Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/ac531f-49a8-4ccf-a1ab-7b14735ee234/1/f6KAVUqzlQFweotfbqoFBo52am0.roa
File: f6KAVUqzlQFweotfbqoFBo52am0.roa (raw, json)
Hash identifier: tweyBrmtyue428g/P0vi7CLaFJ8F/doSOweTS7DS0LM=
Subject key identifier: 7F:A2:80:55:4A:B3:95:01:70:7A:8B:5F:6E:AA:05:06:8E:76:6A:6D
Certificate issuer: /CN=445cb7e2560de294a49a6370f742589ddcbcde74
Certificate serial: 6307F5
Authority key identifier: 44:5C:B7:E2:56:0D:E2:94:A4:9A:63:70:F7:42:58:9D:DC:BC:DE:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFy34lYN4pSkmmNw90JYndy83nQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/ac531f-49a8-4ccf-a1ab-7b14735ee234/1/f6KAVUqzlQFweotfbqoFBo52am0.roa
Signing time: Sat 01 Jan 2022 03:00:12 +0000
ROA not before: Sat 01 Jan 2022 03:00:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 146.19.221.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6490101 (0x6307f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=445cb7e2560de294a49a6370f742589ddcbcde74
Validity
Not Before: Jan 1 03:00:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7fa280554ab39501707a8b5f6eaa05068e766a6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:82:6b:4d:d6:44:52:b6:df:3d:aa:13:9f:e1:
6f:2c:3b:cd:d8:2f:d7:19:77:63:c3:e6:6d:30:b6:
fd:be:6d:a7:cf:5a:f2:32:bd:b5:49:d8:4f:c7:12:
ee:ee:50:e4:5d:09:e1:e7:28:82:bb:96:0c:ed:e2:
bd:7f:0f:cf:a4:7a:1d:96:37:7a:ee:7c:82:7f:92:
ff:d7:bd:2c:80:2b:63:9b:16:75:13:07:07:d4:ab:
ed:7b:1c:66:cc:a5:c6:39:fd:9b:65:3f:75:1c:1c:
b8:ff:29:57:a9:b2:41:da:25:cc:09:fc:cd:d7:68:
52:51:05:ac:5e:9d:cf:cb:d8:56:d0:a4:f6:2c:44:
b4:39:7a:17:e5:69:67:1c:35:3a:14:aa:c3:aa:39:
64:16:6c:7b:b3:96:f7:63:1b:5a:cd:a3:ae:fa:ee:
e7:6f:73:58:fe:be:36:ac:1b:c0:d1:67:4b:b5:a8:
ae:a1:56:a8:b8:99:0e:88:eb:15:20:f7:29:85:10:
29:c8:10:ad:da:35:0c:d5:a7:4b:dd:8a:87:b3:4d:
dc:e5:bc:81:8e:1d:fa:7e:d9:3c:86:1f:a4:16:76:
45:91:45:03:7e:2a:a8:68:17:9f:7e:fb:d6:fb:88:
ef:29:75:05:b8:fb:e6:b0:e0:41:29:55:b2:df:85:
24:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:A2:80:55:4A:B3:95:01:70:7A:8B:5F:6E:AA:05:06:8E:76:6A:6D
X509v3 Authority Key Identifier:
keyid:44:5C:B7:E2:56:0D:E2:94:A4:9A:63:70:F7:42:58:9D:DC:BC:DE:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFy34lYN4pSkmmNw90JYndy83nQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/ac531f-49a8-4ccf-a1ab-7b14735ee234/1/f6KAVUqzlQFweotfbqoFBo52am0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/ac531f-49a8-4ccf-a1ab-7b14735ee234/1/RFy34lYN4pSkmmNw90JYndy83nQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.221.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:b4:ea:c9:57:9d:aa:17:a1:c5:4c:69:94:0e:b4:fc:55:b3:
a4:8b:1d:73:5e:c3:fa:44:3f:41:63:8a:18:25:ca:59:73:37:
c8:15:31:53:39:ef:9d:d6:24:b0:49:d6:2d:28:a9:07:8f:de:
d6:65:08:f2:67:16:8b:a3:21:15:a6:f4:fd:55:d1:16:8a:cc:
7c:ff:07:57:b9:21:7d:66:c5:28:80:4a:a0:a5:5a:e5:8c:26:
5e:4e:d1:b9:db:e4:f1:1d:36:35:6b:f1:5c:ae:34:66:7d:6a:
bf:2b:8e:88:34:03:89:13:3c:39:2d:b9:0d:04:45:77:13:5d:
a6:b6:a7:47:25:75:b3:48:d6:34:fb:0a:53:b2:b4:74:e1:28:
ec:c0:4b:c4:a8:4a:0d:fe:ce:f2:a2:77:51:85:ee:6a:e6:67:
ee:73:5a:4f:ea:93:7f:b0:21:75:54:ad:01:35:dd:ea:b1:ab:
4f:36:56:67:f3:a9:3a:85:b3:de:17:13:da:6a:9b:63:ea:df:
4c:fc:4f:ee:7c:2c:b7:da:86:2d:fc:a8:d5:65:d3:01:2d:d9:
80:a5:e3:d6:bc:f4:38:86:e8:a1:a6:8e:6d:a9:42:bc:05:f7:
7c:72:68:03:5c:12:0e:25:40:13:e6:4f:5d:e7:95:d5:e2:9a:
5d:42:6f:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:42 2023 by rpki-client on console-ams.rpki-client.org