Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/9a29bd-11c4-4838-bb3a-411f8f7be744/1/ifW573el3FuhZCl2j59_vm9uag4.roa
File: ifW573el3FuhZCl2j59_vm9uag4.roa (raw, json)
Hash identifier: rEwUMbeQTx4u9CqFzFLVvi058GYWl286QDAObbUv9XQ=
Subject key identifier: 89:F5:B9:EF:77:A5:DC:5B:A1:64:29:76:8F:9F:7F:BE:6F:6E:6A:0E
Certificate issuer: /CN=9616ef27278309d222b3ec97334e4a83ad48971b
Certificate serial: 3BA665
Authority key identifier: 96:16:EF:27:27:83:09:D2:22:B3:EC:97:33:4E:4A:83:AD:48:97:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhbvJyeDCdIis-yXM05Kg61Ilxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/9a29bd-11c4-4838-bb3a-411f8f7be744/1/ifW573el3FuhZCl2j59_vm9uag4.roa
Signing time: Sat 01 Jan 2022 00:57:32 +0000
ROA not before: Sat 01 Jan 2022 00:57:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202909
IP address blocks: 146.19.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3909221 (0x3ba665)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9616ef27278309d222b3ec97334e4a83ad48971b
Validity
Not Before: Jan 1 00:57:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89f5b9ef77a5dc5ba16429768f9f7fbe6f6e6a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:fd:b8:9b:50:35:8e:2d:43:5e:a9:ac:c3:01:
a9:2c:a5:e9:7b:03:68:d2:19:28:fa:94:32:66:e4:
bd:b6:db:ad:61:c6:35:e0:11:0c:a8:fa:56:fe:5c:
ca:99:09:71:61:82:77:1b:ec:e8:5e:f6:20:67:9c:
c7:64:19:72:82:c7:e1:eb:00:ad:7f:8b:4e:3d:34:
06:db:9a:2c:45:9a:d4:dd:83:f8:75:0c:75:74:49:
11:4f:e0:2e:ba:9c:76:63:c8:33:20:79:37:16:b1:
39:f6:2a:08:fc:76:ed:1b:aa:3e:fc:a1:1e:3a:05:
11:fc:84:ff:87:fe:1a:94:fe:c3:b0:f3:98:96:b7:
43:bf:2f:d5:cf:d4:ab:69:d9:22:7b:07:77:b2:8b:
f4:97:c8:53:a0:57:91:df:be:9c:68:51:26:a9:7a:
5a:55:64:c4:18:77:a3:57:a3:d5:df:49:f8:da:14:
c1:9d:f8:2f:8f:9e:c2:29:3f:fc:45:f8:d2:35:d3:
eb:eb:ce:18:8d:2a:b4:58:a5:bf:49:22:b7:cd:95:
05:84:b7:29:61:d8:73:6d:cd:72:20:77:b6:f1:04:
59:59:8c:0b:35:db:07:fa:4e:d5:51:8d:d8:0c:ea:
91:8a:f3:a5:f2:36:74:99:1c:9c:97:a6:3c:22:1d:
e0:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:F5:B9:EF:77:A5:DC:5B:A1:64:29:76:8F:9F:7F:BE:6F:6E:6A:0E
X509v3 Authority Key Identifier:
keyid:96:16:EF:27:27:83:09:D2:22:B3:EC:97:33:4E:4A:83:AD:48:97:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhbvJyeDCdIis-yXM05Kg61Ilxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9a29bd-11c4-4838-bb3a-411f8f7be744/1/ifW573el3FuhZCl2j59_vm9uag4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9a29bd-11c4-4838-bb3a-411f8f7be744/1/lhbvJyeDCdIis-yXM05Kg61Ilxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.52.0/24
Signature Algorithm: sha256WithRSAEncryption
89:2a:80:d2:40:01:0b:fc:37:a1:b2:ee:b4:7d:6c:ac:31:12:
67:c3:1f:81:3b:28:c3:09:5c:70:84:8d:e6:ca:84:41:64:e0:
23:5d:5c:3c:2e:53:d9:4a:95:37:ec:7e:ce:76:96:72:28:80:
61:93:27:fd:8f:b1:93:de:6e:50:3c:15:4b:9f:a7:2e:cb:17:
9b:65:72:55:9d:b1:ee:a6:a9:af:5d:37:ae:47:52:d9:a3:a8:
ec:e3:8f:8f:1e:45:fa:62:e2:a8:ab:41:18:0a:df:91:58:37:
88:53:3f:e6:62:fe:9a:dd:9e:2a:da:35:73:3a:05:d3:69:f6:
87:f6:32:ba:c5:0a:02:c0:fa:27:4d:97:eb:6c:c1:c2:5b:b0:
24:a6:57:ae:4b:96:70:a2:d5:6f:27:54:b4:40:2a:51:b1:29:
c1:51:a4:45:67:24:57:11:c7:4d:7e:80:c9:76:00:2a:34:a6:
89:23:44:63:27:19:77:c3:7c:63:3b:7a:5c:a1:96:43:b0:3d:
31:c3:f7:8f:ed:9c:4e:ef:d6:3f:e2:71:50:0f:3f:7b:60:80:
c5:76:c3:1b:7f:8b:9c:41:8e:6b:1e:a4:d3:ca:c1:6c:59:a5:
c3:1d:28:63:31:f2:8e:e7:d3:cb:93:6e:67:13:b3:59:94:54:
11:e9:0b:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:09 2023 by rpki-client on console-ams.rpki-client.org