Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/3bf367-0033-4b8a-af23-2064effff6ca/1/gLlWhNg_Ef4mhXnbCNVGusLEzy8.roa
File: gLlWhNg_Ef4mhXnbCNVGusLEzy8.roa (raw, json)
Hash identifier: 0e36SmHDO0eBYxDBNt1CybOtFTSwcbAqVlm48jySxbs=
Subject key identifier: 80:B9:56:84:D8:3F:11:FE:26:85:79:DB:08:D5:46:BA:C2:C4:CF:2F
Certificate issuer: /CN=11187dc18bfa8b2a28aa49d10da6d54c08314644
Certificate serial: 01825591EF0D0F18CC03EEE6CDC672D0F6FF
Authority key identifier: 11:18:7D:C1:8B:FA:8B:2A:28:AA:49:D1:0D:A6:D5:4C:08:31:46:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ERh9wYv6iyooqknRDabVTAgxRkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/3bf367-0033-4b8a-af23-2064effff6ca/1/gLlWhNg_Ef4mhXnbCNVGusLEzy8.roa
Signing time: Sun 31 Jul 2022 18:43:23 +0000
ROA not before: Sun 31 Jul 2022 18:43:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41957
IP address blocks: 146.19.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:55:91:ef:0d:0f:18:cc:03:ee:e6:cd:c6:72:d0:f6:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11187dc18bfa8b2a28aa49d10da6d54c08314644
Validity
Not Before: Jul 31 18:43:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80b95684d83f11fe268579db08d546bac2c4cf2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5c:66:3e:7f:1e:16:a2:f3:76:d8:48:45:f2:
38:28:21:ca:a7:45:ed:0a:46:7e:cd:d2:41:98:98:
60:69:60:bd:a0:62:7e:7f:b9:f3:80:64:f0:f6:d5:
1a:ed:64:43:f1:8d:96:f5:cf:c8:a4:d0:8c:3c:fd:
89:74:91:b0:cc:15:27:36:d7:f8:eb:63:83:35:51:
7a:8f:ed:be:46:60:ec:d0:d9:2f:74:8e:70:69:c2:
c1:ae:b6:e3:d7:02:80:19:77:55:64:3d:f9:e7:ad:
68:43:36:45:61:1b:6e:5b:18:73:d4:81:fa:a0:df:
ab:ea:75:22:e7:67:43:38:1d:87:07:cb:fe:95:75:
c8:dc:99:2e:cf:b7:e1:c5:cf:fa:84:5e:ab:a2:9e:
73:0d:a3:4c:08:e0:03:48:c2:58:e9:80:e3:13:1c:
0e:da:60:de:e1:ef:92:6c:d3:d2:b5:5c:14:cf:8f:
8b:ce:8e:83:79:51:15:e7:1d:22:65:02:1f:0e:09:
a3:58:c1:89:56:75:69:0a:8e:57:d7:d9:67:b7:01:
2a:30:9f:e2:eb:27:8a:eb:de:51:1e:e8:02:74:4f:
1b:c3:61:2e:86:00:12:7b:4b:16:31:80:53:ad:34:
13:2b:89:05:e8:53:81:39:9e:a8:e9:47:0b:b4:4f:
d5:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:B9:56:84:D8:3F:11:FE:26:85:79:DB:08:D5:46:BA:C2:C4:CF:2F
X509v3 Authority Key Identifier:
keyid:11:18:7D:C1:8B:FA:8B:2A:28:AA:49:D1:0D:A6:D5:4C:08:31:46:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ERh9wYv6iyooqknRDabVTAgxRkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/3bf367-0033-4b8a-af23-2064effff6ca/1/gLlWhNg_Ef4mhXnbCNVGusLEzy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/3bf367-0033-4b8a-af23-2064effff6ca/1/ERh9wYv6iyooqknRDabVTAgxRkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.180.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:04:7c:b8:0b:28:7a:1f:0c:e7:de:60:1f:58:62:64:66:d0:
21:31:ce:0f:87:d6:dd:f6:32:3a:de:c1:5a:5e:dc:4f:e6:82:
66:83:09:90:72:64:f1:d7:81:07:a6:e9:94:49:28:d5:64:c6:
8b:5c:86:22:aa:46:0a:10:71:23:fe:e0:6e:85:2e:b2:19:6c:
14:49:5c:7d:a4:4d:ba:52:1f:50:0b:1a:d2:42:9e:d2:4b:87:
27:34:d6:1f:c0:4a:37:27:8e:bd:25:5d:c4:d9:cc:2a:90:84:
e8:0c:be:f0:94:4b:5f:c9:92:f3:36:5a:49:9c:30:b3:0a:66:
c9:5a:db:f4:9e:3e:e8:a5:92:d4:c8:95:ea:ee:1c:38:6e:d7:
77:2e:f4:e5:0a:04:db:28:e3:b1:c3:fb:2e:e4:b6:f4:73:f4:
bc:8b:9f:8a:d3:d9:76:58:5e:aa:ac:9f:41:5e:fa:bf:14:40:
2f:6c:ee:94:5f:8c:7f:ab:8f:e9:5a:e0:86:a9:62:8f:6d:68:
36:17:bb:2b:ff:87:de:40:eb:18:0a:f9:b4:2c:89:b7:41:43:
8d:67:ca:d2:0f:78:bf:39:81:2b:b8:25:69:4c:50:f3:1c:fe:
68:ba:21:d5:c1:ab:3b:0d:ab:9b:67:ff:6b:a4:9a:0d:cf:99:
3b:83:d9:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:00 2023 by rpki-client on console-fra.rpki-client.org