Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f34ee6-af62-49c5-b7a6-a5b1ac35b48b/1/9xA0R1tpudpkXu6lsy4ddKjL3C4.roa
File: 9xA0R1tpudpkXu6lsy4ddKjL3C4.roa (raw, json)
Hash identifier: bYhpkDt4Gm/M4LmphlBVyRRmAh5655Co+wmeHVYfU98=
Subject key identifier: F7:10:34:47:5B:69:B9:DA:64:5E:EE:A5:B3:2E:1D:74:A8:CB:DC:2E
Certificate issuer: /CN=02ad21cf040c95a9d96d97f87a56cf54ee346b9c
Certificate serial: 633E91
Authority key identifier: 02:AD:21:CF:04:0C:95:A9:D9:6D:97:F8:7A:56:CF:54:EE:34:6B:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Aq0hzwQMlanZbZf4elbPVO40a5w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f34ee6-af62-49c5-b7a6-a5b1ac35b48b/1/9xA0R1tpudpkXu6lsy4ddKjL3C4.roa
Signing time: Sat 01 Jan 2022 01:03:13 +0000
ROA not before: Sat 01 Jan 2022 01:03:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 146.19.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6504081 (0x633e91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02ad21cf040c95a9d96d97f87a56cf54ee346b9c
Validity
Not Before: Jan 1 01:03:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f71034475b69b9da645eeea5b32e1d74a8cbdc2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:13:33:05:8e:2d:a4:b0:20:59:d4:eb:27:ce:
fe:96:b5:06:05:1d:2e:5a:7e:cf:b1:66:a4:a5:b2:
5f:33:1d:6b:83:5a:d0:03:10:f5:61:00:7d:b4:8c:
72:0c:6f:67:a7:be:f2:91:46:4b:9a:f5:2a:b2:48:
fd:08:da:d1:a7:31:5b:72:52:c7:9c:e1:e1:f3:93:
43:c1:be:be:dd:8a:5b:62:78:76:9c:bc:65:74:67:
9b:25:d0:6e:b7:4e:dd:3c:63:8b:1e:19:92:29:ff:
8a:cd:e3:4e:64:75:83:2b:42:da:36:14:80:17:b9:
a7:b8:64:55:37:0e:5d:80:9c:ff:c6:41:1c:35:a5:
f5:a5:4f:dc:e9:c9:40:12:1b:69:63:e7:17:d8:99:
94:e8:66:61:cf:a2:6b:1f:6a:eb:66:0e:f9:3a:0d:
e8:1e:35:92:74:88:19:64:ac:5e:bc:c6:43:4a:7d:
6b:74:d4:ae:b4:c8:e3:00:bc:bd:aa:12:d3:af:33:
f0:e6:24:b9:83:e8:6b:ea:cf:13:e1:ad:66:52:0e:
ba:d1:ac:25:cd:6e:16:ad:39:60:0c:6f:18:ff:b8:
b1:c0:e6:5d:e0:6a:5d:2a:60:b1:cb:6f:fd:26:8d:
28:7d:72:84:bd:bf:21:6c:f2:79:53:1c:55:8f:a2:
f2:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:10:34:47:5B:69:B9:DA:64:5E:EE:A5:B3:2E:1D:74:A8:CB:DC:2E
X509v3 Authority Key Identifier:
keyid:02:AD:21:CF:04:0C:95:A9:D9:6D:97:F8:7A:56:CF:54:EE:34:6B:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Aq0hzwQMlanZbZf4elbPVO40a5w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f34ee6-af62-49c5-b7a6-a5b1ac35b48b/1/9xA0R1tpudpkXu6lsy4ddKjL3C4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f34ee6-af62-49c5-b7a6-a5b1ac35b48b/1/Aq0hzwQMlanZbZf4elbPVO40a5w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.190.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:2e:c4:a0:0a:c4:45:5e:32:4d:52:c3:2a:de:93:12:17:2e:
21:53:14:ba:c1:d0:22:29:6c:10:20:f3:d7:85:f5:b4:66:3a:
7c:49:45:38:b5:49:24:c9:4c:3f:d0:b6:72:66:88:1b:4f:31:
24:43:2f:3d:92:98:27:d5:6b:93:c2:1a:49:88:32:19:a7:f3:
78:c5:7b:d0:0b:0a:8a:03:b6:d3:73:23:33:3a:46:07:09:a5:
cb:6b:6e:a4:b4:77:41:1d:8b:50:35:0a:9d:b4:96:01:c6:0d:
56:6c:88:e3:64:0e:24:e3:96:1a:10:a0:f8:8f:ce:1b:cf:e3:
f0:ee:c4:b4:79:b0:fb:82:1c:af:d8:0f:74:5d:82:5f:50:d3:
8c:c6:3c:c1:6f:4b:ae:95:18:8e:12:35:45:33:d5:27:9d:55:
64:c2:c9:27:f6:1b:1b:f6:5b:eb:8c:ae:15:f1:ba:75:c8:04:
66:13:a6:9c:2a:a5:55:33:13:0e:de:f7:7c:d0:d3:40:f7:da:
99:f1:50:18:e5:b7:4d:e9:98:72:4a:fa:a5:00:ee:b7:9d:2c:
94:c8:77:ba:4f:71:67:87:c4:d2:61:88:2f:db:7c:df:8e:6f:
46:7d:02:3e:eb:09:02:22:be:69:02:f4:fc:27:ed:2d:c9:ce:
40:2b:bf:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:18 2023 by rpki-client on console-ams.rpki-client.org