Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/c87266-0d64-449c-ba46-0b617fe7c123/1/Ao-8iuXZyuyb_Uphtyb6ntRurq0.roa
File: Ao-8iuXZyuyb_Uphtyb6ntRurq0.roa (raw, json)
Hash identifier: wDjnI+m/ynar8VIvgiqIhSVzjuDJTkEMZhNVz73NvgQ=
Subject key identifier: 02:8F:BC:8A:E5:D9:CA:EC:9B:FD:4A:61:B7:26:FA:9E:D4:6E:AE:AD
Certificate issuer: /CN=a2dbf3dece882fad8a237468e08fd7beb1cafa39
Certificate serial: 0182AB5C6E56F9418700C672AFA5190B9431
Authority key identifier: A2:DB:F3:DE:CE:88:2F:AD:8A:23:74:68:E0:8F:D7:BE:B1:CA:FA:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/otvz3s6IL62KI3Ro4I_XvrHK-jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/c87266-0d64-449c-ba46-0b617fe7c123/1/Ao-8iuXZyuyb_Uphtyb6ntRurq0.roa
Signing time: Wed 17 Aug 2022 10:32:17 +0000
ROA not before: Wed 17 Aug 2022 10:32:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 146.19.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ab:5c:6e:56:f9:41:87:00:c6:72:af:a5:19:0b:94:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2dbf3dece882fad8a237468e08fd7beb1cafa39
Validity
Not Before: Aug 17 10:32:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=028fbc8ae5d9caec9bfd4a61b726fa9ed46eaead
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:ed:10:dd:65:27:2c:85:af:6d:0f:0a:2e:e2:
76:08:8f:09:ae:ad:73:07:9e:41:bf:63:f4:99:fa:
e1:e7:f8:b4:fb:18:81:de:02:0c:b8:8d:14:9f:42:
57:1a:3b:01:d4:07:69:e4:ad:80:19:39:08:c6:9a:
a0:e4:83:e6:e4:30:70:fe:96:e8:ba:59:b7:62:37:
52:8c:98:7e:53:b1:2a:45:30:fa:1b:39:62:0f:9c:
cc:34:7d:05:3f:38:bb:62:a0:38:0e:08:7a:ae:2c:
59:e2:3e:82:22:b7:a5:56:01:b2:47:bf:b9:3f:55:
8a:0f:56:95:d9:ff:bb:fa:e4:91:10:45:28:f6:4c:
ba:c5:a6:5b:a5:5c:24:2b:32:ad:80:78:45:96:58:
52:40:0c:b3:d0:11:66:96:45:96:9e:7b:fc:c5:9d:
16:dc:55:f6:7c:9e:1c:9f:f8:2b:64:4c:94:1d:66:
fa:23:b5:64:a5:be:c6:20:46:c6:74:74:70:67:23:
19:62:4c:f7:dd:16:8d:ff:16:72:95:d1:b2:c3:da:
f2:eb:ec:f2:14:24:8d:72:46:ec:7b:34:3f:8d:be:
91:52:90:32:4c:e9:d4:e4:51:81:0a:05:64:79:c5:
37:90:f2:04:67:d9:5d:b7:04:ec:b6:7d:30:d9:8c:
4d:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:8F:BC:8A:E5:D9:CA:EC:9B:FD:4A:61:B7:26:FA:9E:D4:6E:AE:AD
X509v3 Authority Key Identifier:
keyid:A2:DB:F3:DE:CE:88:2F:AD:8A:23:74:68:E0:8F:D7:BE:B1:CA:FA:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/otvz3s6IL62KI3Ro4I_XvrHK-jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/c87266-0d64-449c-ba46-0b617fe7c123/1/Ao-8iuXZyuyb_Uphtyb6ntRurq0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/c87266-0d64-449c-ba46-0b617fe7c123/1/otvz3s6IL62KI3Ro4I_XvrHK-jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.9.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:4d:e7:da:3a:86:39:a3:88:73:13:b5:6a:e3:2d:a2:12:41:
cb:b0:14:d9:84:62:1e:1d:2a:d8:5e:b0:c5:2c:62:89:ce:33:
c3:c2:2c:37:d1:bd:bc:e8:6e:6e:2e:9e:cf:60:42:14:c9:79:
78:ac:67:8a:c3:24:8c:52:7c:94:25:7a:b8:7c:0d:e3:79:a0:
44:30:f4:6a:aa:61:a8:6c:0a:88:57:ce:57:84:89:89:38:4e:
52:49:0e:3a:2a:0d:0a:ab:78:eb:65:2f:c3:d0:f3:70:ea:fb:
52:ba:79:27:54:2d:44:c3:a9:61:ff:e9:54:da:bd:fb:c3:27:
fa:16:f7:29:68:ad:4a:39:e2:33:ae:78:12:3c:41:c0:dd:b0:
3c:b5:9b:07:06:2f:81:e3:19:d7:09:87:db:68:32:6d:81:78:
c3:73:98:f4:87:b1:8b:73:cc:e5:3f:20:a0:6f:67:ce:ec:68:
f6:20:07:c0:bd:a9:f0:98:0e:34:06:5d:0f:c0:f6:8a:8a:e5:
1d:7d:1b:be:6f:e1:1e:ce:33:8e:42:a6:66:7a:83:8e:e5:99:
62:3a:e5:ec:cc:ad:46:5f:e3:68:3b:14:7a:e7:77:0b:3d:a8:
c6:e3:79:3c:ff:ab:dc:10:19:e3:64:6a:31:f5:50:11:1b:80:
3c:f3:ce:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:48 2023 by rpki-client on console-ams.rpki-client.org