Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/c1ff21-5ac2-4e50-936c-651707c91fd3/1/U_TjiXd5XA5SQuRgSevyChM_dvc.roa
File: U_TjiXd5XA5SQuRgSevyChM_dvc.roa (raw, json)
Hash identifier: KjKOJvouNoJU0Oz7QtCIbSFnQXIReDI3KHRDUgjOo78=
Subject key identifier: 53:F4:E3:89:77:79:5C:0E:52:42:E4:60:49:EB:F2:0A:13:3F:76:F7
Certificate issuer: /CN=351c7b5607c536657fd5748f6f65b24ac12eb17d
Certificate serial: 013E19DA
Authority key identifier: 35:1C:7B:56:07:C5:36:65:7F:D5:74:8F:6F:65:B2:4A:C1:2E:B1:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRx7VgfFNmV_1XSPb2WySsEusX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/c1ff21-5ac2-4e50-936c-651707c91fd3/1/U_TjiXd5XA5SQuRgSevyChM_dvc.roa
Signing time: Thu 07 Apr 2022 00:32:42 +0000
ROA not before: Thu 07 Apr 2022 00:32:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49581
IP address blocks: 146.19.191.0/24 maxlen: 24
2a12:eb00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20847066 (0x13e19da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=351c7b5607c536657fd5748f6f65b24ac12eb17d
Validity
Not Before: Apr 7 00:32:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53f4e38977795c0e5242e46049ebf20a133f76f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1a:5f:98:bb:4e:5d:9f:6f:b7:b5:be:b6:50:
12:81:c0:e8:95:ff:d4:fe:99:b3:ab:ed:df:0d:09:
f5:84:f6:1f:78:ec:78:79:0d:d3:e3:c2:0a:30:3a:
e6:73:6d:1c:de:2e:a1:bf:cf:1e:76:7a:be:bd:b7:
43:31:63:2a:5a:b4:bb:1a:3e:76:c8:dd:ec:c4:0b:
ef:c3:ee:59:4a:e4:db:b9:ed:c4:e7:09:68:f2:ce:
99:f8:56:e1:bf:39:5c:06:c6:6c:a5:f1:75:42:c5:
bd:b6:58:93:3d:db:c5:f2:70:75:60:69:e5:e8:a6:
4a:d7:ab:39:29:78:16:aa:42:c4:c8:a6:f1:33:79:
89:44:ef:c1:4e:9a:17:80:16:12:4a:aa:97:68:19:
e5:fd:a1:03:63:87:cd:8f:54:46:b9:12:43:b2:8f:
5c:82:6b:dc:a3:9c:8d:40:c2:21:bf:f8:4f:ca:86:
cc:ab:fc:7a:5a:59:95:f3:c4:1d:5f:32:e2:3f:ed:
b1:1b:89:d2:1c:a0:52:44:51:cc:dd:ba:f9:fe:c5:
86:7d:37:83:be:98:23:c4:00:71:88:c4:a9:c9:99:
30:8b:f7:8d:a9:5c:4b:c0:0a:62:f8:88:3b:60:73:
3e:d4:b6:36:68:85:cb:78:0e:18:b5:12:e7:a7:b2:
b8:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:F4:E3:89:77:79:5C:0E:52:42:E4:60:49:EB:F2:0A:13:3F:76:F7
X509v3 Authority Key Identifier:
keyid:35:1C:7B:56:07:C5:36:65:7F:D5:74:8F:6F:65:B2:4A:C1:2E:B1:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRx7VgfFNmV_1XSPb2WySsEusX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/c1ff21-5ac2-4e50-936c-651707c91fd3/1/U_TjiXd5XA5SQuRgSevyChM_dvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/c1ff21-5ac2-4e50-936c-651707c91fd3/1/NRx7VgfFNmV_1XSPb2WySsEusX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.191.0/24
IPv6:
2a12:eb00::/29
Signature Algorithm: sha256WithRSAEncryption
18:db:41:03:29:b4:b2:0a:52:db:b7:8f:f5:d9:e7:1c:41:b6:
24:79:58:87:d4:01:50:89:c5:62:76:ef:35:23:eb:24:49:10:
aa:02:02:a4:fd:93:c7:f3:6b:ac:f4:9f:d1:4b:3f:1c:be:e4:
0d:93:f6:f5:60:ce:d1:a8:00:4a:0d:ab:f2:7c:9c:1b:7a:b0:
68:40:e3:9e:a8:13:d3:07:4e:e9:b5:6f:83:73:4e:0a:f7:07:
d8:60:26:22:9d:0a:fa:2a:54:05:c2:c1:c7:0b:8e:70:9a:92:
b9:0d:a9:2b:9b:96:a5:cb:35:5a:8c:f7:f5:be:4f:94:e8:10:
50:17:52:3c:5e:cb:48:ea:3f:f3:94:18:cd:54:e6:72:7c:e7:
e4:04:73:64:9f:26:1d:e2:3f:1d:b4:8f:0b:57:76:c9:f6:45:
77:fc:07:58:de:44:cc:d7:1b:6e:28:26:12:c9:3c:c6:78:15:
d7:b1:ed:aa:f3:35:09:b6:89:8b:61:d9:25:44:78:6c:1a:c5:
74:f9:9e:a8:d2:27:20:7c:28:2c:5c:46:14:e2:7c:c5:aa:05:
96:bd:c9:80:fb:5d:9f:7a:40:1d:72:a2:89:8d:34:39:66:f5:
5a:c4:02:d7:a4:bb:a6:34:67:99:e7:03:3d:d1:5b:a5:b2:a0:
a3:c3:3b:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:38:53 2025 by rpki-client