Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/b0b452-cfb8-47f4-9549-03e001a7f604/1/PJkLTUmVVzNin3Gm5vjDMUqaKqg.roa
File: PJkLTUmVVzNin3Gm5vjDMUqaKqg.roa (raw, json)
Hash identifier: d81eVxQjKNfPuqxOi40Oa4gOY8qo8wJ9vH8ADo7zxjM=
Subject key identifier: 3C:99:0B:4D:49:95:57:33:62:9F:71:A6:E6:F8:C3:31:4A:9A:2A:A8
Certificate issuer: /CN=14c0be084bfa0c8e701e9c3d42c187c7ba6a40ed
Certificate serial: 74EE0A
Authority key identifier: 14:C0:BE:08:4B:FA:0C:8E:70:1E:9C:3D:42:C1:87:C7:BA:6A:40:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FMC-CEv6DI5wHpw9QsGHx7pqQO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/b0b452-cfb8-47f4-9549-03e001a7f604/1/PJkLTUmVVzNin3Gm5vjDMUqaKqg.roa
Signing time: Sat 01 Jan 2022 01:52:14 +0000
ROA not before: Sat 01 Jan 2022 01:52:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 146.19.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7663114 (0x74ee0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14c0be084bfa0c8e701e9c3d42c187c7ba6a40ed
Validity
Not Before: Jan 1 01:52:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c990b4d49955733629f71a6e6f8c3314a9a2aa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6e:ef:93:69:f4:b7:68:a3:28:91:6e:42:f5:
1e:cf:ab:90:ea:9c:f0:d2:97:9f:f4:74:f4:6d:b6:
7b:62:4c:8b:52:cd:0b:0a:f4:b7:aa:35:1e:b3:f0:
32:93:1c:0f:38:41:5c:d8:fc:8f:55:65:04:9f:a9:
ad:ad:67:70:a7:41:92:0c:2f:3d:b8:b7:39:42:b5:
47:63:a6:cf:e3:7e:33:6d:d6:99:77:cc:26:84:17:
11:22:44:0a:e5:98:28:35:b6:3e:cf:dc:77:e9:00:
30:df:59:fc:75:e3:7f:87:a3:4b:dd:ca:8f:56:c9:
7f:48:80:ff:e7:a8:a2:07:ae:8d:3c:ec:66:63:31:
08:13:77:cc:65:b2:6b:91:ff:49:97:fd:4e:78:90:
9a:9f:54:dc:c9:15:bd:bd:81:a1:cb:80:ea:43:f4:
99:d1:6e:f9:1c:11:41:18:d4:ee:1f:13:e4:6b:f3:
6b:02:ea:2f:5a:61:3b:4a:ed:f5:c2:e1:ef:54:37:
45:72:11:b1:26:30:5b:d5:64:0f:ae:8a:15:9e:a4:
c2:4a:0c:ae:98:db:f6:64:c2:9c:5b:7f:1f:14:72:
65:dc:b0:e0:3c:b0:c2:a9:90:f4:af:ad:aa:02:85:
fc:d2:e6:0a:12:8b:40:fd:85:ee:5c:aa:2e:42:a6:
b8:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:99:0B:4D:49:95:57:33:62:9F:71:A6:E6:F8:C3:31:4A:9A:2A:A8
X509v3 Authority Key Identifier:
keyid:14:C0:BE:08:4B:FA:0C:8E:70:1E:9C:3D:42:C1:87:C7:BA:6A:40:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FMC-CEv6DI5wHpw9QsGHx7pqQO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/b0b452-cfb8-47f4-9549-03e001a7f604/1/PJkLTUmVVzNin3Gm5vjDMUqaKqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/b0b452-cfb8-47f4-9549-03e001a7f604/1/FMC-CEv6DI5wHpw9QsGHx7pqQO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.155.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:4e:a2:ce:5f:6a:6b:b5:39:38:bc:5f:93:9a:0f:1b:e9:ad:
37:e0:8f:a8:d1:36:a3:f4:91:b7:e1:a1:f5:f5:57:be:94:c3:
4a:61:27:bf:67:da:4f:eb:eb:79:fc:4d:ea:93:a5:d8:b3:05:
8a:91:38:a6:9c:e4:13:77:d0:01:88:d2:9b:91:1c:7a:61:10:
8e:60:13:fb:8e:6f:e5:f3:e5:41:54:35:11:87:9f:c9:9a:c9:
1c:bb:76:05:ae:d2:8e:a9:ea:b7:8b:a9:86:1c:33:84:0d:58:
53:60:da:ff:31:d8:5e:28:4b:bf:7c:76:2a:ce:bb:18:b1:62:
da:df:be:12:5f:2a:07:9e:5a:b5:7b:8a:18:65:06:6b:f3:61:
21:3e:4e:a6:96:1f:af:50:a2:b1:a7:e0:da:dd:91:64:38:8a:
46:28:14:d3:fe:e2:8f:1e:46:34:6b:10:9d:97:d8:08:a7:98:
a0:f5:12:70:8a:7e:90:ae:e9:30:09:9a:75:bc:28:33:71:2b:
86:f9:7a:35:f9:cb:dd:3b:33:da:22:d6:5d:5c:e0:65:39:71:
19:15:03:89:75:d1:de:d0:27:23:aa:ec:69:c5:d9:0a:90:66:
75:fa:7e:fa:ec:8b:9c:59:70:44:7e:4a:ed:66:69:42:d2:26:
7b:27:a6:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:39 2023 by rpki-client on console-ams.rpki-client.org