Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/95fd62-fe39-4d9d-8ccb-6ce09552b9a3/1/I3ZUzlN9lEJPAPnK_rG5RbVsQNs.roa
File: I3ZUzlN9lEJPAPnK_rG5RbVsQNs.roa (raw, json)
Hash identifier: 3l6bngbTMCKlQMQLhK1oPI2jobVB6sAjr9zFsmZS8/E=
Subject key identifier: 23:76:54:CE:53:7D:94:42:4F:00:F9:CA:FE:B1:B9:45:B5:6C:40:DB
Certificate issuer: /CN=098547627a2b2dea6d080af231430be8a8e69740
Certificate serial: F3AFF4
Authority key identifier: 09:85:47:62:7A:2B:2D:EA:6D:08:0A:F2:31:43:0B:E8:A8:E6:97:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYVHYnorLeptCAryMUML6Kjml0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/95fd62-fe39-4d9d-8ccb-6ce09552b9a3/1/I3ZUzlN9lEJPAPnK_rG5RbVsQNs.roa
Signing time: Mon 07 Mar 2022 23:53:12 +0000
ROA not before: Mon 07 Mar 2022 23:53:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 146.255.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15970292 (0xf3aff4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098547627a2b2dea6d080af231430be8a8e69740
Validity
Not Before: Mar 7 23:53:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=237654ce537d94424f00f9cafeb1b945b56c40db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a5:e4:d2:cd:94:82:c9:38:1a:d1:0d:3e:46:
0a:8e:11:a2:10:e4:8d:1f:9f:d7:c7:04:b1:9b:11:
57:0a:6a:4d:79:15:d9:6f:3b:b6:9f:97:87:c9:74:
73:50:c4:c1:04:8e:f6:4f:b8:d4:3f:96:5a:b7:c4:
d9:4f:6a:ad:5e:80:bc:97:7a:3d:bf:97:47:39:ef:
02:e3:91:aa:85:f9:c8:4b:27:0a:91:18:a9:35:4b:
b1:96:eb:e3:22:19:13:bb:5c:af:e3:0c:9c:58:f3:
6e:a6:d7:e3:0c:f3:b4:03:d1:90:c9:50:9c:a2:c9:
dc:bb:7e:2a:f8:92:6a:3d:86:ad:87:ce:45:55:74:
66:af:7d:a1:6b:98:fe:7b:e6:ca:2c:12:96:7f:88:
a8:89:08:7a:85:9c:da:e3:fd:17:77:32:2b:31:22:
bd:c3:70:d5:f2:59:35:48:6e:65:8d:b4:2e:0d:69:
2a:45:2e:28:f0:6f:c5:a8:f9:d0:ac:0f:aa:9e:86:
46:90:f8:e9:01:94:9f:ed:55:46:88:13:95:86:8a:
77:08:14:79:ea:87:ca:cc:1f:f8:5c:61:6a:20:04:
64:36:0c:99:a4:9e:c5:b1:67:9d:7d:f7:49:1f:11:
63:1a:97:b1:34:24:d8:76:00:14:83:44:47:69:4d:
f0:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:76:54:CE:53:7D:94:42:4F:00:F9:CA:FE:B1:B9:45:B5:6C:40:DB
X509v3 Authority Key Identifier:
keyid:09:85:47:62:7A:2B:2D:EA:6D:08:0A:F2:31:43:0B:E8:A8:E6:97:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYVHYnorLeptCAryMUML6Kjml0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/95fd62-fe39-4d9d-8ccb-6ce09552b9a3/1/I3ZUzlN9lEJPAPnK_rG5RbVsQNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/95fd62-fe39-4d9d-8ccb-6ce09552b9a3/1/CYVHYnorLeptCAryMUML6Kjml0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.255.184.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:94:ce:ab:8a:b4:68:82:17:b6:c6:4e:96:cd:8e:34:d8:c4:
dc:7d:2c:c4:39:d8:d1:56:6a:5b:04:43:be:c1:69:06:cd:7b:
5f:f8:15:78:1a:5d:8b:b2:67:ee:d2:75:6b:0f:7a:ba:33:6a:
17:e3:9f:2d:09:58:11:e4:4b:59:6e:23:49:b6:aa:50:a4:89:
68:6e:1c:67:94:9a:e8:d6:e2:61:61:94:11:83:59:67:75:9c:
e5:33:db:98:5e:ee:37:94:7a:f5:b4:21:20:09:d2:ba:81:1f:
93:13:a4:7a:b1:e8:6b:94:3c:76:04:bd:5d:d8:db:0b:43:f4:
28:10:bc:41:56:1e:ee:df:53:28:52:7f:0d:26:87:c5:7e:48:
51:34:e1:ab:fc:04:61:f7:27:82:2d:ce:e4:2b:3e:07:c9:50:
7a:37:43:fd:72:53:7a:18:8a:3d:59:e4:ff:55:61:7e:ba:0a:
bf:08:12:de:27:f5:ec:03:47:9a:61:8e:3f:91:65:57:89:f9:
70:03:d4:76:3f:35:a2:a4:88:61:3a:48:00:d6:66:10:b3:97:
6c:17:1f:3c:3e:f5:d6:c8:84:ce:65:c5:4d:a5:d7:9b:21:22:
fc:f6:fb:46:cd:ed:d5:83:b2:f2:fd:9c:79:32:71:20:6e:d3:
6c:4b:6f:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:46 2023 by rpki-client on console-fra.rpki-client.org