Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/11a678-11b6-4a35-a5ac-bb74c97f7269/1/p9wTILMr7Octoxb7w9QfVY1BhDk.roa
File: p9wTILMr7Octoxb7w9QfVY1BhDk.roa (raw, json)
Hash identifier: hZXYdBvR4z28KhKx0SW3tXfuyym5kLyV/sFitevKxkk=
Subject key identifier: A7:DC:13:20:B3:2B:EC:E7:2D:A3:16:FB:C3:D4:1F:55:8D:41:84:39
Certificate issuer: /CN=e314905c56633e9fde791b3005d9a4af7d31a7a0
Certificate serial: 686164
Authority key identifier: E3:14:90:5C:56:63:3E:9F:DE:79:1B:30:05:D9:A4:AF:7D:31:A7:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xSQXFZjPp_eeRswBdmkr30xp6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/11a678-11b6-4a35-a5ac-bb74c97f7269/1/p9wTILMr7Octoxb7w9QfVY1BhDk.roa
Signing time: Sat 01 Jan 2022 00:53:41 +0000
ROA not before: Sat 01 Jan 2022 00:53:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3257
IP address blocks: 146.19.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6840676 (0x686164)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e314905c56633e9fde791b3005d9a4af7d31a7a0
Validity
Not Before: Jan 1 00:53:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7dc1320b32bece72da316fbc3d41f558d418439
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:63:c9:e2:ab:7e:17:3a:f3:e2:a9:8a:d7:08:
53:50:71:a4:fd:3a:b5:61:04:a8:f9:84:3f:2f:9f:
32:d9:ed:0b:6e:ad:ca:d6:64:1c:ad:a4:5a:5e:17:
4b:2c:21:9c:73:50:3d:85:dd:8b:86:b5:13:7d:f8:
4d:9e:83:f9:a7:0b:56:9c:57:86:33:be:be:19:86:
76:6e:8a:1b:86:de:bc:21:6e:f3:47:2d:e3:02:71:
8b:d3:1d:4c:ec:1f:ab:12:93:2f:cf:67:75:68:b4:
f8:9f:63:90:dc:bb:a4:b7:34:c8:90:53:2c:12:2e:
6c:b0:62:83:b0:e5:15:3b:03:69:20:19:4b:65:80:
97:ea:5c:c3:98:8f:c4:79:d3:5a:dc:0e:bf:09:ad:
c3:5a:07:34:4b:c4:e0:f6:52:08:6e:b1:1a:38:e9:
e2:17:de:ad:6d:20:63:e9:6a:96:f7:a5:43:1f:d5:
e8:2c:10:3b:e9:27:6f:9a:ff:8e:f8:38:f0:f2:f3:
31:c9:26:cc:67:7d:0a:15:85:1c:4e:6c:49:51:ad:
5e:f0:76:0c:c3:8d:9d:78:4b:68:79:76:58:13:63:
45:49:50:fa:5a:78:3a:07:ad:97:d8:7c:a4:da:a3:
5e:15:5e:7b:49:a2:eb:5a:a1:36:fd:71:77:9e:40:
31:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:DC:13:20:B3:2B:EC:E7:2D:A3:16:FB:C3:D4:1F:55:8D:41:84:39
X509v3 Authority Key Identifier:
keyid:E3:14:90:5C:56:63:3E:9F:DE:79:1B:30:05:D9:A4:AF:7D:31:A7:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xSQXFZjPp_eeRswBdmkr30xp6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/11a678-11b6-4a35-a5ac-bb74c97f7269/1/p9wTILMr7Octoxb7w9QfVY1BhDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/11a678-11b6-4a35-a5ac-bb74c97f7269/1/4xSQXFZjPp_eeRswBdmkr30xp6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.55.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:95:e5:42:16:c2:d2:b1:dc:ce:64:63:73:aa:6e:68:8b:1a:
2c:48:e4:54:c8:c3:78:0a:62:4e:8e:5f:9b:36:f6:af:93:54:
0b:df:9f:8b:89:9a:b0:78:90:84:ac:16:31:1f:9e:63:0f:00:
0a:1a:1e:87:43:96:a8:a5:44:ea:57:22:b0:3f:45:56:ab:f0:
14:8f:83:12:47:fc:77:51:ae:33:c3:b3:54:68:4e:52:d7:32:
c6:3e:7f:14:ff:4d:5c:f6:9f:4e:e4:1b:07:b3:54:0b:f7:3f:
34:f5:63:d1:58:54:f6:d4:e4:aa:3e:a8:17:0d:49:89:d9:2c:
4c:a2:bf:5a:ec:9a:2b:6d:7e:64:99:a8:b4:ef:55:ff:da:a8:
28:71:57:ad:36:15:bc:86:c5:de:ab:06:18:8d:2a:59:c4:f6:
83:a8:82:8c:83:c6:e5:d6:bb:09:36:2a:27:8b:a0:90:fa:9f:
15:66:07:2f:4a:bc:90:d3:28:ec:09:3f:c9:10:ab:ab:cb:68:
27:4f:5c:39:0d:a0:37:a3:71:cd:5c:98:e5:67:28:4b:79:2a:
5d:6a:b5:d5:3d:c3:59:23:c9:c2:e9:3c:48:e5:74:d9:55:93:
8e:5d:20:1e:42:5e:06:4b:7d:b6:d0:a7:d2:b8:17:7c:bc:9d:
a1:0d:f4:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:57 2023 by rpki-client on console-fra.rpki-client.org