Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/fb844a-f373-4e3c-8f76-5b7c431ab61e/1/X4AO4sNwPPnoQiZoio_fII7aG78.roa
File: X4AO4sNwPPnoQiZoio_fII7aG78.roa (raw, json)
Hash identifier: WoLXu9cKOUe5e1V2lesOjXQIu7EqybflQAMGM59Vjik=
Subject key identifier: 5F:80:0E:E2:C3:70:3C:F9:E8:42:26:68:8A:8F:DF:20:8E:DA:1B:BF
Certificate issuer: /CN=629e80e88bb766291e5ec80338732511e4d41e04
Certificate serial: 01838969FE1EEA79B004778A051891843598
Authority key identifier: 62:9E:80:E8:8B:B7:66:29:1E:5E:C8:03:38:73:25:11:E4:D4:1E:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yp6A6Iu3ZikeXsgDOHMlEeTUHgQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/fb844a-f373-4e3c-8f76-5b7c431ab61e/1/X4AO4sNwPPnoQiZoio_fII7aG78.roa
Signing time: Thu 29 Sep 2022 13:22:48 +0000
ROA not before: Thu 29 Sep 2022 13:22:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 53589
IP address blocks: 146.19.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:89:69:fe:1e:ea:79:b0:04:77:8a:05:18:91:84:35:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=629e80e88bb766291e5ec80338732511e4d41e04
Validity
Not Before: Sep 29 13:22:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f800ee2c3703cf9e84226688a8fdf208eda1bbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:20:51:2f:92:d4:18:41:fa:3f:11:bb:f5:49:
9a:26:d3:69:16:3f:9c:ce:3d:f7:6f:c4:96:dd:ec:
d4:6e:1b:7d:4d:b6:c0:3e:43:a4:8e:41:84:2b:3b:
38:4a:a6:d6:e4:ed:f8:6b:22:77:f0:f4:f3:60:b5:
9c:24:ae:5d:6a:6b:21:26:cb:55:c7:e7:29:af:c0:
2a:97:41:28:fb:86:84:3b:cc:ff:60:48:4c:a0:1c:
ff:f0:86:b4:c4:e2:61:3e:43:d1:8f:26:a7:ca:72:
00:a5:79:e3:c3:dc:5a:7c:2c:f7:0b:e7:c2:00:3e:
1d:75:bb:83:a5:52:4d:a7:73:55:12:f1:e8:e5:a4:
c1:66:16:9e:c1:1d:37:56:2c:9b:bf:72:c1:76:36:
a8:ee:d5:ab:d0:b1:37:5a:8d:03:83:64:fe:86:76:
9c:45:6c:80:f9:83:72:0c:24:dc:82:51:a1:39:a5:
c8:c7:a2:37:b9:96:1c:f4:09:cd:8a:81:99:b1:47:
7d:62:0d:8f:49:7d:82:cc:db:de:fa:4a:fa:aa:8f:
9d:d1:9e:da:51:e9:09:50:52:1c:43:25:1d:a9:b4:
29:ce:60:40:04:80:81:3f:48:1f:09:c9:26:47:6f:
10:49:18:ce:4f:3b:46:e8:3a:8c:94:d0:54:1b:33:
e7:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:80:0E:E2:C3:70:3C:F9:E8:42:26:68:8A:8F:DF:20:8E:DA:1B:BF
X509v3 Authority Key Identifier:
keyid:62:9E:80:E8:8B:B7:66:29:1E:5E:C8:03:38:73:25:11:E4:D4:1E:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yp6A6Iu3ZikeXsgDOHMlEeTUHgQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/fb844a-f373-4e3c-8f76-5b7c431ab61e/1/X4AO4sNwPPnoQiZoio_fII7aG78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/fb844a-f373-4e3c-8f76-5b7c431ab61e/1/Yp6A6Iu3ZikeXsgDOHMlEeTUHgQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.134.0/24
Signature Algorithm: sha256WithRSAEncryption
58:b8:38:19:4d:84:fb:63:95:4e:d6:01:5a:88:70:a7:48:46:
a1:d0:2a:5b:7f:cd:2b:8a:d0:b6:51:8e:6b:94:61:dd:9e:d5:
90:e0:ab:54:13:40:58:5b:48:55:06:62:07:29:b3:7c:9f:eb:
79:fe:27:31:9b:67:53:60:0b:33:f6:5a:e3:ec:68:70:af:05:
f8:7b:bb:43:5f:6e:a0:7b:2e:73:e9:40:42:a1:62:a5:a2:37:
f1:a2:7b:53:10:ec:ff:84:98:67:1f:de:4d:fb:83:2c:9e:46:
28:64:b7:73:a9:8a:8d:0e:c5:2f:a3:2c:18:7a:f3:b8:3d:9d:
b6:08:54:79:5b:eb:d5:d2:00:9c:0a:11:23:29:32:c6:98:53:
d5:51:6e:55:2e:d3:64:31:cc:df:c8:60:ca:5a:1f:b1:af:7c:
a1:9f:c4:b4:f2:f2:a3:ff:3f:7d:91:80:36:e6:1e:67:8d:94:
38:bb:21:72:b1:f8:71:87:a5:e9:6f:ac:74:2b:e8:2a:6e:c2:
97:d5:e9:6c:85:4f:65:05:5a:2c:3f:1a:84:d0:2d:8d:e4:69:
3c:f8:68:ec:96:62:8d:1c:27:80:cd:46:33:2d:ee:2e:10:be:
aa:9e:0d:c5:9f:2e:21:c1:dc:65:69:3f:af:bc:76:85:88:e5:
36:36:82:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:11 2024 by rpki-client on console-fra.rpki-client.org