Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/9dcc25-5b0a-4c3e-9149-5a8230e7643a/1/Ti0UbAJanVDlEuRRluQctmgeyWM.roa
File: Ti0UbAJanVDlEuRRluQctmgeyWM.roa (raw, json)
Hash identifier: m4XHuvSxq/7nN3GlU37xLFg0ABY5Ka6XZliUr86APe4=
Subject key identifier: 4E:2D:14:6C:02:5A:9D:50:E5:12:E4:51:96:E4:1C:B6:68:1E:C9:63
Certificate issuer: /CN=1502af713e36e52c71866c8a9ebdacf3d8629b68
Certificate serial: 0A8CB264
Authority key identifier: 15:02:AF:71:3E:36:E5:2C:71:86:6C:8A:9E:BD:AC:F3:D8:62:9B:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FQKvcT425SxxhmyKnr2s89him2g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/9dcc25-5b0a-4c3e-9149-5a8230e7643a/1/Ti0UbAJanVDlEuRRluQctmgeyWM.roa
Signing time: Sat 01 Jan 2022 00:54:54 +0000
ROA not before: Sat 01 Jan 2022 00:54:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2852
IP address blocks: 146.102.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176992868 (0xa8cb264)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1502af713e36e52c71866c8a9ebdacf3d8629b68
Validity
Not Before: Jan 1 00:54:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e2d146c025a9d50e512e45196e41cb6681ec963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:da:84:be:68:7f:2b:64:d9:7f:4f:87:66:d0:
22:a8:f5:08:73:5b:9f:5e:61:c6:94:b4:16:68:1d:
d9:81:60:b4:e1:46:e7:76:36:95:4f:2f:c0:2e:bd:
06:ea:1f:f4:af:9f:f3:1d:52:40:62:c5:60:71:38:
58:37:5a:b6:57:ff:ef:f2:5d:63:f8:41:54:bd:54:
22:a2:47:bf:60:d0:66:6b:91:d2:67:af:c1:6a:fb:
65:3e:b7:fb:e8:83:18:4a:f6:36:d1:88:6a:72:27:
c1:cd:17:8b:8d:da:e0:ae:a2:56:3b:70:46:ff:ed:
da:79:2a:fc:8f:41:18:e7:f4:ac:ed:b0:4f:38:20:
93:75:f2:5c:06:7e:2f:ea:4c:e4:5b:71:92:e2:4f:
50:5e:65:5b:a9:72:cc:43:38:ee:8b:2d:0d:05:c5:
ef:58:a2:fb:41:f0:1f:c8:7f:aa:0d:c6:a6:28:2a:
c0:db:98:b3:53:fd:4f:71:5c:50:36:fd:ec:53:06:
a6:36:e1:d7:2b:99:a8:ad:cb:69:a2:af:cb:d5:6d:
58:cf:25:bf:e1:cc:77:26:77:9e:b7:e8:ae:c2:5f:
9e:38:6e:ca:67:03:36:89:ab:57:d3:56:67:a2:bb:
98:ea:9b:df:aa:42:7e:cc:b6:d5:1e:c2:87:92:67:
b3:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:2D:14:6C:02:5A:9D:50:E5:12:E4:51:96:E4:1C:B6:68:1E:C9:63
X509v3 Authority Key Identifier:
keyid:15:02:AF:71:3E:36:E5:2C:71:86:6C:8A:9E:BD:AC:F3:D8:62:9B:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FQKvcT425SxxhmyKnr2s89him2g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/9dcc25-5b0a-4c3e-9149-5a8230e7643a/1/Ti0UbAJanVDlEuRRluQctmgeyWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/9dcc25-5b0a-4c3e-9149-5a8230e7643a/1/FQKvcT425SxxhmyKnr2s89him2g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.102.0.0/16
Signature Algorithm: sha256WithRSAEncryption
48:c5:26:93:77:8d:9b:30:36:30:6a:ea:e5:73:26:76:84:00:
27:61:a9:c1:ad:40:c0:01:be:2e:c1:91:ab:b2:a5:56:6f:f6:
47:73:5a:55:93:6b:18:ab:f4:f4:1f:8d:cc:72:fb:c6:77:f9:
96:95:f9:23:bb:c4:3c:2c:72:02:e3:9c:3b:82:83:c4:0e:58:
fd:87:b8:94:8b:e2:85:54:51:a3:15:4f:68:dd:72:d1:f2:6b:
7a:e6:13:86:e3:c2:69:3d:90:41:01:58:cc:36:d7:53:50:67:
10:22:f2:03:99:36:63:d9:4d:7f:26:63:cd:bb:dc:b8:e3:a3:
97:f7:dd:0f:34:3c:d1:ef:d4:0c:68:57:f4:87:b5:48:a0:2d:
e0:ba:06:ee:c5:ba:09:50:6f:a6:bb:6c:b6:f4:78:fa:f6:0d:
ff:3c:df:7c:32:df:4c:10:67:34:d4:0b:97:0b:0b:5f:55:a9:
82:c7:67:44:29:65:44:16:14:0f:b3:2b:8f:f7:ef:98:67:18:
93:0b:b6:4e:51:97:d6:cb:fa:54:ee:66:70:7a:f7:9f:9d:28:
ff:12:cc:ac:4e:d8:0a:43:b5:bf:1c:5f:91:ec:e3:5a:a8:df:
f0:19:44:eb:25:1d:4d:b5:8e:b7:e3:22:1b:a4:eb:05:2b:9b:
4d:5c:39:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:52 2023 by rpki-client on console-fra.rpki-client.org