Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/37cde7-e98c-4f26-9dd3-434f74d499d7/1/8SZEeEekBmX8pI_C_ozth3REGkw.roa
File: 8SZEeEekBmX8pI_C_ozth3REGkw.roa (raw, json)
Hash identifier: CjFBy+clybEzCdUeX80bZiLP8AyqfHXS2224bgyrV+k=
Subject key identifier: F1:26:44:78:47:A4:06:65:FC:A4:8F:C2:FE:8C:ED:87:74:44:1A:4C
Certificate issuer: /CN=2307e7974fb8312a2e6aaa996f5ef8474a53107c
Certificate serial: F617B1
Authority key identifier: 23:07:E7:97:4F:B8:31:2A:2E:6A:AA:99:6F:5E:F8:47:4A:53:10:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iwfnl0-4MSouaqqZb174R0pTEHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/37cde7-e98c-4f26-9dd3-434f74d499d7/1/8SZEeEekBmX8pI_C_ozth3REGkw.roa
Signing time: Mon 07 Mar 2022 17:31:18 +0000
ROA not before: Mon 07 Mar 2022 17:31:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 146.19.189.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16127921 (0xf617b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2307e7974fb8312a2e6aaa996f5ef8474a53107c
Validity
Not Before: Mar 7 17:31:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f126447847a40665fca48fc2fe8ced8774441a4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:d2:d6:89:a1:ac:58:64:4d:d7:4c:16:89:07:
54:da:5b:9f:79:b1:d4:d8:bf:e1:c7:6f:b1:ee:6b:
f8:11:63:db:da:35:a1:8b:ef:ed:75:15:cf:42:93:
49:dd:d0:23:a4:d2:16:87:b1:56:31:13:eb:3c:35:
4e:b5:c8:3e:e5:b8:5d:b8:d9:ca:0b:87:eb:38:18:
ab:ad:c5:f4:45:c8:64:97:ee:6a:ab:e9:d2:bd:36:
f5:82:3d:47:a6:be:4f:b0:b8:bb:d2:25:b3:3c:03:
9a:56:d8:d4:76:78:39:76:30:7f:54:58:a2:11:87:
f0:a4:cc:41:f7:a9:9b:83:89:37:e7:4a:44:71:d3:
09:9e:b0:70:96:df:80:80:69:12:aa:47:13:c1:c8:
a8:98:39:ae:1f:d0:08:e8:8c:5c:63:1d:12:43:7e:
74:cb:5a:bb:b5:d1:4e:1a:1f:ca:35:e1:79:c4:d9:
31:9e:5b:e4:ab:13:6b:96:fa:d1:17:8f:e1:30:81:
cf:5f:50:dc:ac:ae:37:4a:fd:6a:9e:e4:43:ce:81:
dc:26:05:7d:2e:aa:e6:9b:69:8b:c0:f6:ba:72:75:
3d:c6:53:36:7c:38:48:58:d6:1c:89:b6:07:4f:aa:
f0:18:eb:11:b6:62:62:2b:dc:3c:df:1f:02:34:02:
bd:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:26:44:78:47:A4:06:65:FC:A4:8F:C2:FE:8C:ED:87:74:44:1A:4C
X509v3 Authority Key Identifier:
keyid:23:07:E7:97:4F:B8:31:2A:2E:6A:AA:99:6F:5E:F8:47:4A:53:10:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iwfnl0-4MSouaqqZb174R0pTEHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/37cde7-e98c-4f26-9dd3-434f74d499d7/1/8SZEeEekBmX8pI_C_ozth3REGkw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/37cde7-e98c-4f26-9dd3-434f74d499d7/1/Iwfnl0-4MSouaqqZb174R0pTEHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.189.0/24
Signature Algorithm: sha256WithRSAEncryption
96:d7:86:7c:ec:11:1e:d4:f2:0c:3a:14:51:5d:e0:66:3d:86:
9c:d3:d2:1a:c8:b4:72:38:05:9f:d2:1c:e4:3d:ac:63:fd:64:
f5:f3:8e:2f:49:f2:5c:b1:8c:d5:7c:17:c6:2e:3b:ad:00:7d:
7d:bf:39:b1:2a:47:63:51:93:a6:53:3b:60:cf:15:be:22:a9:
8a:26:94:81:51:37:dc:97:39:a5:63:c9:f9:95:dd:5d:5b:95:
e9:94:10:dd:c3:19:11:2e:d6:96:d7:44:4b:c7:e5:66:9e:e0:
0a:fe:96:2d:0b:c9:b1:56:0c:5a:f8:ef:f1:38:bc:8f:ed:80:
25:17:48:ae:aa:9d:ab:14:ac:f7:7a:76:c2:29:45:54:2a:8a:
df:72:97:74:c8:7e:7c:d1:f8:39:0e:e6:f6:fd:b5:11:b4:19:
6c:fb:8c:ed:fa:d7:17:2b:be:27:ac:e9:9f:05:7e:0a:ff:17:
39:a0:b1:7e:e1:71:9d:97:06:db:e4:f3:48:76:67:60:c7:b5:
4c:0d:35:16:a7:a6:40:a0:a9:d4:bf:6e:23:68:31:29:d7:eb:
79:0f:56:6b:1c:7f:00:99:9d:1c:c3:47:64:c0:a8:dd:19:86:
80:1e:76:0c:60:64:da:f0:c7:03:a3:e6:03:cc:be:dd:41:a3:
a3:fd:b1:1b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAPYXsTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MzA3ZTc5NzRmYjgzMTJhMmU2YWFhOTk2ZjVlZjg0NzRhNTMxMDdjMB4XDTIyMDMw
NzE3MzExOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjEyNjQ0Nzg0N2E0
MDY2NWZjYTQ4ZmMyZmU4Y2VkODc3NDQ0MWE0YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJTS1omhrFhkTddMFokHVNpbn3mx1Ni/4cdvse5r+BFj29o1
oYvv7XUVz0KTSd3QI6TSFoexVjET6zw1TrXIPuW4XbjZyguH6zgYq63F9EXIZJfu
aqvp0r029YI9R6a+T7C4u9IlszwDmlbY1HZ4OXYwf1RYohGH8KTMQfepm4OJN+dK
RHHTCZ6wcJbfgIBpEqpHE8HIqJg5rh/QCOiMXGMdEkN+dMtau7XRThofyjXhecTZ
MZ5b5KsTa5b60ReP4TCBz19Q3KyuN0r9ap7kQ86B3CYFfS6q5ptpi8D2unJ1PcZT
Nnw4SFjWHIm2B0+q8BjrEbZiYivcPN8fAjQCvaUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTxJkR4R6QGZfykj8L+jO2HdEQaTDAfBgNVHSMEGDAWgBQjB+eXT7gxKi5q
qplvXvhHSlMQfDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0l3Zm5sMC00TVNvdWFxcVpiMTc0UjBwVEVIdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWIvMzdjZGU3LWU5OGMtNGYyNi05ZGQzLTQzNGY3NGQ0OTlkNy8x
LzhTWkVlRWVrQm1YOHBJX0Nfb3p0aDNSRUdrdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWIv
MzdjZGU3LWU5OGMtNGYyNi05ZGQzLTQzNGY3NGQ0OTlkNy8xL0l3Zm5sMC00TVNv
dWFxcVpiMTc0UjBwVEVIdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJITvTANBgkqhkiG9w0BAQsFAAOC
AQEAlteGfOwRHtTyDDoUUV3gZj2GnNPSGsi0cjgFn9Ic5D2sY/1k9fOOL0nyXLGM
1XwXxi47rQB9fb85sSpHY1GTplM7YM8VviKpiiaUgVE33Jc5pWPJ+ZXdXVuV6ZQQ
3cMZES7WltdES8flZp7gCv6WLQvJsVYMWvjv8Ti8j+2AJRdIrqqdqxSs93p2wilF
VCqK33KXdMh+fNH4OQ7m9v21EbQZbPuM7frXFyu+J6zpnwV+Cv8XOaCxfuFxnZcG
2+TzSHZnYMe1TA01FqemQKCp1L9uI2gxKdfreQ9Waxx/AJmdHMNHZMCo3RmGgB52
DGBk2vDHA6PmA8y+3UGjo/2xGw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:39 2023 by rpki-client on console-ams.rpki-client.org