Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/7qIgssmaWUfSCUcpCJpl4jxK6lU.roa
File: 7qIgssmaWUfSCUcpCJpl4jxK6lU.roa (raw, json)
Hash identifier: KCYeT48NTL587aO0oZ7UZLKR+rbe8zVOtbbWr0Fgsac=
Subject key identifier: EE:A2:20:B2:C9:9A:59:47:D2:09:47:29:08:9A:65:E2:3C:4A:EA:55
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27A4A709
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/7qIgssmaWUfSCUcpCJpl4jxK6lU.roa
Signing time: Sat 01 Jan 2022 16:08:29 +0000
ROA not before: Sat 01 Jan 2022 16:08:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48485
IP address blocks: 146.120.104.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 665102089 (0x27a4a709)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eea220b2c99a5947d2094729089a65e23c4aea55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:51:8a:9a:55:25:89:44:0f:88:e5:ad:37:ad:
a9:2f:7e:e5:ab:3e:2b:8d:ab:71:08:b8:96:87:06:
ca:0d:09:9d:bb:f1:87:2c:aa:32:9f:29:91:b0:26:
a2:8f:95:d1:d4:89:bd:a5:b1:46:f0:db:d4:61:28:
10:de:88:d0:41:38:3f:f1:c8:da:d7:b7:9c:3c:c0:
66:93:51:1b:cf:21:a3:33:6d:d4:7c:a3:02:97:d0:
9b:f1:87:88:e9:96:29:ee:b1:7b:62:e8:bf:59:0c:
37:af:a5:b9:7c:5f:1c:64:fc:a2:16:18:67:ab:3f:
dc:ef:90:17:1b:d9:ee:1f:5f:a2:d6:6c:b2:a7:56:
ad:25:b3:12:7c:6b:4d:6b:00:83:db:dc:84:7c:d9:
57:c0:1d:e4:09:46:d2:86:f1:3b:f8:80:14:2a:c3:
d5:d5:a6:76:06:7e:03:f0:03:25:e1:f0:96:fc:00:
dd:1a:62:c3:2c:be:09:f6:6d:f9:36:ab:f3:13:1d:
a4:8d:3b:71:02:92:5f:4d:75:ae:2a:f9:66:cb:5e:
2f:28:fd:77:c4:af:08:0d:53:76:98:ed:de:74:09:
c0:cc:7f:09:e5:12:f6:7a:a0:d1:ce:6a:e4:0c:b7:
0c:a1:55:f7:ff:c4:5d:27:d2:1e:44:0a:cf:33:36:
94:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:A2:20:B2:C9:9A:59:47:D2:09:47:29:08:9A:65:E2:3C:4A:EA:55
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/7qIgssmaWUfSCUcpCJpl4jxK6lU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.120.104.0/22
Signature Algorithm: sha256WithRSAEncryption
74:c7:1b:6a:b3:e6:4c:24:3b:79:0b:bd:e4:8e:96:cc:f4:9a:
b8:a2:b2:31:01:d5:7f:d1:39:81:80:e4:74:af:e3:af:2c:8b:
f0:a2:38:86:78:94:61:63:22:0d:22:c8:e6:16:7d:b1:bb:f2:
51:57:d4:53:30:7c:7d:9a:04:6e:32:eb:71:14:23:48:ee:b4:
7d:dc:46:74:7f:26:05:1c:c1:03:2b:ec:6e:71:b3:53:59:15:
79:8f:0d:bd:d4:67:b6:9d:56:05:ae:f9:63:84:fb:80:2d:05:
75:78:2b:d9:e9:63:34:ce:26:10:fc:46:e6:30:c3:a2:e4:ef:
0b:82:9e:57:0c:29:95:ff:5d:48:29:75:23:51:2b:8b:48:83:
cf:66:c4:94:47:9b:11:f9:c7:c2:55:47:96:26:d0:dc:da:4c:
16:6a:8a:37:1c:61:e2:90:9a:67:e4:b1:07:ba:68:4f:be:8a:
69:fd:92:dd:8d:74:a6:69:bb:02:1a:ad:a4:dd:dd:4a:d0:df:
7d:a7:fa:da:6d:9b:3a:c6:c2:d4:1c:11:1b:1f:bb:91:8d:b8:
14:fb:1e:ee:c6:1d:39:bc:c5:2c:13:5e:51:ac:43:d0:35:2a:
88:8c:ec:85:f1:c4:c1:a7:07:59:96:d4:7f:3c:a2:f1:1a:f6:
aa:43:ca:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:49 2024 by rpki-client on console-ams.rpki-client.org