Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/VbFWB8rhzCVOa_mqWgrliYjPyWo.roa
File: VbFWB8rhzCVOa_mqWgrliYjPyWo.roa (raw, json)
Hash identifier: +ww2gaonedcFmj4PuMcPGg+zurIzRPIgFkDZP2VVpDc=
Subject key identifier: 55:B1:56:07:CA:E1:CC:25:4E:6B:F9:AA:5A:0A:E5:89:88:CF:C9:6A
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0189D594641C63F297090577526BC75DC29A
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/VbFWB8rhzCVOa_mqWgrliYjPyWo.roa
Signing time: Tue 08 Aug 2023 14:36:59 +0000
ROA not before: Tue 08 Aug 2023 14:36:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49319
IP address blocks: 146.120.180.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d5:94:64:1c:63:f2:97:09:05:77:52:6b:c7:5d:c2:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Aug 8 14:36:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=55b15607cae1cc254e6bf9aa5a0ae58988cfc96a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:bb:94:bd:a2:b9:86:2a:11:cd:c7:43:66:8d:
7a:37:42:f9:ec:19:20:58:f3:81:61:84:98:e6:48:
61:bb:9b:8a:9f:1c:70:72:8f:56:47:27:72:b3:f8:
9d:8c:57:e7:fd:12:92:86:fc:bc:c5:4f:58:00:ff:
3e:9f:43:a6:aa:55:cd:1e:f0:cb:33:9c:c7:9b:37:
a5:bd:ca:68:bf:86:f9:6c:0f:75:b8:86:64:7a:8e:
a7:27:6c:95:1d:99:b0:40:74:35:a6:5c:d3:f5:68:
69:3b:3e:27:04:72:61:51:0a:6e:3c:ec:9c:6f:bd:
19:d0:19:f5:b9:38:68:a7:23:f6:24:0f:a3:4a:fb:
e1:80:fd:6d:78:9b:d0:27:69:71:b3:d3:49:35:7f:
d1:e4:12:0f:12:a0:87:d1:e1:7f:9e:cf:e8:3a:73:
0a:08:72:fe:32:c8:84:03:cd:e2:f3:26:81:4b:6e:
2b:93:56:1c:c2:88:08:10:e3:6d:d0:fd:e5:a6:10:
5c:d5:ca:3b:2f:e8:60:d8:98:b5:22:00:e6:4c:74:
cd:b6:73:6d:87:a1:23:22:74:0a:ef:97:62:f3:fd:
2a:79:b3:f4:f8:e8:df:ce:83:3a:30:6f:52:52:fd:
61:c1:6f:29:f8:f1:e5:5b:2f:0d:5c:4f:f6:6e:96:
f0:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:B1:56:07:CA:E1:CC:25:4E:6B:F9:AA:5A:0A:E5:89:88:CF:C9:6A
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/VbFWB8rhzCVOa_mqWgrliYjPyWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.120.180.0/22
Signature Algorithm: sha256WithRSAEncryption
43:8e:36:d1:b1:a7:a7:d2:3c:7c:18:b8:43:6b:55:b6:b2:3e:
f9:47:71:da:56:b0:4f:83:30:b4:39:c3:bd:30:a5:db:1d:b6:
68:db:b0:7e:a7:54:e5:bd:ce:0b:7b:bc:25:41:c9:60:dd:8e:
1b:8f:6d:12:42:49:2f:69:06:12:1f:73:72:64:fe:77:a5:a4:
a9:7f:7f:c4:f7:42:6d:94:9a:cc:40:07:3d:2c:e7:24:96:36:
02:b2:37:dc:b2:32:0c:f5:06:d8:19:a8:5f:3c:dc:c7:2d:1f:
a5:4c:c2:da:da:d2:7a:ac:6f:71:b4:83:98:07:15:76:6d:6c:
15:a5:ef:73:d3:9a:18:53:06:3e:53:c5:6d:05:40:48:0d:b2:
b4:9e:4f:c9:9d:4f:bd:36:1b:c8:38:9c:0a:b5:1b:46:ca:3c:
fa:25:36:94:b3:79:11:58:77:bd:63:ee:b8:c0:6e:25:a3:23:
b6:39:c7:6b:31:27:1d:ea:49:6b:21:4d:a2:2f:07:4d:fd:5e:
7f:68:93:d3:03:3b:7b:f0:13:ba:3c:57:24:9c:c1:47:b5:47:
43:59:25:67:94:b6:e3:b8:11:f3:17:39:62:54:6a:e1:03:f1:
ad:8b:7b:de:8f:61:8e:57:08:6a:8f:44:05:00:fb:81:5a:91:
20:2d:e9:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:27:14 2025 by rpki-client