Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/dfecf4-0732-4c78-b4be-4627488b14b3/1/I9WoEudfj2w54doeOnXvwNvaf4Y.roa
File: I9WoEudfj2w54doeOnXvwNvaf4Y.roa (raw, json)
Hash identifier: uwnSd9A+zeUsb8gvjQ2RBNO/8Gq1i7xe7Fhv3+v7koo=
Subject key identifier: 23:D5:A8:12:E7:5F:8F:6C:39:E1:DA:1E:3A:75:EF:C0:DB:DA:7F:86
Certificate issuer: /CN=82f3badae9fd81c9bceeb8b0f51f4d37e62e0a40
Certificate serial: 69DC77
Authority key identifier: 82:F3:BA:DA:E9:FD:81:C9:BC:EE:B8:B0:F5:1F:4D:37:E6:2E:0A:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gvO62un9gcm87riw9R9NN-YuCkA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/dfecf4-0732-4c78-b4be-4627488b14b3/1/I9WoEudfj2w54doeOnXvwNvaf4Y.roa
Signing time: Sat 01 Jan 2022 01:54:12 +0000
ROA not before: Sat 01 Jan 2022 01:54:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 53363
IP address blocks: 146.19.106.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6937719 (0x69dc77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82f3badae9fd81c9bceeb8b0f51f4d37e62e0a40
Validity
Not Before: Jan 1 01:54:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23d5a812e75f8f6c39e1da1e3a75efc0dbda7f86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:15:05:3c:4e:15:1f:b2:53:f1:bf:16:a6:af:
82:87:20:75:72:e4:05:66:9d:9e:27:72:ad:a4:50:
c7:c2:03:23:ba:66:ee:82:14:f6:ca:1f:fd:a3:30:
81:da:24:3f:56:a3:ac:89:85:ba:86:9d:97:b9:a6:
85:cf:91:e1:b8:9e:96:b6:7b:2b:0a:ee:31:e1:fb:
8b:8a:cc:cf:c0:27:5f:3d:92:76:5d:fe:41:45:be:
54:6d:c5:57:6a:08:e1:88:c5:61:99:8f:94:34:4c:
83:f5:96:11:94:89:30:8f:3c:eb:10:fb:d1:9c:bd:
6d:ff:95:bc:9e:99:20:32:d7:96:d1:74:90:cd:8e:
01:59:62:81:a6:20:65:30:71:9e:e8:f2:0e:ab:d5:
b4:c8:15:d1:88:00:f0:84:8c:fa:bb:c7:08:f5:ff:
9a:6b:51:31:b0:eb:0b:89:a7:10:bc:20:fe:ea:a6:
34:4b:17:36:5d:1f:fa:5b:50:77:c1:80:ff:6e:b5:
61:2a:6f:97:2a:3c:74:93:09:15:6c:ab:aa:5b:ea:
3a:55:ab:94:32:e7:3a:06:ac:cb:bc:3b:a9:74:c0:
92:14:ad:d3:fd:50:e5:96:ff:42:ec:0a:ce:9f:d8:
23:82:9a:cb:01:d4:2a:a1:f0:63:43:c2:02:fb:55:
ac:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:D5:A8:12:E7:5F:8F:6C:39:E1:DA:1E:3A:75:EF:C0:DB:DA:7F:86
X509v3 Authority Key Identifier:
keyid:82:F3:BA:DA:E9:FD:81:C9:BC:EE:B8:B0:F5:1F:4D:37:E6:2E:0A:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gvO62un9gcm87riw9R9NN-YuCkA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/dfecf4-0732-4c78-b4be-4627488b14b3/1/I9WoEudfj2w54doeOnXvwNvaf4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/dfecf4-0732-4c78-b4be-4627488b14b3/1/gvO62un9gcm87riw9R9NN-YuCkA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.106.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:e2:cf:05:aa:00:3a:88:6d:c6:26:53:d0:08:01:eb:75:14:
63:8a:17:0d:c5:a9:c8:c7:90:ef:59:3b:6d:83:2f:b1:9f:0d:
e3:86:ef:17:aa:6c:5e:7c:e0:18:b6:be:18:24:4e:61:39:8a:
d2:78:f2:20:37:df:c1:ea:8b:ea:4f:44:28:be:31:7e:88:88:
9c:8d:e5:36:d6:af:ef:40:7a:b0:ec:d8:f6:d4:28:dc:0a:17:
f5:f8:3e:19:1a:d7:29:cb:e2:d4:f4:0c:bd:a8:37:f2:e2:87:
b8:7e:d9:1c:bb:8d:2e:36:88:17:39:23:78:f6:39:36:8d:0d:
00:f5:6c:40:fa:83:0a:6c:58:fb:10:af:e2:b9:8e:e8:21:63:
29:e0:c7:df:21:3e:1f:f0:6b:cb:80:09:b4:db:30:4d:2a:06:
aa:80:28:34:f4:07:d9:d3:74:22:b2:41:7d:df:1f:6f:aa:25:
16:35:75:7e:7d:b9:a3:67:2a:94:50:2a:5a:7a:02:65:21:b0:
3a:07:9e:43:b3:23:d2:58:4e:09:14:b7:fd:c3:9d:ce:f6:86:
e7:7c:f0:01:0b:ce:a7:16:06:b8:e2:15:17:77:a2:16:d7:bc:
b0:76:bc:ac:10:ea:46:a8:43:85:58:73:a0:14:71:4f:f8:ae:
5c:3a:c9:97
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDadx3MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDgy
ZjNiYWRhZTlmZDgxYzliY2VlYjhiMGY1MWY0ZDM3ZTYyZTBhNDAwHhcNMjIwMTAx
MDE1NDEyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygyM2Q1YTgxMmU3NWY4
ZjZjMzllMWRhMWUzYTc1ZWZjMGRiZGE3Zjg2MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAohUFPE4VH7JT8b8Wpq+ChyB1cuQFZp2eJ3KtpFDHwgMjumbu
ghT2yh/9ozCB2iQ/VqOsiYW6hp2XuaaFz5HhuJ6WtnsrCu4x4fuLiszPwCdfPZJ2
Xf5BRb5UbcVXagjhiMVhmY+UNEyD9ZYRlIkwjzzrEPvRnL1t/5W8npkgMteW0XSQ
zY4BWWKBpiBlMHGe6PIOq9W0yBXRiADwhIz6u8cI9f+aa1ExsOsLiacQvCD+6qY0
Sxc2XR/6W1B3wYD/brVhKm+XKjx0kwkVbKuqW+o6VauUMuc6BqzLvDupdMCSFK3T
/VDllv9C7ArOn9gjgprLAdQqofBjQ8IC+1WsXQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFCPVqBLnX49sOeHaHjp178Db2n+GMB8GA1UdIwQYMBaAFILzutrp/YHJvO64
sPUfTTfmLgpAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
Z3ZPNjJ1bjlnY204N3JpdzlSOU5OLVl1Q2tBLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC82ZC9kZmVjZjQtMDczMi00Yzc4LWI0YmUtNDYyNzQ4OGIxNGIzLzEv
STlXb0V1ZGZqMnc1NGRvZU9uWHZ3TnZhZjRZLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC9k
ZmVjZjQtMDczMi00Yzc4LWI0YmUtNDYyNzQ4OGIxNGIzLzEvZ3ZPNjJ1bjlnY204
N3JpdzlSOU5OLVl1Q2tBLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkhNqMA0GCSqGSIb3DQEBCwUAA4IB
AQDG4s8FqgA6iG3GJlPQCAHrdRRjihcNxanIx5DvWTttgy+xnw3jhu8XqmxefOAY
tr4YJE5hOYrSePIgN9/B6ovqT0QovjF+iIicjeU21q/vQHqw7Nj21CjcChf1+D4Z
Gtcpy+LU9Ay9qDfy4oe4ftkcu40uNogXOSN49jk2jQ0A9WxA+oMKbFj7EK/iuY7o
IWMp4MffIT4f8GvLgAm02zBNKgaqgCg09AfZ03QiskF93x9vqiUWNXV+fbmjZyqU
UCpaegJlIbA6B55DsyPSWE4JFLf9w53O9obnfPABC86nFga44hUXd6IW17ywdrys
EOpGqEOFWHOgFHFP+K5cOsmX
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:35 2023 by rpki-client on console-fra.rpki-client.org