Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/87d247-b05a-4d60-8ba7-9f4509c2ddc5/1/DPKjp0LT1EE8ae_SKHqZt_s_d2U.roa
File: DPKjp0LT1EE8ae_SKHqZt_s_d2U.roa (raw, json)
Hash identifier: ZySXhpPQzBCTPQ7NWAfdGJhtK90nCVUpKtRkwViIcO4=
Subject key identifier: 0C:F2:A3:A7:42:D3:D4:41:3C:69:EF:D2:28:7A:99:B7:FB:3F:77:65
Certificate issuer: /CN=f07d10e2f67bd207ef5e57d0531446ba74ca1b35
Certificate serial: 68A604
Authority key identifier: F0:7D:10:E2:F6:7B:D2:07:EF:5E:57:D0:53:14:46:BA:74:CA:1B:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8H0Q4vZ70gfvXlfQUxRGunTKGzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/87d247-b05a-4d60-8ba7-9f4509c2ddc5/1/DPKjp0LT1EE8ae_SKHqZt_s_d2U.roa
Signing time: Sat 01 Jan 2022 00:56:51 +0000
ROA not before: Sat 01 Jan 2022 00:56:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 146.19.194.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6858244 (0x68a604)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f07d10e2f67bd207ef5e57d0531446ba74ca1b35
Validity
Not Before: Jan 1 00:56:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0cf2a3a742d3d4413c69efd2287a99b7fb3f7765
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:46:fc:4c:f6:77:3d:ba:35:c5:01:a3:34:6e:
d6:c5:3b:a5:af:92:10:f4:dd:04:3b:db:62:fc:de:
66:10:47:9e:15:cb:73:12:2c:1b:ca:93:a1:e1:5c:
7f:e4:c3:37:11:69:09:2f:67:a9:cb:39:4e:2e:05:
d2:22:6d:2a:40:ba:27:c4:13:aa:6f:9e:88:52:0a:
95:a5:a2:a6:60:77:65:9e:8f:49:14:8b:47:36:32:
dd:26:af:e8:ba:75:27:44:71:3d:34:03:6b:27:88:
13:e4:d4:27:23:d2:68:a2:4f:d3:19:c0:a5:d2:72:
08:7c:40:03:b7:f1:0d:47:ce:3c:c0:ca:ea:12:bf:
d5:7b:70:ab:e8:b0:96:19:be:42:f7:2c:f6:05:28:
77:d2:1d:6f:d0:38:ef:ce:f2:f8:33:0b:35:86:87:
e5:9d:0b:67:3e:f3:c3:cf:bd:c3:2e:a0:f2:a0:9c:
91:ea:ba:50:20:59:12:75:76:87:7d:51:c4:07:fa:
f8:ab:75:06:65:3d:59:93:cc:2f:ba:e1:67:36:ed:
0e:28:13:26:b1:f4:ff:48:40:08:6a:7c:e6:f3:98:
68:53:93:b9:b3:c0:30:9b:c5:5e:d7:ca:29:63:1f:
70:18:7c:57:33:de:40:72:71:93:d6:b2:59:05:9d:
3d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:F2:A3:A7:42:D3:D4:41:3C:69:EF:D2:28:7A:99:B7:FB:3F:77:65
X509v3 Authority Key Identifier:
keyid:F0:7D:10:E2:F6:7B:D2:07:EF:5E:57:D0:53:14:46:BA:74:CA:1B:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8H0Q4vZ70gfvXlfQUxRGunTKGzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/87d247-b05a-4d60-8ba7-9f4509c2ddc5/1/DPKjp0LT1EE8ae_SKHqZt_s_d2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/87d247-b05a-4d60-8ba7-9f4509c2ddc5/1/8H0Q4vZ70gfvXlfQUxRGunTKGzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.194.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:8e:63:0c:4f:90:79:2e:39:f8:7b:3d:af:44:7a:5f:8f:3f:
21:47:67:41:24:97:c7:e7:7d:64:48:97:05:3a:63:06:4c:8a:
2b:ff:80:f7:f8:62:3e:21:1e:2a:24:ab:4f:85:ad:81:87:2b:
b3:2b:d6:1b:ad:6d:20:f1:fb:bd:79:1e:e1:ce:b2:93:b1:db:
ab:a4:40:a3:6f:a3:3c:ed:03:36:12:c1:07:52:ee:f6:48:d5:
72:3b:93:de:9c:72:8d:73:42:4a:38:d8:5a:c1:89:26:77:de:
d1:51:0b:ea:5b:84:56:14:a9:89:5c:cf:fb:b7:c1:5c:ee:9f:
c1:1c:19:df:6e:cf:33:dc:ec:ab:d4:16:13:bc:4b:6c:f7:6a:
fe:a4:8a:56:f9:6c:57:a7:56:ce:70:1e:63:36:e9:b1:82:08:
4c:e5:28:55:21:76:7e:1e:d2:98:2f:c7:26:3f:4d:8a:1c:44:
26:c3:5a:68:6c:c8:d2:cb:9f:dc:c5:fb:ac:44:17:8e:00:af:
fe:88:16:c6:a4:94:eb:94:3d:ff:94:53:ae:5b:eb:f5:f1:fc:
eb:8c:0b:61:67:6f:59:24:62:18:fe:d4:ea:d6:22:66:95:2d:
67:8d:17:35:38:2f:0a:a0:e8:b5:5a:a6:a5:16:71:78:19:ce:
60:cf:9c:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:34 2023 by rpki-client on console-fra.rpki-client.org