Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/40cc36-e1f9-4d3c-81d8-96cac7e7f1f6/1/QtlKkhM-iRzJuDzVdGcvsdQO79o.roa
File: QtlKkhM-iRzJuDzVdGcvsdQO79o.roa (raw, json)
Hash identifier: KrT3F+2aq5ARLcZwkJE16BHlnZ842catOUdtIgzh6lU=
Subject key identifier: 42:D9:4A:92:13:3E:89:1C:C9:B8:3C:D5:74:67:2F:B1:D4:0E:EF:DA
Certificate issuer: /CN=1050049b5d860eff9364b3fe4c33d325bdebba21
Certificate serial: 019DA298
Authority key identifier: 10:50:04:9B:5D:86:0E:FF:93:64:B3:FE:4C:33:D3:25:BD:EB:BA:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EFAEm12GDv-TZLP-TDPTJb3ruiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/40cc36-e1f9-4d3c-81d8-96cac7e7f1f6/1/QtlKkhM-iRzJuDzVdGcvsdQO79o.roa
Signing time: Wed 11 May 2022 21:52:03 +0000
ROA not before: Wed 11 May 2022 21:52:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 146.19.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27107992 (0x19da298)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1050049b5d860eff9364b3fe4c33d325bdebba21
Validity
Not Before: May 11 21:52:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42d94a92133e891cc9b83cd574672fb1d40eefda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:35:ab:46:0c:9e:6e:db:0f:f2:21:70:48:b1:
12:57:67:b3:6c:cc:8a:93:de:1c:94:68:20:f9:01:
fb:22:a5:21:be:a1:aa:d0:67:2d:46:2f:27:9e:43:
49:7d:8b:60:27:e6:00:01:5a:8b:96:0b:fa:d7:71:
2f:15:c1:88:37:76:bd:ec:7a:a3:3d:63:1d:17:2b:
19:ea:1b:37:b3:41:4b:8a:e5:98:8c:cb:c3:90:31:
fc:6a:cf:c5:43:96:4a:79:94:dd:12:11:d9:29:c7:
c9:e9:8b:d7:92:bb:b5:23:da:4c:03:b7:86:8e:9c:
30:e6:16:db:7f:5f:f7:da:1d:cf:00:ea:33:df:b3:
0a:d7:5c:e4:bb:d7:80:d5:ac:d1:13:59:dc:00:14:
df:9d:b5:b6:dc:e6:ea:98:ce:f8:37:56:e6:b3:f4:
64:3d:95:b3:42:9a:dd:22:21:e8:d5:a1:cd:1e:e6:
1b:3b:5c:0c:81:e0:a5:62:98:04:8d:bf:16:6c:d9:
56:5c:d6:4d:84:88:15:ae:08:e5:77:f6:65:97:ec:
24:a5:ef:53:89:0f:b6:d6:f5:24:e1:a9:e9:90:81:
ab:db:bf:b0:1a:29:6b:0f:46:a1:15:f1:1d:3b:59:
06:c2:28:4c:52:ac:6d:4b:5a:03:c6:c9:53:86:2a:
54:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:D9:4A:92:13:3E:89:1C:C9:B8:3C:D5:74:67:2F:B1:D4:0E:EF:DA
X509v3 Authority Key Identifier:
keyid:10:50:04:9B:5D:86:0E:FF:93:64:B3:FE:4C:33:D3:25:BD:EB:BA:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EFAEm12GDv-TZLP-TDPTJb3ruiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/40cc36-e1f9-4d3c-81d8-96cac7e7f1f6/1/QtlKkhM-iRzJuDzVdGcvsdQO79o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/40cc36-e1f9-4d3c-81d8-96cac7e7f1f6/1/EFAEm12GDv-TZLP-TDPTJb3ruiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.129.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:7b:1b:cc:97:33:b0:1b:52:f0:43:41:74:00:c4:4b:61:b8:
9e:49:7d:0b:cc:8e:85:55:ab:d8:89:ef:7d:fe:f6:9c:36:d8:
48:05:1f:b9:58:c5:ba:8f:ec:c4:ca:ee:90:98:62:5c:47:27:
65:f9:df:a7:c3:0c:32:82:6a:f0:f3:37:4c:f1:27:ff:f7:b0:
08:03:e1:02:38:75:e5:cd:a8:88:16:70:6e:2c:c2:20:8f:3d:
f1:93:9b:ae:8f:ff:24:79:c6:97:3a:54:bf:b4:8c:f9:75:bc:
05:d4:86:6a:7a:61:98:7c:63:56:91:18:d4:45:4f:74:61:1e:
f1:99:ea:8d:ee:53:e2:cb:22:f5:58:7f:36:bc:a8:97:6d:18:
59:80:b6:d8:ff:e5:fd:a8:24:34:de:6b:8f:8b:47:6e:70:82:
51:10:93:41:8e:75:b3:40:e5:32:47:4b:35:fe:0c:74:f8:57:
30:fa:88:2f:74:78:cc:4a:b6:49:b8:e8:d1:3f:87:89:be:95:
db:21:73:a1:e2:25:89:27:66:c7:50:45:e7:aa:7d:68:04:00:
d1:13:57:2e:71:ae:da:78:89:2c:66:a3:5f:a2:a2:e0:71:6b:
7b:a5:9d:2d:9c:55:1f:e1:36:15:d1:7c:53:ef:82:83:4b:e4:
53:6d:91:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:04 2023 by rpki-client on console-ams.rpki-client.org