Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/d0h2PbyFaQD39q6Iy3ps9-EIvrg.roa
File: d0h2PbyFaQD39q6Iy3ps9-EIvrg.roa (raw, json)
Hash identifier: wD+BBUqtENBONm0s4JjkyITsBEF9SS0kWeD0y8qa1Jk=
Subject key identifier: 77:48:76:3D:BC:85:69:00:F7:F6:AE:88:CB:7A:6C:F7:E1:08:BE:B8
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 282CC945
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/d0h2PbyFaQD39q6Iy3ps9-EIvrg.roa
Signing time: Sat 01 Jan 2022 16:09:45 +0000
ROA not before: Sat 01 Jan 2022 16:09:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203781
IP address blocks: 146.120.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 674023749 (0x282cc945)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7748763dbc856900f7f6ae88cb7a6cf7e108beb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:cf:54:48:e4:7f:05:fe:a4:0b:30:1f:40:16:
24:f5:f8:7c:12:aa:b9:13:8c:32:db:89:af:6d:f1:
65:05:df:9d:ff:fa:d3:bc:40:ed:8e:48:e2:68:1c:
e4:5b:0d:ac:c5:fe:1e:f0:ad:e4:49:71:d2:04:b7:
7b:1f:75:9e:f7:83:86:94:14:37:ef:1d:08:ed:1b:
b3:26:33:6e:1e:85:bc:f1:e7:09:fb:1e:4c:65:94:
71:53:89:1e:77:7e:f8:99:e4:fc:26:e3:07:43:dd:
dd:40:f1:2b:93:de:89:a3:b5:c4:8c:48:40:ba:94:
f9:af:6a:c5:8b:b7:19:b1:b7:cd:5a:61:c5:ec:df:
71:09:55:1d:52:66:d9:7f:93:58:b2:6c:ff:8b:d8:
b1:2c:11:4c:62:6b:00:88:64:99:d0:a9:0d:89:6b:
9d:0f:4e:71:a2:c8:01:ce:5b:5b:4c:7d:5e:08:af:
d7:d2:2d:dc:3e:f2:4f:f6:f3:a7:4f:83:0e:02:c3:
6e:cd:7d:01:3c:be:61:88:93:6a:35:c5:07:13:b5:
a3:07:a9:4b:6c:d0:2c:28:7d:9c:87:34:be:62:49:
12:1b:e5:6f:35:ad:3e:2c:c8:14:f0:a7:e9:0c:3e:
0b:f4:3b:36:ee:5e:b1:80:c1:7a:fa:95:87:53:32:
22:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:48:76:3D:BC:85:69:00:F7:F6:AE:88:CB:7A:6C:F7:E1:08:BE:B8
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/d0h2PbyFaQD39q6Iy3ps9-EIvrg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.120.243.0/24
Signature Algorithm: sha256WithRSAEncryption
91:a7:e2:f8:d0:c6:13:51:c7:04:33:17:dd:0b:21:a1:b8:89:
73:dd:32:de:b1:30:0b:29:36:4f:11:61:d1:91:0d:69:de:b9:
01:33:9d:ca:67:08:67:cf:88:d1:57:e2:45:d5:ff:3f:09:ab:
c0:28:bc:82:5a:24:f7:36:80:a3:e2:aa:83:b2:8c:3f:50:ac:
ab:f8:eb:0e:a4:e6:70:29:e4:ea:0f:7e:0e:1a:c7:52:7c:ea:
90:48:d0:4a:71:e5:ac:a2:34:fc:31:d8:aa:ba:5f:65:d4:88:
ce:e4:a2:79:3a:83:00:7a:6c:01:ae:b2:7a:57:ef:05:4e:8a:
16:01:94:0f:12:e4:fa:40:2d:88:c7:65:7c:4d:da:51:e1:10:
a9:cb:85:4c:be:a2:3a:03:0c:00:b5:bc:50:44:d6:32:ed:2b:
b3:d3:c0:e6:05:f1:5a:a7:e8:dd:1d:bd:13:f4:85:22:c1:57:
d1:a0:69:f3:aa:37:4e:2c:88:52:b2:da:06:15:85:60:01:10:
44:5e:d3:ce:3a:fb:28:ac:a2:77:a1:a7:59:de:7e:4c:da:5f:
d8:18:64:92:67:f3:77:36:d9:e0:97:4b:0c:8e:41:7d:e3:f2:
bc:33:9e:a0:98:cc:1a:05:95:ec:fc:63:91:50:f4:8a:e4:fd:
26:23:b1:e1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEKCzJRTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDkxMjJjMzU0MzhhNGViMjYyMzNmZGM2ZTRiYjFkZjJkYWFlZjQyMB4XDTIyMDEw
MTE2MDk0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzc0ODc2M2RiYzg1
NjkwMGY3ZjZhZTg4Y2I3YTZjZjdlMTA4YmViODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALLPVEjkfwX+pAswH0AWJPX4fBKquROMMtuJr23xZQXfnf/6
07xA7Y5I4mgc5FsNrMX+HvCt5Elx0gS3ex91nveDhpQUN+8dCO0bsyYzbh6FvPHn
CfseTGWUcVOJHnd++Jnk/CbjB0Pd3UDxK5PeiaO1xIxIQLqU+a9qxYu3GbG3zVph
xezfcQlVHVJm2X+TWLJs/4vYsSwRTGJrAIhkmdCpDYlrnQ9OcaLIAc5bW0x9Xgiv
19It3D7yT/bzp0+DDgLDbs19ATy+YYiTajXFBxO1owepS2zQLCh9nIc0vmJJEhvl
bzWtPizIFPCn6Qw+C/Q7Nu5esYDBevqVh1MyIhMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR3SHY9vIVpAPf2rojLemz34Qi+uDAfBgNVHSMEGDAWgBR0kSLDVDik6yYj
P9xuS7HfLarvQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RKRWl3MVE0cE9zbUl6X2Nia3V4M3kycTcwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvMThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8x
L2QwaDJQYnlGYVFEMzlxNkl5M3BzOS1FSXZyZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
MThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8xL2RKRWl3MVE0cE9z
bUl6X2Nia3V4M3kycTcwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJJ48zANBgkqhkiG9w0BAQsFAAOC
AQEAkafi+NDGE1HHBDMX3QshobiJc90y3rEwCyk2TxFh0ZENad65ATOdymcIZ8+I
0VfiRdX/PwmrwCi8glok9zaAo+Kqg7KMP1Csq/jrDqTmcCnk6g9+DhrHUnzqkEjQ
SnHlrKI0/DHYqrpfZdSIzuSieTqDAHpsAa6yelfvBU6KFgGUDxLk+kAtiMdlfE3a
UeEQqcuFTL6iOgMMALW8UETWMu0rs9PA5gXxWqfo3R29E/SFIsFX0aBp86o3TiyI
UrLaBhWFYAEQRF7Tzjr7KKyid6GnWd5+TNpf2BhkkmfzdzbZ4JdLDI5BfePyvDOe
oJjMGgWV7PxjkVD0iuT9JiOx4Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:37 2024 by rpki-client on console-fra.rpki-client.org