Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/eF1Z1auCTnGW_Dq7jZxcSwK0Ja8.roa
File: eF1Z1auCTnGW_Dq7jZxcSwK0Ja8.roa (raw, json)
Hash identifier: 8p+i82bF1tY/fHXHS/X3PpyL/OwyJabU4Fik1sVuyjY=
Subject key identifier: 78:5D:59:D5:AB:82:4E:71:96:FC:3A:BB:8D:9C:5C:4B:02:B4:25:AF
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018570951EF501DB848F35678CF4E8839EFB
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/eF1Z1auCTnGW_Dq7jZxcSwK0Ja8.roa
Signing time: Mon 02 Jan 2023 03:44:59 +0000
ROA not before: Mon 02 Jan 2023 03:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42209
IP address blocks: 146.120.214.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:1e:f5:01:db:84:8f:35:67:8c:f4:e8:83:9e:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=785d59d5ab824e7196fc3abb8d9c5c4b02b425af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7b:e9:ce:ef:28:06:d1:c1:30:1a:1c:57:16:
5a:d1:f0:39:33:8d:1d:a8:16:cb:ad:2e:1b:55:4f:
57:49:d7:ff:da:e1:86:66:bc:c2:32:56:58:21:55:
01:b5:19:83:75:81:98:17:60:63:d4:d4:b1:9e:4c:
0d:8b:1f:8e:8d:49:44:25:64:de:74:f1:24:be:9a:
69:55:01:fa:cc:6f:98:4d:e2:65:fe:14:1f:44:19:
32:8e:31:9b:e4:29:24:b6:8a:cb:78:ab:ea:da:33:
44:09:1b:50:a9:29:c8:f1:0c:48:31:b7:0c:ab:cb:
97:1a:cd:b1:f8:10:29:f1:e5:e8:7d:4a:56:47:9e:
98:88:ab:6f:88:9a:ea:7e:07:2c:8f:55:67:c9:3e:
66:6c:8e:03:e1:52:c3:8e:3d:03:31:22:1b:8d:51:
4c:4e:39:f1:15:10:1e:5b:7a:05:92:8b:f1:d1:af:
17:a5:30:1f:05:c4:cd:77:55:8c:27:ab:c6:4e:ff:
b5:bd:ab:6a:8e:5e:a8:fe:4f:62:63:e3:52:fb:00:
45:f3:58:3f:86:c5:a8:1f:ac:71:a2:5e:7e:22:6e:
64:b5:32:59:ed:7e:e5:3e:c7:5e:eb:68:da:c7:5e:
80:39:a3:04:21:b2:34:59:7b:eb:8a:35:3f:e5:ec:
68:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:5D:59:D5:AB:82:4E:71:96:FC:3A:BB:8D:9C:5C:4B:02:B4:25:AF
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/eF1Z1auCTnGW_Dq7jZxcSwK0Ja8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.120.214.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:72:ae:1d:5b:70:72:37:d4:49:6c:1f:7b:5a:c5:b7:4a:82:
36:2b:31:83:51:8d:a8:71:bf:b6:13:b7:fc:1f:8a:6e:6e:52:
06:44:3b:11:d2:33:72:ea:7d:69:b4:81:c2:b9:ce:f8:67:62:
56:37:63:63:63:be:56:12:0f:1f:a0:c1:ed:c2:b6:34:59:66:
d9:68:07:7f:5a:be:cc:2c:c6:a5:e3:8d:59:2f:65:88:3c:b1:
44:28:39:d8:1f:89:4e:27:2b:da:f2:6f:0c:b8:91:49:d2:1e:
e0:51:d3:5d:ab:06:cd:8a:a0:b0:04:54:b7:84:f0:8d:dc:9e:
d6:6e:3f:2e:ee:a2:26:79:bb:8f:b1:c5:9c:63:b5:f5:6c:8a:
6a:f0:75:49:8e:94:46:ea:72:fb:95:e7:fa:ed:65:09:cb:95:
80:10:ee:ec:3a:f4:59:9a:8e:59:ab:f9:9f:0c:d7:0d:2c:b4:
c8:1d:e9:37:6a:72:c2:ef:ef:fb:65:5b:15:76:aa:ae:2d:b3:
6a:48:86:14:80:db:25:3e:dc:67:d6:ec:5b:61:f7:55:02:fa:
d3:3f:b2:14:d8:18:78:12:b1:7c:d6:32:5f:ef:b3:cc:d1:e6:
2c:6e:fb:8b:fa:ef:42:71:80:9a:57:a8:85:20:c8:3c:b6:f4:
e2:6e:26:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 20:33:14 2025 by rpki-client