Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/JmWQOOEw-wgilQNH2bmXnw0AJN0.roa
File: JmWQOOEw-wgilQNH2bmXnw0AJN0.roa (raw, json)
Hash identifier: DnwgkYpTcPHreEhlLAAiFWX244Nqw/HYOXTfUiTsHxo=
Subject key identifier: 26:65:90:38:E1:30:FB:08:22:95:03:47:D9:B9:97:9F:0D:00:24:DD
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 29836C6F
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/JmWQOOEw-wgilQNH2bmXnw0AJN0.roa
Signing time: Wed 20 Apr 2022 09:00:00 +0000
ROA not before: Wed 20 Apr 2022 09:00:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49376
IP address blocks: 146.120.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 696478831 (0x29836c6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Apr 20 09:00:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26659038e130fb0822950347d9b9979f0d0024dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:52:98:51:f9:5a:af:61:74:68:a1:33:e3:20:
1a:27:63:95:e6:e0:6c:91:01:df:83:91:4c:d0:fc:
f4:76:b4:5a:04:a4:ef:87:d7:61:6d:5a:ab:44:b9:
c2:38:cf:dc:3c:fd:97:66:9f:2e:a5:42:02:39:26:
1d:d4:b8:f6:c1:bc:f8:b4:a0:74:20:be:f0:53:5d:
ee:fe:40:0b:a9:87:f9:75:68:f8:43:49:d2:84:96:
39:a9:f7:a5:c9:af:22:5e:71:81:25:f5:73:2b:a5:
56:83:ab:f9:99:06:17:e6:27:de:70:c0:32:33:1a:
93:08:f6:5d:e2:73:4c:7c:2e:c1:d3:44:9e:03:a9:
13:ca:88:c4:36:7c:20:a4:c1:c5:ad:1a:c0:43:68:
f8:3e:0f:f1:2e:72:75:5b:94:44:93:04:c0:01:74:
7b:0f:ce:6c:50:e7:06:1e:b8:d0:fa:fc:d5:fd:fa:
6a:a8:c0:c2:59:0c:a4:41:0a:6f:15:71:54:d7:d7:
07:04:0e:cd:ba:81:32:29:d2:4c:49:f2:06:cd:43:
74:72:bc:ce:5b:e2:2b:e4:f0:59:c5:80:3c:f0:89:
fa:0c:ab:4d:93:63:eb:8b:c0:6c:83:34:c3:3c:fd:
e1:84:b1:d2:f2:a6:0c:d5:e5:55:00:87:e6:d8:0c:
32:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:65:90:38:E1:30:FB:08:22:95:03:47:D9:B9:97:9F:0D:00:24:DD
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/JmWQOOEw-wgilQNH2bmXnw0AJN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.120.207.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:7b:b3:e7:20:71:aa:2d:dc:ee:ba:9f:14:f7:74:a0:d5:54:
a1:c5:85:ca:c7:11:fd:2c:5f:e1:e7:86:92:6a:b1:d8:3d:01:
b9:e2:79:d4:33:80:9d:56:06:55:45:ae:9c:eb:ef:f5:f4:a8:
72:fc:f1:8c:ff:b2:66:1a:71:8f:ad:1d:75:a8:7a:d3:a4:75:
fc:c4:6d:96:5e:58:7b:87:a9:87:d9:45:17:83:24:cc:e4:9c:
ef:95:9c:28:c3:90:a4:fe:bf:9a:ac:9d:8d:51:af:6d:a7:79:
5b:f1:47:ce:1c:64:3c:d0:5f:e0:77:88:86:18:05:ef:a5:9d:
f3:87:bf:f4:e2:d1:4c:94:ac:67:5c:4a:b8:f8:d2:bf:b2:6a:
d0:19:b3:16:a5:da:05:f1:b7:b0:1b:01:e6:2e:71:ba:55:3d:
9b:45:48:71:6f:1a:e9:d6:f2:07:07:00:c4:0e:22:f5:88:19:
0d:63:d4:e2:c3:5e:77:1b:bb:f8:80:f1:97:d1:ae:c9:7c:19:
90:8b:14:c2:d4:9f:21:c6:cb:d3:ad:41:6f:8c:89:30:a0:84:
e6:88:48:0c:83:5e:8d:30:f6:55:9a:ce:51:dd:e4:f2:ef:89:
c5:c2:f5:26:80:1e:b9:56:8c:6f:8c:4e:1b:f6:42:bd:5f:72:
7e:ec:6f:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:41 2023 by rpki-client on console-fra.rpki-client.org