Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/fb4451-d931-430d-b858-7a3440433efc/1/lzMCEgmiGVD8pnUDweTVIYNbogY.roa
File: lzMCEgmiGVD8pnUDweTVIYNbogY.roa (raw, json)
Hash identifier: WdHpeJoQ0ZZeh+bEUe7PlQFI606JBxDIQQiCmabiBi0=
Subject key identifier: 97:33:02:12:09:A2:19:50:FC:A6:75:03:C1:E4:D5:21:83:5B:A2:06
Certificate issuer: /CN=8400880cc499b2ba2f0db7da48ebb7b30aa2a762
Certificate serial: A4CC34
Authority key identifier: 84:00:88:0C:C4:99:B2:BA:2F:0D:B7:DA:48:EB:B7:B3:0A:A2:A7:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hACIDMSZsrovDbfaSOu3swqip2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/fb4451-d931-430d-b858-7a3440433efc/1/lzMCEgmiGVD8pnUDweTVIYNbogY.roa
Signing time: Fri 27 May 2022 07:30:14 +0000
ROA not before: Fri 27 May 2022 07:30:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 146.19.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10800180 (0xa4cc34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8400880cc499b2ba2f0db7da48ebb7b30aa2a762
Validity
Not Before: May 27 07:30:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9733021209a21950fca67503c1e4d521835ba206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:af:84:6e:aa:39:6b:17:a5:91:92:a6:ce:b9:
55:c2:ad:c9:8d:41:a3:b3:6e:27:7a:36:8f:56:13:
09:7e:0a:44:65:39:69:43:46:55:23:a7:d8:b0:3c:
a8:c5:af:c9:69:84:19:4c:43:f6:3b:07:66:88:8c:
b9:dc:73:88:c0:db:84:49:e5:85:a8:99:c0:aa:9e:
18:2a:0d:9b:3d:49:28:44:b6:2c:06:08:d0:58:f0:
02:92:c1:e4:6b:50:c3:72:b8:dc:f5:7c:30:46:14:
9d:35:43:3e:4f:75:3f:60:7d:9d:8d:7a:63:b1:a9:
9c:6c:05:e1:cf:9a:b7:99:25:3f:b7:83:83:44:c2:
cf:f2:1a:7a:37:5d:a8:96:99:69:4a:79:36:cc:23:
f2:09:65:1c:f7:a6:d1:68:85:7a:16:c6:a8:99:3b:
16:7f:bd:0f:9c:a4:19:c6:e4:84:8b:e9:c2:b9:ae:
1c:e4:7f:1f:47:fa:97:18:31:2c:6f:13:1a:8f:a1:
72:41:bf:1d:bc:02:ee:e4:0f:ee:97:87:a6:5c:9e:
86:f4:ea:60:82:63:da:f2:bf:b2:f8:17:65:34:51:
34:52:ff:87:4a:53:3b:97:f4:e8:e6:7c:14:b9:40:
28:cc:82:48:ba:68:a9:69:3c:36:ee:c2:5e:cf:31:
a3:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:33:02:12:09:A2:19:50:FC:A6:75:03:C1:E4:D5:21:83:5B:A2:06
X509v3 Authority Key Identifier:
keyid:84:00:88:0C:C4:99:B2:BA:2F:0D:B7:DA:48:EB:B7:B3:0A:A2:A7:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hACIDMSZsrovDbfaSOu3swqip2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/fb4451-d931-430d-b858-7a3440433efc/1/lzMCEgmiGVD8pnUDweTVIYNbogY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/fb4451-d931-430d-b858-7a3440433efc/1/hACIDMSZsrovDbfaSOu3swqip2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.56.0/24
Signature Algorithm: sha256WithRSAEncryption
58:e6:0b:14:3a:0e:8e:05:e3:bc:7c:53:f0:4c:f8:a3:36:5f:
df:f8:a9:36:19:19:ea:f1:f4:00:c2:c0:6f:2a:f5:a2:ad:8e:
2e:00:41:d1:93:46:79:a1:bf:ce:6b:27:e5:6e:d4:3d:00:a7:
3b:4e:69:c7:98:0a:4b:2c:a2:bc:ac:95:92:9a:56:e1:ca:1c:
d5:70:d9:cc:c6:9a:2b:e0:99:cf:fe:e3:f7:53:73:28:71:13:
c6:5d:1f:da:3b:bd:e4:a0:66:1c:0a:a8:04:7c:a4:e0:a1:ff:
bb:c3:27:8a:f4:5a:cd:15:8b:07:46:1d:fb:10:50:b6:b2:2b:
7e:4e:3b:17:f3:8e:78:4e:49:c4:ca:fb:50:d3:7d:d5:ab:a5:
d9:ff:11:2b:dd:a1:75:11:d7:0a:04:5c:16:98:d1:59:40:01:
5a:9b:8f:ac:3d:22:6f:7c:85:d5:4e:16:6d:03:c3:ce:1f:e6:
2c:35:f2:48:c6:07:42:fd:ea:b7:8c:aa:7d:ed:de:fc:42:64:
94:70:8e:e2:f5:11:45:42:77:73:ce:cd:cd:d0:f5:09:25:13:
d4:0a:2c:03:d8:34:27:8c:ff:37:67:20:d9:6a:de:a0:37:31:
3b:7e:6a:e2:de:19:43:d9:11:54:8b:e2:a4:c3:eb:5a:96:31:
5b:f9:30:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:22 2023 by rpki-client on console-ams.rpki-client.org