Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f34ee6-af62-49c5-b7a6-a5b1ac35b48b/1/bTVm6n5uSuhANxUsT-RkANWLVT4.roa
File: bTVm6n5uSuhANxUsT-RkANWLVT4.roa (raw, json)
Hash identifier: r77bgq0+H4vYOpHfDRFShR65RXkxZunnBmR94bQ1lrE=
Subject key identifier: 6D:35:66:EA:7E:6E:4A:E8:40:37:15:2C:4F:E4:64:00:D5:8B:55:3E
Certificate issuer: /CN=02ad21cf040c95a9d96d97f87a56cf54ee346b9c
Certificate serial: 0181F45668E972C249BD19D7436C48638B5C
Authority key identifier: 02:AD:21:CF:04:0C:95:A9:D9:6D:97:F8:7A:56:CF:54:EE:34:6B:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Aq0hzwQMlanZbZf4elbPVO40a5w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f34ee6-af62-49c5-b7a6-a5b1ac35b48b/1/bTVm6n5uSuhANxUsT-RkANWLVT4.roa
Signing time: Tue 12 Jul 2022 21:35:12 +0000
ROA not before: Tue 12 Jul 2022 21:35:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 146.19.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f4:56:68:e9:72:c2:49:bd:19:d7:43:6c:48:63:8b:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02ad21cf040c95a9d96d97f87a56cf54ee346b9c
Validity
Not Before: Jul 12 21:35:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d3566ea7e6e4ae84037152c4fe46400d58b553e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:8b:65:d0:e6:24:5e:fe:be:d1:2a:45:16:dd:
97:d5:a8:68:88:bc:b1:30:9a:b7:3c:a4:14:5a:eb:
f6:d8:20:bd:ce:58:76:5a:02:3b:ed:3f:f0:bc:b0:
93:86:83:3b:09:57:c0:36:4d:39:b9:fd:23:b0:f3:
1b:86:47:4a:0f:33:df:46:9a:71:73:d7:2c:c9:b0:
51:b1:e2:97:4d:2d:d1:28:15:5b:3b:07:a5:dd:76:
dd:61:0d:71:5b:55:0d:08:c4:ff:24:5b:4e:06:75:
49:4a:93:f8:91:c4:c3:b4:82:ad:62:e6:a3:30:39:
d9:91:2d:ba:ce:87:e6:78:d4:c1:ea:12:3e:0d:66:
f6:b5:e9:92:8d:02:28:15:bd:17:3e:0d:5e:97:f7:
45:23:35:33:0b:a5:4e:95:0c:6f:0f:3d:b5:ce:75:
a5:bd:1f:40:00:b4:85:50:22:ca:32:ac:b9:38:69:
81:92:2c:19:97:8d:5c:05:c6:9f:d3:c3:92:61:55:
71:16:37:35:20:29:da:ad:b2:7e:26:69:fa:76:9d:
80:46:c2:a7:c5:59:06:11:5d:5a:bd:c8:3f:0d:52:
a1:47:0f:ae:31:c8:49:39:c8:b8:bf:f6:4b:a7:3d:
15:48:38:9d:91:37:6f:d5:06:21:48:54:43:fa:05:
27:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:35:66:EA:7E:6E:4A:E8:40:37:15:2C:4F:E4:64:00:D5:8B:55:3E
X509v3 Authority Key Identifier:
keyid:02:AD:21:CF:04:0C:95:A9:D9:6D:97:F8:7A:56:CF:54:EE:34:6B:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Aq0hzwQMlanZbZf4elbPVO40a5w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f34ee6-af62-49c5-b7a6-a5b1ac35b48b/1/bTVm6n5uSuhANxUsT-RkANWLVT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f34ee6-af62-49c5-b7a6-a5b1ac35b48b/1/Aq0hzwQMlanZbZf4elbPVO40a5w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.190.0/24
Signature Algorithm: sha256WithRSAEncryption
39:45:10:ff:73:62:08:f9:1f:39:5f:3d:c8:47:97:55:fc:d5:
e2:c9:f1:1e:c2:d6:9c:b1:47:a9:79:86:53:21:05:f4:e5:ad:
4e:ef:a3:da:1f:e7:94:2b:e0:d8:0e:af:11:a6:f4:8e:3a:42:
8f:6b:5a:89:38:17:53:49:a9:01:1e:a4:d4:52:82:f5:2a:7d:
4c:e8:b6:5e:f6:93:df:93:e8:9b:78:66:c4:b7:c1:fe:a6:0a:
98:0d:70:ef:a5:a2:a0:64:e2:52:2a:df:76:fe:31:04:d8:12:
e2:1e:90:dc:04:74:f4:80:a1:b6:5f:21:59:3e:bd:6e:56:f2:
cd:57:76:b2:65:56:44:e7:28:89:fc:90:68:7b:ab:1c:9a:05:
61:14:9a:a7:7c:47:d6:80:c3:2c:b7:39:a6:d3:59:dc:a7:97:
bf:19:4c:52:e9:96:d0:40:bd:40:5d:10:3a:13:35:a5:25:cd:
44:af:32:a6:43:2a:6e:e4:4f:fb:29:77:2f:12:49:9a:a2:c8:
8a:35:85:43:c9:16:79:cb:de:04:4c:16:ad:95:f2:73:0c:51:
4d:75:75:28:e9:b7:cd:c4:17:ef:b0:cd:34:19:dc:92:46:ff:
0e:d0:52:4e:de:c6:59:5a:9f:60:65:0f:95:69:41:f8:84:78:
d4:a2:7c:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:35 2023 by rpki-client on console-fra.rpki-client.org