Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/3bf367-0033-4b8a-af23-2064effff6ca/1/ujPR5L9sq1VvrmucE94H_N6n1WU.roa
File: ujPR5L9sq1VvrmucE94H_N6n1WU.roa (raw, json)
Hash identifier: 1KsC+oVyrYSQwcVWBBn5gMiIjxdCAeg5jyeQOCA1Byk=
Subject key identifier: BA:33:D1:E4:BF:6C:AB:55:6F:AE:6B:9C:13:DE:07:FC:DE:A7:D5:65
Certificate issuer: /CN=11187dc18bfa8b2a28aa49d10da6d54c08314644
Certificate serial: 65D8EB
Authority key identifier: 11:18:7D:C1:8B:FA:8B:2A:28:AA:49:D1:0D:A6:D5:4C:08:31:46:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ERh9wYv6iyooqknRDabVTAgxRkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/3bf367-0033-4b8a-af23-2064effff6ca/1/ujPR5L9sq1VvrmucE94H_N6n1WU.roa
Signing time: Sat 01 Jan 2022 03:56:43 +0000
ROA not before: Sat 01 Jan 2022 03:56:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49612
IP address blocks: 146.19.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6674667 (0x65d8eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11187dc18bfa8b2a28aa49d10da6d54c08314644
Validity
Not Before: Jan 1 03:56:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba33d1e4bf6cab556fae6b9c13de07fcdea7d565
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:31:d6:52:e2:0a:7c:f0:cb:a2:6e:47:b3:64:
5e:b3:32:f6:0c:bd:b1:f3:87:f8:13:ca:71:e2:8e:
e0:6c:fd:35:10:0b:1e:c8:5d:6d:0c:e6:48:2e:f7:
18:30:0c:43:61:16:59:ae:d0:07:68:98:fc:6e:e4:
de:33:c4:9f:ab:1b:e1:00:66:62:e8:40:66:fc:a6:
9e:ea:f6:aa:60:af:e4:f0:f9:ba:7e:41:15:25:fc:
28:be:18:53:72:ca:8b:d1:67:6b:19:53:a1:56:e2:
84:fe:73:a8:38:e7:22:ad:c2:6d:d7:ee:20:e4:43:
b4:b6:a6:2b:18:e8:19:d4:cd:0a:96:4c:dc:fd:ec:
c9:31:13:49:7d:65:ac:a8:c8:28:92:7b:d8:35:02:
75:5a:fe:e5:bc:61:c3:f8:ac:0b:67:f1:3d:64:68:
e3:37:6e:49:43:5f:5f:18:bc:76:95:88:8f:8f:47:
55:de:29:c1:55:e6:72:d0:4e:1a:7f:1b:b4:9e:60:
af:49:46:fe:1c:14:26:5c:bc:f2:1b:91:9d:b1:7f:
04:d9:1f:bb:1c:6e:03:fc:8c:5f:c8:cc:9d:7f:bb:
b9:61:a8:f1:21:a6:83:24:ed:7d:96:ea:2d:d2:0b:
c6:45:72:33:8d:fe:c8:a1:03:4f:19:6b:4c:ee:07:
e7:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:33:D1:E4:BF:6C:AB:55:6F:AE:6B:9C:13:DE:07:FC:DE:A7:D5:65
X509v3 Authority Key Identifier:
keyid:11:18:7D:C1:8B:FA:8B:2A:28:AA:49:D1:0D:A6:D5:4C:08:31:46:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ERh9wYv6iyooqknRDabVTAgxRkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/3bf367-0033-4b8a-af23-2064effff6ca/1/ujPR5L9sq1VvrmucE94H_N6n1WU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/3bf367-0033-4b8a-af23-2064effff6ca/1/ERh9wYv6iyooqknRDabVTAgxRkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.180.0/24
Signature Algorithm: sha256WithRSAEncryption
51:d8:f2:90:f0:64:8a:cf:2a:2c:43:ae:4c:7e:23:ce:c1:12:
93:a1:df:14:49:98:28:c0:83:79:02:95:23:a3:19:13:04:8e:
96:e9:e2:68:a4:1b:81:27:fa:f2:81:86:51:03:7c:89:14:3d:
f9:c8:6d:8e:67:31:f1:80:32:6a:22:92:7d:d4:e4:78:27:82:
9e:d8:cc:77:66:b5:54:68:55:2b:44:de:a4:25:20:f4:3a:f4:
d8:dd:11:ba:88:36:c0:a7:72:b3:c8:9f:29:8e:41:71:e9:bd:
14:91:01:7b:37:02:47:ff:31:49:11:8e:19:bc:b0:58:24:90:
71:a1:7d:fb:02:4d:b3:cb:8d:1b:c6:3e:7d:56:55:ad:52:09:
85:4f:1e:ca:73:1d:22:20:c1:d5:a4:a7:4b:80:b3:4b:2f:fa:
59:b2:53:ad:19:e7:b5:30:c0:35:2c:8b:71:57:ed:70:7b:66:
af:ba:5b:b1:07:5e:07:fe:44:f4:6c:24:47:62:82:bf:85:6e:
bc:3f:e0:c4:3d:49:82:63:59:4e:08:99:21:41:71:a7:c1:6b:
90:8b:5f:9a:59:91:a7:c4:da:91:f2:27:cd:db:7f:37:57:9d:
22:c5:ca:da:70:45:25:aa:0c:20:8c:7b:2e:5d:d5:1f:c0:6e:
64:ba:a1:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:37 2023 by rpki-client on console-ams.rpki-client.org