD:AB:74:6F:59
X509v3 Authority Key Identifier:
keyid:1F:77:3A:13:7D:5B:FB:58:69:F5:7D:AC:7F:35:9E:C2:81:80:47:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H3c6E31b-1hp9X2sfzWewoGAR6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a11477-7d10-47e9-8b5c-7b7244e69a93/1/p5v2odJ2RgboBuxrDwAW_at0b1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a11477-7d10-47e9-8b5c-7b7244e69a93/1/H3c6E31b-1hp9X2sfzWewoGAR6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.128.0/24
Signature Algorithm: sha256WithRSAEncryption
01:6e:f5:11:78:ab:87:8a:02:a1:8d:f2:de:69:ca:b6:8d:ad:
3e:f8:2f:9d:a8:d7:2d:eb:f3:a0:d8:17:0a:58:ff:4c:9b:a0:
74:04:ca:20:da:a7:2b:34:d1:ee:11:df:16:0a:97:ef:61:a1:
5b:12:cd:d5:8e:97:df:97:7f:42:cd:d2:f2:48:db:85:60:29:
f5:92:e1:cb:ac:e2:5d:58:4d:f7:e4:fd:80:fb:3c:3c:2d:76:
b4:97:3a:18:6f:3f:b6:c9:c6:2d:19:7c:3f:0c:84:62:89:6d:
eb:4d:85:2f:62:1e:d5:91:39:07:9f:25:cb:32:55:d0:cc:ec:
55:b8:06:49:e0:6f:bb:b9:10:03:5c:a5:5b:03:b5:56:df:ba:
2a:3d:0c:f5:a7:b4:69:7b:14:d0:2e:ac:23:d6:2e:21:6f:5c:
04:15:38:63:ac:e0:31:47:6d:81:80:f7:0a:1c:65:3e:11:66:
de:ea:2d:62:e8:38:4e:66:2c:51:d8:4f:2f:49:8a:3b:e0:ba:
4d:a0:62:52:ae:de:24:09:8c:be:e0:60:3c:a1:be:8f:a2:1e:
99:9f:89:91:93:63:ea:2b:3d:a7:d1:04:71:90:26:f1:9a:f9:
a0:85:05:36:52:a4:5e:46:6a:98:40:c6:83:73:39:7c:66:fa:
22:3f:f6:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:30 2023 by rpki-client on console-fra.rpki-client.org