Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/Ug6Nia1mGsAr5iy1j2LeZ_y_4Sw.roa
File: Ug6Nia1mGsAr5iy1j2LeZ_y_4Sw.roa (raw, json)
Hash identifier: tMXUDfxWxG/ltqWGDbasvVTiRg/YeH82BJ8JTxnlV04=
Subject key identifier: 52:0E:8D:89:AD:66:1A:C0:2B:E6:2C:B5:8F:62:DE:67:FC:BF:E1:2C
Certificate issuer: /CN=f980c91ebf1096462a2b74469dc61cb4a3ac3d32
Certificate serial: B7D02A
Authority key identifier: F9:80:C9:1E:BF:10:96:46:2A:2B:74:46:9D:C6:1C:B4:A3:AC:3D:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-YDJHr8QlkYqK3RGncYctKOsPTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/Ug6Nia1mGsAr5iy1j2LeZ_y_4Sw.roa
Signing time: Fri 28 Jan 2022 14:24:35 +0000
ROA not before: Fri 28 Jan 2022 14:24:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 146.19.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12046378 (0xb7d02a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f980c91ebf1096462a2b74469dc61cb4a3ac3d32
Validity
Not Before: Jan 28 14:24:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=520e8d89ad661ac02be62cb58f62de67fcbfe12c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ea:b5:f2:01:92:df:0e:ed:3a:55:fb:58:ce:
b3:a1:dc:7a:b1:cd:3b:1b:6e:ea:27:8b:2f:26:18:
b9:17:21:54:9b:e8:b7:dc:be:ad:4f:1f:c5:4c:eb:
8a:37:55:00:a8:ba:16:21:fa:2f:e8:a6:0a:d7:08:
a8:f2:39:88:b5:d9:3e:af:6d:e2:43:8a:13:86:72:
f4:58:e4:60:85:a1:42:6e:e7:8e:c5:8c:8b:eb:98:
f3:67:df:3b:6f:85:36:aa:6b:7a:52:a2:f1:c7:50:
59:dd:8e:4b:2a:be:57:ec:55:bd:ce:65:01:63:5f:
a4:cd:5a:20:ab:1a:63:1d:38:c4:52:c4:ab:50:4f:
fb:1c:17:bb:d9:17:64:d5:ee:dc:61:92:5f:d3:f0:
7b:ca:9f:93:66:2a:f1:33:45:d6:ed:d0:83:8f:39:
7d:cc:8f:dc:28:c8:49:79:6a:4f:f0:c4:72:54:3f:
f3:64:df:86:cb:60:1d:d4:ca:6f:f2:58:43:05:f9:
f9:15:33:c7:e1:02:a4:be:e2:7e:c6:84:dd:ed:24:
3f:90:9d:14:a5:91:19:33:0f:da:d9:c1:77:f7:2d:
16:c4:f7:fc:35:51:e6:1c:35:31:b1:8b:54:8a:46:
7c:ec:bb:3e:c3:4c:56:f1:1e:68:28:4f:6b:b7:09:
b5:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:0E:8D:89:AD:66:1A:C0:2B:E6:2C:B5:8F:62:DE:67:FC:BF:E1:2C
X509v3 Authority Key Identifier:
keyid:F9:80:C9:1E:BF:10:96:46:2A:2B:74:46:9D:C6:1C:B4:A3:AC:3D:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-YDJHr8QlkYqK3RGncYctKOsPTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/Ug6Nia1mGsAr5iy1j2LeZ_y_4Sw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/1-YDJHr8QlkYqK3RGncYctKOsPTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.20.0/24
Signature Algorithm: sha256WithRSAEncryption
04:d3:4a:a9:f4:33:eb:63:4e:c4:66:3a:a1:08:b6:f2:c2:0b:
7f:5a:5b:b1:23:f8:f5:fb:f3:6d:45:ed:59:3e:1d:23:57:44:
a8:56:10:a1:11:eb:64:a3:f9:f5:02:97:41:2c:39:fc:a6:5b:
8c:39:28:e4:44:5c:7f:dd:6b:98:77:f3:09:be:c4:cb:e9:16:
10:50:ac:59:ce:62:08:7d:9a:52:06:a8:e5:bc:59:fc:7b:f9:
57:82:02:68:2f:af:81:b1:ce:2b:f3:7d:73:0b:1c:c1:58:1c:
23:12:87:be:62:eb:e3:c1:60:59:7a:2c:31:82:09:c6:5f:f4:
8c:b2:29:d0:af:b3:c4:1e:d8:f7:8a:e6:2b:01:a5:dd:ad:e7:
70:c0:ff:59:a1:68:c9:b9:56:b2:af:37:ce:aa:92:7b:0a:bd:
a3:05:ab:57:0c:80:64:d0:57:ab:3f:e5:fa:23:8f:53:44:65:
70:91:d4:a4:a9:8e:5e:76:7d:68:45:4b:e7:50:39:31:1b:6e:
c5:e6:bc:b3:bc:aa:5b:71:28:24:3f:96:b1:3f:39:61:76:e6:
f2:62:f4:a0:64:15:01:e9:23:d8:96:ca:d9:83:5b:02:cf:6b:
4e:0b:cc:ee:86:63:39:8e:62:6e:b1:fe:95:b8:b1:66:ba:75:
c9:50:8a:a0
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIEALfQKjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
OTgwYzkxZWJmMTA5NjQ2MmEyYjc0NDY5ZGM2MWNiNGEzYWMzZDMyMB4XDTIyMDEy
ODE0MjQzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTIwZThkODlhZDY2
MWFjMDJiZTYyY2I1OGY2MmRlNjdmY2JmZTEyYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALXqtfIBkt8O7TpV+1jOs6HcerHNOxtu6ieLLyYYuRchVJvo
t9y+rU8fxUzrijdVAKi6FiH6L+imCtcIqPI5iLXZPq9t4kOKE4Zy9FjkYIWhQm7n
jsWMi+uY82ffO2+FNqprelKi8cdQWd2OSyq+V+xVvc5lAWNfpM1aIKsaYx04xFLE
q1BP+xwXu9kXZNXu3GGSX9Pwe8qfk2Yq8TNF1u3Qg485fcyP3CjISXlqT/DEclQ/
82TfhstgHdTKb/JYQwX5+RUzx+ECpL7ifsaE3e0kP5CdFKWRGTMP2tnBd/ctFsT3
/DVR5hw1MbGLVIpGfOy7PsNMVvEeaChPa7cJtWcCAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBRSDo2JrWYawCvmLLWPYt5n/L/hLDAfBgNVHSMEGDAWgBT5gMkevxCWRior
dEadxhy0o6w9MjAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtWURKSHI4UWxrWXFLM1JHbmNZY3RLT3NQVEkuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzgwL2UwYThmNC04NjRmLTRjYWUtYjRhOC1hMWU1Y2ExNzlhNzUv
MS9VZzZOaWExbUdzQXI1aXkxajJMZVpfeV80U3cucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzgw
L2UwYThmNC04NjRmLTRjYWUtYjRhOC1hMWU1Y2ExNzlhNzUvMS8xLVlESkhyOFFs
a1lxSzNSR25jWWN0S09zUFRJLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkhMUMA0GCSqGSIb3DQEBCwUA
A4IBAQAE00qp9DPrY07EZjqhCLbywgt/WluxI/j1+/NtRe1ZPh0jV0SoVhChEetk
o/n1ApdBLDn8pluMOSjkRFx/3WuYd/MJvsTL6RYQUKxZzmIIfZpSBqjlvFn8e/lX
ggJoL6+Bsc4r831zCxzBWBwjEoe+YuvjwWBZeiwxggnGX/SMsinQr7PEHtj3iuYr
AaXdredwwP9ZoWjJuVayrzfOqpJ7Cr2jBatXDIBk0FerP+X6I49TRGVwkdSkqY5e
dn1oRUvnUDkxG27F5ryzvKpbcSgkP5axPzlhdubyYvSgZBUB6SPYlsrZg1sCz2tO
C8zuhmM5jmJusf6VuLFmunXJUIqg
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:15 2023 by rpki-client on console-ams.rpki-client.org