Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/956fc1-cd54-4275-bfbc-2de2a16be9ff/1/TVXs1mIGk5f0Lm4YF5h8aQXEwDg.roa
File: TVXs1mIGk5f0Lm4YF5h8aQXEwDg.roa (raw, json)
Hash identifier: ibuVjGtt3BMRupwspWRzH0FEYmaKmV9KkZZ0QBSWF4c=
Subject key identifier: 4D:55:EC:D6:62:06:93:97:F4:2E:6E:18:17:98:7C:69:05:C4:C0:38
Certificate issuer: /CN=fd8e827d60cdefed87bc0e6883d6d38c8e4e98b3
Certificate serial: 02C45D
Authority key identifier: FD:8E:82:7D:60:CD:EF:ED:87:BC:0E:68:83:D6:D3:8C:8E:4E:98:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_Y6CfWDN7-2HvA5og9bTjI5OmLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/956fc1-cd54-4275-bfbc-2de2a16be9ff/1/TVXs1mIGk5f0Lm4YF5h8aQXEwDg.roa
Signing time: Mon 28 Feb 2022 15:05:36 +0000
ROA not before: Mon 28 Feb 2022 15:05:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201814
IP address blocks: 146.19.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181341 (0x2c45d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd8e827d60cdefed87bc0e6883d6d38c8e4e98b3
Validity
Not Before: Feb 28 15:05:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d55ecd662069397f42e6e1817987c6905c4c038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:95:7c:94:96:84:2a:37:6d:76:1f:bf:a6:5e:
b7:5b:6d:10:44:eb:b1:aa:b3:ce:3c:fb:5f:a2:0b:
db:b5:07:6a:e8:90:7f:0b:a1:06:bc:c5:b2:6d:ea:
22:70:06:b4:b1:2a:cf:34:d6:2e:31:38:56:4f:10:
76:2a:dc:d4:a1:0b:8a:cc:4f:13:e5:49:fa:4f:17:
0d:a8:7c:d8:3e:e2:2b:c2:7a:70:a9:45:5f:10:61:
f5:0e:cf:e1:0d:41:92:07:be:49:52:09:ac:ec:d0:
af:86:d8:15:b6:17:19:f7:42:62:1d:29:c1:b1:a3:
be:7f:42:a5:28:b9:f1:10:a2:59:0b:18:ba:a2:24:
4a:f0:63:38:c1:53:97:6c:d0:97:9d:cd:fd:e0:91:
9e:db:7d:15:ad:62:07:6b:18:3e:bf:ad:88:78:dc:
3c:14:a9:a7:94:c1:21:23:80:7f:00:eb:3a:37:dc:
23:c2:d4:53:b4:5a:4b:d7:67:d5:7b:21:1b:bf:29:
d7:31:3a:d4:b3:b5:b0:57:e8:69:72:3f:40:f3:0e:
2c:2c:36:c2:82:29:3a:d5:ee:ec:fa:cb:f9:74:66:
c2:1c:ab:d5:89:44:f3:5e:ff:ab:cb:f1:80:05:8b:
99:96:71:6d:0f:c0:41:5f:80:54:21:07:87:32:eb:
6a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:55:EC:D6:62:06:93:97:F4:2E:6E:18:17:98:7C:69:05:C4:C0:38
X509v3 Authority Key Identifier:
keyid:FD:8E:82:7D:60:CD:EF:ED:87:BC:0E:68:83:D6:D3:8C:8E:4E:98:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_Y6CfWDN7-2HvA5og9bTjI5OmLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/956fc1-cd54-4275-bfbc-2de2a16be9ff/1/TVXs1mIGk5f0Lm4YF5h8aQXEwDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/956fc1-cd54-4275-bfbc-2de2a16be9ff/1/_Y6CfWDN7-2HvA5og9bTjI5OmLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.24.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:6a:da:60:e0:cb:c3:70:62:94:59:c5:2a:ab:6b:a5:60:42:
f0:20:a8:15:8b:9b:05:91:28:22:af:62:90:32:bc:2c:85:65:
cb:46:c1:e6:26:48:2a:70:63:1e:65:e9:7c:1d:2f:49:3c:57:
cf:af:4f:b6:03:25:cd:c1:06:78:1d:6d:99:90:0d:fc:b7:2e:
72:fb:02:ed:89:3a:3a:2f:40:a5:e8:e1:59:da:8d:25:58:be:
8c:d4:30:76:3a:84:b2:81:a2:c7:7e:5b:7d:cb:3b:58:c0:8c:
89:43:5f:48:fe:ac:87:79:4f:bf:c1:63:d0:25:b3:89:f1:3b:
c5:cd:ec:1c:26:88:93:e7:d3:19:6f:fc:52:c6:98:d1:46:60:
60:09:d2:7d:47:b3:88:d8:cd:7f:d8:9b:1c:e3:04:ee:34:bc:
79:cb:4c:23:28:e4:b9:f9:c9:03:f9:4f:b1:69:da:07:29:98:
c7:0e:95:7e:48:c2:a5:6e:f2:e1:dd:9e:ad:e0:1b:5f:ce:1b:
d6:9e:76:4d:0e:47:81:b6:94:06:71:95:3e:40:82:f9:b0:a7:
dd:7b:4c:56:05:6a:a5:41:a5:51:eb:9f:4d:13:3a:00:85:f0:
e6:ab:b4:f7:f9:c4:d3:31:12:c5:9d:49:32:9a:17:55:ed:6b:
75:63:48:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:19 2023 by rpki-client on console-fra.rpki-client.org