Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/95fd62-fe39-4d9d-8ccb-6ce09552b9a3/1/SO_5tMV8oPLhN4sAA9F66Qjeebo.roa
File: SO_5tMV8oPLhN4sAA9F66Qjeebo.roa (raw, json)
Hash identifier: FVwbOmuh7zXtC8AnAAYevZl/tupNA3VHRMOjcb2V0vA=
Subject key identifier: 48:EF:F9:B4:C5:7C:A0:F2:E1:37:8B:00:03:D1:7A:E9:08:DE:79:BA
Certificate issuer: /CN=098547627a2b2dea6d080af231430be8a8e69740
Certificate serial: 541797
Authority key identifier: 09:85:47:62:7A:2B:2D:EA:6D:08:0A:F2:31:43:0B:E8:A8:E6:97:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYVHYnorLeptCAryMUML6Kjml0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/95fd62-fe39-4d9d-8ccb-6ce09552b9a3/1/SO_5tMV8oPLhN4sAA9F66Qjeebo.roa
Signing time: Sat 01 Jan 2022 01:51:20 +0000
ROA not before: Sat 01 Jan 2022 01:51:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 146.255.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5511063 (0x541797)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098547627a2b2dea6d080af231430be8a8e69740
Validity
Not Before: Jan 1 01:51:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48eff9b4c57ca0f2e1378b0003d17ae908de79ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:8f:a4:d5:f0:66:40:34:d0:22:f9:b6:26:df:
32:fc:4a:fc:b5:95:b4:46:00:b2:60:b5:56:0f:7c:
cf:86:d5:79:a5:2f:12:e8:87:b8:df:04:e9:5d:ac:
c3:d6:93:e3:8b:a3:51:93:8e:bb:db:19:5f:00:f7:
ec:33:d1:b6:88:78:ab:9f:e7:0a:53:5e:d5:77:27:
d3:95:85:1e:db:35:f3:c9:10:45:41:aa:53:7b:38:
09:09:58:f5:4a:18:86:5d:06:e0:9c:4d:0a:f6:3f:
25:b4:fa:4c:86:96:44:5b:83:86:55:67:03:91:ce:
0c:66:55:41:65:e2:68:42:cd:02:cf:08:4d:fd:05:
3d:7a:95:88:e6:76:80:3c:7f:a2:02:0d:67:c3:80:
b1:0f:68:54:fa:bc:e1:77:be:79:47:a6:6c:9e:48:
81:ab:77:8d:a0:15:8f:22:ed:8d:a9:94:37:28:29:
c0:72:9f:10:53:69:95:0b:4f:bf:86:6b:3c:21:59:
21:b9:2a:72:eb:97:d8:f6:c4:66:76:7a:08:33:ea:
73:3a:99:53:f5:44:a2:9e:47:1f:ae:a2:76:7e:fd:
3c:62:1f:66:24:81:9e:cd:14:21:63:7f:d2:55:5c:
e6:9d:b4:0a:6f:0a:6c:0c:30:22:2a:f8:e6:68:e2:
56:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:EF:F9:B4:C5:7C:A0:F2:E1:37:8B:00:03:D1:7A:E9:08:DE:79:BA
X509v3 Authority Key Identifier:
keyid:09:85:47:62:7A:2B:2D:EA:6D:08:0A:F2:31:43:0B:E8:A8:E6:97:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYVHYnorLeptCAryMUML6Kjml0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/95fd62-fe39-4d9d-8ccb-6ce09552b9a3/1/SO_5tMV8oPLhN4sAA9F66Qjeebo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/95fd62-fe39-4d9d-8ccb-6ce09552b9a3/1/CYVHYnorLeptCAryMUML6Kjml0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.255.184.0/24
Signature Algorithm: sha256WithRSAEncryption
67:90:36:0e:39:ae:13:88:c8:9d:c5:72:31:0f:a6:77:7d:99:
bc:e5:c4:2e:5f:b8:55:8f:60:e9:d6:a9:5c:2a:00:b6:c6:6c:
25:04:81:12:d1:47:bc:f1:74:cb:04:85:c4:50:53:34:b9:0d:
c7:b3:38:7f:88:6a:e9:99:81:cd:41:cc:7f:d8:13:85:f5:6c:
28:56:36:72:b4:53:fd:b5:5d:19:5c:1b:9b:ea:39:68:9e:84:
b5:61:c0:3c:c4:90:51:94:ee:8a:44:bd:7c:0e:b5:28:ef:a5:
61:06:39:ed:3f:ed:ca:f3:96:a4:cd:d0:a1:3f:59:33:1b:50:
ae:c1:f0:3d:0b:42:36:a7:9a:83:48:c9:7b:bb:96:e9:30:3f:
7c:fd:7b:2e:0a:33:b9:4f:05:ea:5c:f1:ae:d5:af:40:78:08:
ed:68:5d:8b:e8:9d:27:90:e9:df:e1:fd:85:66:f6:db:42:53:
3f:ae:9c:62:4e:4d:0b:14:cb:d2:ad:4d:70:ce:f2:3f:b5:93:
2d:6d:17:8f:cd:d6:98:e2:5c:8a:8e:78:2a:8d:c4:56:22:78:
90:9f:0d:e4:b2:c2:8c:64:47:0f:d3:5d:fc:d7:97:1e:57:0e:
4f:f3:6b:fa:5b:94:0c:a5:78:1e:45:87:9e:2b:70:87:03:41:
7f:d1:e5:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:33 2023 by rpki-client on console-ams.rpki-client.org