Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/4b6354-a7a3-4351-a7de-aeac5d9cdc7b/1/Xn32WZ-8ml4sF0sEIDEzXcLrMuQ.roa
File: Xn32WZ-8ml4sF0sEIDEzXcLrMuQ.roa (raw, json)
Hash identifier: AbhDOHxeECn5/y53V1ZMvnJ0YtYyvnVFfOKcO841/KE=
Subject key identifier: 5E:7D:F6:59:9F:BC:9A:5E:2C:17:4B:04:20:31:33:5D:C2:EB:32:E4
Certificate issuer: /CN=048eefb5b26483561711c990f20ff552ac4e2c9c
Certificate serial: 0BE167F7
Authority key identifier: 04:8E:EF:B5:B2:64:83:56:17:11:C9:90:F2:0F:F5:52:AC:4E:2C:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BI7vtbJkg1YXEcmQ8g_1UqxOLJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/4b6354-a7a3-4351-a7de-aeac5d9cdc7b/1/Xn32WZ-8ml4sF0sEIDEzXcLrMuQ.roa
Signing time: Sat 01 Jan 2022 08:56:30 +0000
ROA not before: Sat 01 Jan 2022 08:56:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15491
IP address blocks: 146.255.224.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 199321591 (0xbe167f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048eefb5b26483561711c990f20ff552ac4e2c9c
Validity
Not Before: Jan 1 08:56:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e7df6599fbc9a5e2c174b042031335dc2eb32e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:b0:39:4c:77:fa:2e:be:63:c7:c7:b2:50:33:
16:92:68:c1:a3:bb:5a:f3:3d:c1:52:31:b6:a2:c8:
69:08:4f:8a:8b:15:4e:16:6f:02:ec:c9:a6:5d:e6:
4c:49:23:ef:ec:c7:4c:98:8b:20:de:b5:6c:c5:8e:
10:b9:f3:0f:6e:b4:49:56:5f:bd:f9:81:52:e3:b6:
ba:3e:1c:9d:0b:a3:d7:04:d3:35:d1:96:7c:37:5b:
eb:8a:ae:c7:5d:bf:76:97:ea:02:a4:e5:7e:cd:79:
ec:63:e2:64:07:a2:5a:68:65:9e:58:4d:ff:d7:44:
ce:a4:6c:86:69:09:7f:a8:e2:71:c7:46:9d:bb:36:
62:44:a6:4b:87:40:f3:77:2c:39:20:b2:6f:3d:e6:
f1:6b:05:b2:0b:13:82:31:28:0c:a6:df:07:4d:76:
8f:b7:6b:b6:ec:2a:93:de:51:35:be:16:c7:41:dd:
91:3e:61:93:97:09:db:9a:ee:06:23:6f:d8:1a:72:
d3:63:37:64:4e:d3:c3:ac:01:25:b8:c2:1e:11:91:
d1:2a:31:ff:8e:c8:8e:87:3b:df:22:72:0a:8b:9d:
96:a9:b7:4d:3b:f0:88:13:df:2b:5f:1f:9b:09:1f:
78:98:2b:47:b6:3d:04:c7:08:25:15:53:f1:37:75:
33:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:7D:F6:59:9F:BC:9A:5E:2C:17:4B:04:20:31:33:5D:C2:EB:32:E4
X509v3 Authority Key Identifier:
keyid:04:8E:EF:B5:B2:64:83:56:17:11:C9:90:F2:0F:F5:52:AC:4E:2C:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BI7vtbJkg1YXEcmQ8g_1UqxOLJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4b6354-a7a3-4351-a7de-aeac5d9cdc7b/1/Xn32WZ-8ml4sF0sEIDEzXcLrMuQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4b6354-a7a3-4351-a7de-aeac5d9cdc7b/1/BI7vtbJkg1YXEcmQ8g_1UqxOLJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.255.224.0/19
Signature Algorithm: sha256WithRSAEncryption
ad:ab:74:e3:14:ef:d5:44:4c:05:67:31:1d:20:b5:32:95:9d:
79:cd:f9:a4:59:1d:e9:a9:c7:3e:88:bb:71:1e:55:d9:ab:8c:
5c:a8:12:46:c5:15:7e:86:86:ac:88:81:d7:08:96:26:05:e7:
a9:a9:b7:cf:77:f2:20:25:40:28:e4:06:5c:c4:25:fb:1d:e3:
f3:b9:ac:b1:8d:22:ef:0a:24:91:96:7d:b4:4a:46:d4:fc:0a:
0d:fa:ed:c7:04:77:61:fb:a2:48:f7:6f:a6:9d:8e:8a:7d:bd:
e8:91:ed:ae:b0:0a:79:fc:45:6b:23:d3:88:69:ca:20:48:c9:
69:76:c4:cd:c4:a7:f2:b4:86:ec:2b:15:5b:5d:11:64:a3:f6:
48:70:c1:d1:8f:65:68:2a:5f:db:d3:dd:33:56:0d:f4:7b:bc:
a9:02:4c:30:4c:30:d0:7d:48:2f:b6:cd:b6:cf:ed:3a:7f:44:
b0:a1:dc:62:be:87:9d:60:01:a0:61:53:3b:81:4d:f8:5f:a2:
b0:35:0a:ee:66:7e:dd:32:ab:4b:75:2b:2a:3d:9a:1f:00:1d:
ef:27:f2:18:9f:11:79:cc:a4:47:85:41:6d:5e:0f:dd:ff:75:
cf:ff:50:e2:88:a1:c6:d8:4f:34:f2:50:e6:04:03:64:14:62:
75:25:18:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:40 2023 by rpki-client on console-ams.rpki-client.org