Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/7PCFKsxM7kRE1Z-H3rTmli1hd8U.roa
File: 7PCFKsxM7kRE1Z-H3rTmli1hd8U.roa (raw, json)
Hash identifier: aFWjh/U7Ednc+rcfu+hIWwR3VDerhtbhY32a8ROtoa8=
Subject key identifier: EC:F0:85:2A:CC:4C:EE:44:44:D5:9F:87:DE:B4:E6:96:2D:61:77:C5
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27880801
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/7PCFKsxM7kRE1Z-H3rTmli1hd8U.roa
Signing time: Sat 01 Jan 2022 16:08:14 +0000
ROA not before: Sat 01 Jan 2022 16:08:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43234
IP address blocks: 146.120.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 663226369 (0x27880801)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ecf0852acc4cee4444d59f87deb4e6962d6177c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ff:00:70:28:0e:79:73:cb:60:a8:21:d7:ab:
9e:16:74:8f:2a:15:98:a3:d2:bc:c9:b3:a3:f3:4b:
ac:6d:52:54:55:bf:7f:f6:37:1c:18:54:1f:12:55:
f2:95:e8:45:f2:01:2b:26:f7:00:07:5b:6b:e9:0a:
18:7e:66:9e:13:46:2c:6a:1a:dc:08:17:cc:e5:4d:
f5:68:46:3a:8e:63:17:c5:c3:3f:47:b7:66:8d:76:
dd:85:c6:53:81:0a:78:00:2e:c1:50:47:a0:57:83:
91:6e:9b:4f:56:ff:57:5e:75:c5:9f:a3:f5:98:0d:
f9:14:eb:82:f2:ae:b0:d2:fa:47:b1:7d:f3:42:08:
b2:ac:4c:e8:11:a2:b5:dd:73:19:96:4c:37:db:f9:
b2:12:1a:21:19:12:03:44:ad:ed:fa:b2:5a:04:be:
93:f7:93:0f:ed:44:80:66:1e:b0:d3:b4:3c:89:01:
36:e2:df:e3:e4:b1:8c:91:62:ca:c1:19:be:4e:50:
9f:54:92:77:e0:cc:a2:05:d9:28:5d:a9:7d:c0:0e:
10:a0:f9:c4:3e:b7:4c:bf:34:e4:d6:e4:44:7e:71:
a5:a0:4d:4e:11:12:1a:bc:35:ec:f3:1b:e9:71:7e:
30:82:b5:84:22:89:c7:a7:e2:97:31:2d:e0:c9:3a:
b3:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:F0:85:2A:CC:4C:EE:44:44:D5:9F:87:DE:B4:E6:96:2D:61:77:C5
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/7PCFKsxM7kRE1Z-H3rTmli1hd8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.120.113.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:2c:33:05:d8:39:d2:cc:98:22:04:5b:72:e4:13:53:7b:08:
9e:e7:91:f0:a4:29:56:74:f4:2f:46:1e:3b:b1:b5:b6:82:de:
99:a2:dc:c5:c3:2b:4f:6d:43:76:86:3b:3b:df:f8:6b:47:56:
49:32:44:72:b4:da:f7:4f:43:2a:a9:46:52:22:7e:65:07:3e:
87:0d:69:1a:87:88:cd:63:91:d6:92:92:a0:ed:5c:83:85:03:
0a:48:7e:7b:36:18:73:b0:1e:47:72:df:7d:32:19:d0:b4:87:
63:70:32:93:97:08:f0:5e:68:2d:20:07:af:21:5a:c8:6a:e4:
22:aa:91:62:bc:09:7f:2b:6b:a1:74:18:02:0e:a1:f9:5f:bf:
49:6c:14:45:22:62:13:d7:ad:db:08:98:08:a0:3c:94:d9:c3:
a3:c6:f1:04:f4:7e:ee:05:30:0b:89:ed:cd:b0:76:d0:e7:84:
e1:5e:43:b7:64:34:9e:8a:62:7a:8b:af:d5:ba:fb:ce:8d:ec:
db:09:d2:c5:82:4d:9c:d5:e4:2f:3e:39:76:b2:70:89:93:fc:
a3:bb:df:a2:f0:9a:d4:60:a0:54:0b:22:fd:21:55:b8:3a:7b:
e0:9f:35:84:09:c5:b0:e7:26:94:29:56:33:6a:75:0b:35:83:
7d:dc:77:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:49 2024 by rpki-client on console-ams.rpki-client.org