Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/IU2vIQpJcxDSK_ThCWNw-oTtJRc.roa
File: IU2vIQpJcxDSK_ThCWNw-oTtJRc.roa (raw, json)
Hash identifier: MnjhEhXu6DUzMdvENnEklFQKp7uatAKFMB34iiRSa+w=
Subject key identifier: 21:4D:AF:21:0A:49:73:10:D2:2B:F4:E1:09:63:70:FA:84:ED:25:17
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27801272
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/IU2vIQpJcxDSK_ThCWNw-oTtJRc.roa
Signing time: Sat 01 Jan 2022 16:08:11 +0000
ROA not before: Sat 01 Jan 2022 16:08:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42489
IP address blocks: 146.120.222.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 662704754 (0x27801272)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=214daf210a497310d22bf4e1096370fa84ed2517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:cb:0d:53:76:26:7a:fa:2e:06:1b:e0:09:9d:
36:60:ed:e2:6a:04:b8:39:d3:8e:9a:44:a0:12:d2:
e2:d9:40:96:0a:94:3c:75:28:29:94:89:a3:ea:99:
5d:3b:8d:ac:5c:85:4b:6d:17:38:b9:83:38:cc:dd:
18:68:e9:15:ac:e8:40:39:84:6f:aa:2f:6d:da:89:
5e:c0:26:57:02:a4:48:33:c7:27:b9:6f:56:f1:4c:
a2:2a:0e:a1:e2:58:74:33:80:8d:96:cc:0e:8c:ff:
8b:3d:de:d3:2a:a8:ab:7b:62:a3:9c:b1:ae:28:7c:
8d:a2:f4:93:c3:c9:98:83:2f:b8:5f:cd:30:89:0b:
41:6b:9f:df:bd:d7:cb:93:42:74:27:e8:d6:2d:af:
09:fb:1b:13:42:74:ce:bd:2b:4a:7c:fd:1f:6f:1c:
31:7f:a5:82:23:40:f1:7e:7c:c7:c7:3d:4a:fd:33:
63:9a:b5:a7:45:ac:e4:50:0f:18:d7:af:d3:8a:31:
4d:8e:57:a9:e0:3d:df:61:a4:14:22:a8:ea:5a:c0:
d6:23:5a:9d:7d:1b:c5:2a:0a:73:1e:60:ac:9d:ae:
61:c0:97:e4:4d:9e:14:7c:b2:97:d1:16:f2:fc:41:
d3:e0:f9:1f:d2:18:42:a3:59:6d:95:90:f3:46:9f:
ec:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:4D:AF:21:0A:49:73:10:D2:2B:F4:E1:09:63:70:FA:84:ED:25:17
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/IU2vIQpJcxDSK_ThCWNw-oTtJRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.120.222.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:37:7c:9c:ed:a5:ed:0a:bc:46:72:f7:4a:9e:d6:c9:db:93:
74:81:9a:7a:e2:2f:c8:cd:6f:80:47:29:01:85:77:46:94:39:
a8:72:73:2e:46:0b:d9:ea:65:e8:5b:c7:e5:54:12:39:27:32:
9d:1e:1b:aa:af:ef:c4:c5:ae:48:5a:c5:07:f7:f2:cb:d1:8c:
95:cb:b1:a1:59:88:a1:f0:29:08:87:fd:61:6e:7f:04:76:94:
b4:a2:47:ed:ad:47:a1:ad:f8:a7:d3:34:01:b3:3a:d3:65:d5:
b1:8a:d1:31:fb:91:cf:4d:0a:96:00:4c:e6:e0:de:04:92:09:
c7:62:ef:eb:52:0a:b8:b7:28:00:5f:2f:21:1e:40:9d:83:7b:
50:20:b2:25:ec:c9:58:80:f4:43:b4:d8:44:a8:49:2d:b6:ef:
67:fb:e3:8f:b7:d1:81:9f:5e:3e:31:36:20:3d:c6:25:06:d3:
28:d8:c9:7e:95:e1:71:53:ba:38:87:7b:94:be:86:d4:97:6c:
e4:88:8e:fe:ab:89:ac:11:3f:8a:b5:e3:9b:f5:37:61:db:15:
bb:f1:69:70:ed:f6:d4:5c:77:a5:b0:79:19:b9:86:c3:7d:1e:
76:ae:a9:f5:3b:69:a3:28:88:e1:4f:1d:b3:ec:e3:3c:dd:c7:
6d:2e:3d:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:36 2024 by rpki-client on console-fra.rpki-client.org