Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/fb4451-d931-430d-b858-7a3440433efc/1/bNLzz7bHiHOUDl3ZoWgvqrs8Dls.roa
File: bNLzz7bHiHOUDl3ZoWgvqrs8Dls.roa (raw, json)
Hash identifier: esfGyGsAnYM5PdwPvU9oZObov3s8yafVts22t7Lt9JE=
Subject key identifier: 6C:D2:F3:CF:B6:C7:88:73:94:0E:5D:D9:A1:68:2F:AA:BB:3C:0E:5B
Certificate issuer: /CN=8400880cc499b2ba2f0db7da48ebb7b30aa2a762
Certificate serial: E1B116
Authority key identifier: 84:00:88:0C:C4:99:B2:BA:2F:0D:B7:DA:48:EB:B7:B3:0A:A2:A7:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hACIDMSZsrovDbfaSOu3swqip2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/fb4451-d931-430d-b858-7a3440433efc/1/bNLzz7bHiHOUDl3ZoWgvqrs8Dls.roa
Signing time: Thu 23 Jun 2022 12:12:29 +0000
ROA not before: Thu 23 Jun 2022 12:12:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 146.19.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14790934 (0xe1b116)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8400880cc499b2ba2f0db7da48ebb7b30aa2a762
Validity
Not Before: Jun 23 12:12:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6cd2f3cfb6c78873940e5dd9a1682faabb3c0e5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:cf:be:57:e3:2a:11:b7:b0:e1:74:ad:fb:31:
0d:a0:9e:b3:d3:ba:9f:04:41:13:21:6b:eb:a9:23:
68:6b:73:b3:99:ad:3c:f8:40:fa:2a:58:09:6d:a1:
64:17:8d:8c:39:64:b4:60:33:0b:83:89:bb:2a:c6:
4b:12:d7:6f:a7:1a:d7:dd:a5:fb:1d:6d:4f:f7:cb:
5b:dd:06:d4:12:f3:5f:ba:d2:4e:7c:fb:72:76:39:
1a:94:ee:94:21:01:3b:13:f7:cc:71:30:25:d2:1f:
21:96:cc:c9:7a:02:eb:a5:1e:79:37:14:2c:f5:92:
08:2d:c8:9c:6b:7c:a6:29:11:b8:89:97:24:48:ec:
90:d4:76:3d:bf:ef:79:64:40:10:c3:00:69:ab:8b:
47:21:36:60:6f:b3:98:ed:44:3e:37:00:2d:87:d9:
7e:df:cf:ff:0d:4c:61:c1:4c:4d:37:6e:39:49:ef:
fc:0e:d0:25:d8:47:75:57:17:ef:8d:a7:bb:37:68:
66:4c:85:ba:b6:68:ae:b2:44:5d:a6:1a:8d:bd:c3:
5c:99:d3:c3:15:58:da:da:99:d7:a8:26:46:7e:14:
bf:41:65:a1:c5:57:88:70:1c:6c:3e:f4:0c:89:46:
8f:29:8d:ca:43:5a:54:51:d1:c1:4e:1d:d9:2a:b3:
08:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:D2:F3:CF:B6:C7:88:73:94:0E:5D:D9:A1:68:2F:AA:BB:3C:0E:5B
X509v3 Authority Key Identifier:
keyid:84:00:88:0C:C4:99:B2:BA:2F:0D:B7:DA:48:EB:B7:B3:0A:A2:A7:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hACIDMSZsrovDbfaSOu3swqip2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/fb4451-d931-430d-b858-7a3440433efc/1/bNLzz7bHiHOUDl3ZoWgvqrs8Dls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/fb4451-d931-430d-b858-7a3440433efc/1/hACIDMSZsrovDbfaSOu3swqip2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.56.0/24
Signature Algorithm: sha256WithRSAEncryption
69:be:08:6d:be:6f:1d:c6:ec:20:16:5c:e0:57:c5:e4:69:35:
0a:1c:72:57:fe:62:58:cb:52:13:9d:ca:b8:99:e3:db:ec:51:
3f:03:e8:7c:25:d2:d6:47:a4:77:81:5f:40:ec:20:73:07:60:
3a:f9:52:43:bb:ea:74:fd:f3:d0:e8:0b:99:14:63:dc:7c:02:
88:3b:61:6e:6d:7a:91:ea:56:07:4b:a4:f0:6b:1c:8c:37:34:
8e:7c:4a:b9:d8:9f:eb:ae:2a:97:8b:54:82:d0:e2:93:6f:17:
26:50:62:36:82:e1:e0:7e:4c:24:83:9e:c7:36:c3:a4:c8:dd:
42:77:4a:d3:9a:26:2b:b7:8a:7d:85:9a:10:2d:49:4e:11:f0:
1f:d9:7f:fe:01:41:a3:fe:1d:c6:e8:88:04:a7:c8:3f:ac:6a:
db:8a:96:0a:ac:56:91:fb:57:9b:ec:8b:37:9a:dc:df:c2:51:
e1:eb:f5:8e:96:60:9e:ce:89:1c:3a:d4:61:d3:58:ec:c1:3a:
72:20:8e:ff:8b:11:af:14:46:b4:d2:45:2d:f7:18:e6:ed:45:
c4:e0:c9:bf:7a:14:57:94:8a:9d:7d:69:48:53:89:39:a5:d1:
40:28:99:fc:15:8d:16:4b:6e:02:b1:56:97:54:07:a3:0d:ec:
bf:db:fd:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:22 2023 by rpki-client on console-ams.rpki-client.org