Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/83c141-6c08-4635-9306-f21de4ee10f2/1/rVuIj1cS8XcAYHPqDPzFGf46S3g.roa
File: rVuIj1cS8XcAYHPqDPzFGf46S3g.roa (raw, json)
Hash identifier: sfNHj1d0Aa4nroAt3dDcMoeh3lh1sfXtgM2FAq7tvSE=
Subject key identifier: AD:5B:88:8F:57:12:F1:77:00:60:73:EA:0C:FC:C5:19:FE:3A:4B:78
Certificate issuer: /CN=614e10c5584ca6ffac82574ba34cf22bc030e1b4
Certificate serial: 663008
Authority key identifier: 61:4E:10:C5:58:4C:A6:FF:AC:82:57:4B:A3:4C:F2:2B:C0:30:E1:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YU4QxVhMpv-sgldLo0zyK8Aw4bQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/83c141-6c08-4635-9306-f21de4ee10f2/1/rVuIj1cS8XcAYHPqDPzFGf46S3g.roa
Signing time: Sat 01 Jan 2022 01:54:10 +0000
ROA not before: Sat 01 Jan 2022 01:54:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 146.19.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6696968 (0x663008)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=614e10c5584ca6ffac82574ba34cf22bc030e1b4
Validity
Not Before: Jan 1 01:54:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad5b888f5712f177006073ea0cfcc519fe3a4b78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1c:73:f2:ec:ee:11:77:2c:f4:59:c5:33:a6:
93:d4:bc:f5:da:9d:6f:47:d1:82:9b:11:c9:b9:03:
95:1f:cb:56:c0:8b:ce:d5:1d:7b:0d:ef:24:53:0d:
21:8d:ff:0b:95:ee:07:1c:b5:2a:65:19:e6:e9:bc:
9e:27:97:31:0b:f5:9c:5c:70:8b:10:7b:6d:9c:cb:
f2:de:78:12:2f:11:2d:a5:b3:20:d9:e2:54:cf:37:
97:ae:a9:a5:1c:ba:35:10:22:05:54:3c:f9:18:93:
d0:4d:4a:e4:b7:99:9a:8d:9d:af:b0:aa:1e:84:00:
00:4a:e1:e0:c3:e0:36:89:b3:20:92:ac:54:46:93:
47:09:9c:00:c7:27:99:83:3d:2f:5f:4e:d2:55:e7:
2b:86:53:cc:62:5e:91:ab:63:31:09:14:44:d7:5c:
de:27:06:7f:a8:87:61:dd:7b:ff:53:d8:e5:bd:dd:
57:ea:cf:bf:1a:09:5e:6d:88:84:17:e0:78:f5:ef:
1f:d3:7c:b6:8c:d6:57:6f:6a:74:22:a5:55:2b:a3:
9a:bb:37:09:9d:93:d9:83:56:06:18:d8:78:89:12:
85:66:a7:c6:70:5d:13:6d:20:2e:25:56:54:1d:3d:
65:48:8a:d8:bb:b3:7c:95:28:ad:1f:3d:24:d1:e8:
13:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:5B:88:8F:57:12:F1:77:00:60:73:EA:0C:FC:C5:19:FE:3A:4B:78
X509v3 Authority Key Identifier:
keyid:61:4E:10:C5:58:4C:A6:FF:AC:82:57:4B:A3:4C:F2:2B:C0:30:E1:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YU4QxVhMpv-sgldLo0zyK8Aw4bQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/83c141-6c08-4635-9306-f21de4ee10f2/1/rVuIj1cS8XcAYHPqDPzFGf46S3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/83c141-6c08-4635-9306-f21de4ee10f2/1/YU4QxVhMpv-sgldLo0zyK8Aw4bQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.154.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:f3:2f:b1:47:4b:3a:14:94:94:0e:06:ed:88:62:c2:a6:a4:
eb:f8:36:43:aa:82:cd:87:b6:bf:33:27:d6:df:cb:a5:fd:24:
51:63:9c:98:46:2a:40:f6:a0:04:5d:c1:51:d3:64:a1:2b:6f:
8a:91:e1:95:f8:5a:6a:e5:a0:7d:12:14:e9:b4:56:30:44:c7:
4a:63:2b:31:10:5d:0f:57:2d:4f:c3:ff:5c:1e:26:1c:e0:59:
f5:19:25:01:c9:82:fd:b3:c0:4a:44:c6:af:54:9e:04:a7:19:
68:91:8a:08:dc:5d:4c:48:d1:63:dc:4f:40:c2:34:ad:ce:b8:
e2:2b:bb:98:02:70:91:72:68:59:35:fd:45:98:c4:9c:a1:63:
55:e5:06:87:28:06:c4:9d:3c:47:8b:ab:9e:a1:67:e1:93:17:
cd:92:6c:44:a4:02:d1:c1:7a:09:2c:85:b9:d6:65:2a:8b:17:
1b:41:68:f9:39:94:61:b2:78:cc:14:aa:6c:cc:65:d7:50:d0:
c3:5d:19:d3:4f:55:79:26:1d:1c:58:9f:ec:64:68:13:21:83:
3e:38:5c:eb:e1:a8:c5:18:e8:9f:4c:81:3b:ff:78:cb:70:3c:
0a:78:3f:02:60:36:e6:c6:67:4c:31:58:bd:52:1f:42:a4:0d:
88:66:b1:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:14 2023 by rpki-client on console-ams.rpki-client.org