Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/R3VxqH_HMfkrR4mKq4Q9kGuA_nU.roa
File: R3VxqH_HMfkrR4mKq4Q9kGuA_nU.roa (raw, json)
Hash identifier: OfQy3pnMjv1xE0IaG+WQutkOf/0xiu92pM+93vTdjWM=
Subject key identifier: 47:75:71:A8:7F:C7:31:F9:2B:47:89:8A:AB:84:3D:90:6B:80:FE:75
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 2A4C7DF4
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/R3VxqH_HMfkrR4mKq4Q9kGuA_nU.roa
Signing time: Thu 23 Jun 2022 15:27:32 +0000
ROA not before: Thu 23 Jun 2022 15:27:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206115
IP address blocks: 146.120.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 709656052 (0x2a4c7df4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jun 23 15:27:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=477571a87fc731f92b47898aab843d906b80fe75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:51:ac:17:fa:99:75:77:1f:88:d3:37:c9:32:
b1:27:bb:7e:31:0f:f6:0f:bd:bc:f7:4f:6d:67:6d:
4a:87:8f:2d:1d:a5:3c:ab:ac:36:e5:07:ec:22:50:
e3:28:43:4f:ac:c8:a8:3b:b5:21:06:e4:cd:b7:2b:
24:90:f3:db:b3:2c:6b:c8:f7:ca:32:c7:fb:fa:20:
f8:0d:ae:2f:7f:30:0b:7f:2f:85:d2:01:1b:83:eb:
13:3e:2c:bb:07:7c:c8:69:46:5d:8d:e5:99:cd:60:
ab:86:29:47:19:a2:bc:a8:6b:68:04:ea:7d:39:47:
86:99:eb:e7:6b:26:0c:7e:22:ad:e0:b6:7a:3c:92:
72:bf:f6:68:c4:8b:e7:e2:54:c0:ce:32:f5:0b:2e:
10:93:9a:48:06:a8:1c:88:44:40:73:ca:df:c8:ef:
57:fd:4c:8d:a8:32:bd:ca:07:4e:2b:d2:89:23:12:
b8:99:3e:3c:fe:b6:ab:ab:59:a6:0c:f1:ab:b5:4c:
38:12:00:06:d1:06:50:f6:93:17:17:0b:44:0c:7d:
b6:d2:21:36:fe:91:68:1b:33:1c:a8:7d:b8:be:39:
81:45:7e:3e:b4:42:85:3f:3a:fe:42:ea:26:e9:9a:
1e:c7:59:07:96:b4:dd:68:a8:0e:0d:9d:67:f9:cd:
0d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:75:71:A8:7F:C7:31:F9:2B:47:89:8A:AB:84:3D:90:6B:80:FE:75
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/R3VxqH_HMfkrR4mKq4Q9kGuA_nU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.120.88.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:3c:e9:53:a3:5b:f2:b6:d4:82:9e:31:c2:df:76:84:00:9b:
1f:c2:6b:a0:1b:e5:2c:2a:cd:f4:3e:b2:a0:89:6e:33:24:a4:
71:1c:65:5c:23:f7:51:cd:29:ae:49:be:b0:ec:49:6c:b3:ca:
ac:c7:f8:41:04:2e:70:b5:48:91:41:f3:cb:e2:5a:64:54:b5:
fb:4e:ca:1e:35:07:77:6c:31:a1:d0:f7:0f:5e:56:ed:b5:a1:
0f:d7:48:76:6e:68:61:6e:7e:3b:aa:f4:74:f4:4a:e3:34:ad:
3b:4a:31:ab:a0:1e:2f:c5:18:5a:11:77:28:30:a8:79:65:aa:
02:bb:bc:5a:65:7f:fd:89:8c:d7:c8:54:d9:72:e3:40:40:11:
93:3b:81:2f:72:ac:3d:5c:c4:73:d9:29:3d:a4:2a:f0:f6:cf:
33:60:0e:f2:f0:d4:fb:67:4b:68:22:92:70:e9:c5:2d:b8:1c:
d0:b4:0c:73:0a:ec:50:48:c2:0d:45:24:d5:f1:30:bb:c4:a5:
83:97:bb:2a:1e:97:cb:b5:9c:6d:0f:98:2d:c8:63:5d:b6:ac:
62:a4:39:2d:3e:41:e9:79:13:67:d4:46:40:75:f9:6f:3b:9e:
e5:1a:68:f1:12:5d:7a:23:15:36:28:bd:75:4c:f0:ad:1d:a6:
05:ff:b3:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:41 2023 by rpki-client on console-fra.rpki-client.org