Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/d3a6d3-30cc-4c21-9789-9671f88a77e2/1/Eiqf0ubV3ZzUMlBF1-vgBj1zf-s.roa
File: Eiqf0ubV3ZzUMlBF1-vgBj1zf-s.roa (raw, json)
Hash identifier: QzTZKTl1d0L8FmKAEa01hwu2yfpvzA7iKrU7fMJ1K7I=
Subject key identifier: 12:2A:9F:D2:E6:D5:DD:9C:D4:32:50:45:D7:EB:E0:06:3D:73:7F:EB
Certificate issuer: /CN=327519fc8684d3a9442df69619142228279a4f57
Certificate serial: 01731F9E
Authority key identifier: 32:75:19:FC:86:84:D3:A9:44:2D:F6:96:19:14:22:28:27:9A:4F:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MnUZ_IaE06lELfaWGRQiKCeaT1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/d3a6d3-30cc-4c21-9789-9671f88a77e2/1/Eiqf0ubV3ZzUMlBF1-vgBj1zf-s.roa
Signing time: Wed 20 Apr 2022 05:01:52 +0000
ROA not before: Wed 20 Apr 2022 05:01:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 146.19.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24321950 (0x1731f9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=327519fc8684d3a9442df69619142228279a4f57
Validity
Not Before: Apr 20 05:01:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=122a9fd2e6d5dd9cd4325045d7ebe0063d737feb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c0:56:e8:70:93:f1:ce:a3:5a:63:0d:54:b3:
12:25:f1:4b:81:a6:81:68:21:16:b9:9c:a9:29:86:
6e:e9:11:cb:11:30:27:24:24:1d:56:a7:5e:5f:fb:
83:a7:b6:10:36:1b:62:f9:e5:1d:0a:42:b6:9c:c0:
a6:e8:e0:13:cd:97:70:2b:ff:84:f5:48:71:c3:91:
64:02:68:33:5d:f8:e3:30:3b:79:31:a7:1e:ee:e8:
03:51:15:a0:5d:25:db:b4:ee:1d:fb:9f:80:cc:be:
5c:11:9c:44:80:0f:59:6c:ce:26:71:df:e4:be:46:
fa:60:93:3e:f1:a8:b3:41:8f:c4:87:4a:42:6c:c7:
5a:23:f8:47:81:91:b1:31:cf:8b:d7:28:01:d8:cf:
57:7e:b1:31:c6:e1:6a:e2:23:9d:05:ea:9f:4c:0e:
a0:83:9d:1c:ba:da:97:3b:81:84:00:06:77:49:93:
5d:a8:b1:28:2c:78:99:93:db:4e:29:c9:26:bf:2c:
46:54:ac:5f:22:27:14:4e:73:fb:ad:84:6d:36:2a:
95:53:7c:34:3e:d8:81:1c:b1:71:c2:65:93:ae:2c:
bf:fd:a4:a4:30:8b:72:c6:55:7e:97:b8:0b:5b:07:
07:f6:d5:d8:aa:28:ec:c9:df:f5:90:de:65:f0:58:
3b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:2A:9F:D2:E6:D5:DD:9C:D4:32:50:45:D7:EB:E0:06:3D:73:7F:EB
X509v3 Authority Key Identifier:
keyid:32:75:19:FC:86:84:D3:A9:44:2D:F6:96:19:14:22:28:27:9A:4F:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MnUZ_IaE06lELfaWGRQiKCeaT1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/d3a6d3-30cc-4c21-9789-9671f88a77e2/1/Eiqf0ubV3ZzUMlBF1-vgBj1zf-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/d3a6d3-30cc-4c21-9789-9671f88a77e2/1/MnUZ_IaE06lELfaWGRQiKCeaT1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.93.0/24
Signature Algorithm: sha256WithRSAEncryption
55:e4:c7:58:1f:78:d0:f3:bb:47:6f:23:60:ce:e9:e3:38:2d:
54:d3:43:ea:46:65:da:55:96:32:21:5e:1d:71:e8:a2:a0:64:
2e:5d:21:d0:1e:ab:cf:14:42:04:a6:01:f5:e6:5b:ac:03:c4:
d2:c9:72:2f:29:af:a7:75:b4:b1:1f:76:82:58:27:bd:ef:e4:
bd:e7:ab:34:92:d0:51:f4:87:43:64:2e:47:a6:6b:f8:af:55:
c6:6b:f0:9b:bc:0a:7d:76:e9:4c:ae:22:23:95:bd:a7:08:50:
69:47:bc:4b:f2:3d:ba:95:93:b2:c2:c3:57:fe:3b:d8:98:23:
04:18:f9:5d:e0:6a:77:7e:40:c1:f5:3b:ef:09:a0:40:03:8d:
ec:89:64:79:74:f6:e8:5b:e6:d7:a9:cd:30:d9:0e:ef:80:c9:
b7:6d:1e:28:b0:ac:c4:1c:26:1a:bb:a8:df:ed:dc:56:e2:49:
24:7e:fe:4c:67:b6:8e:54:96:00:91:aa:79:2a:f6:49:ea:3c:
98:95:5d:b3:1d:0e:b3:68:45:3e:21:9c:bf:1f:f2:0b:71:80:
34:0d:62:31:5b:93:46:18:1d:13:cd:d5:99:d7:34:b5:7e:83:
1d:71:21:3e:9a:b6:1a:85:b2:63:61:71:c0:c8:d5:db:9e:df:
48:96:29:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:15 2023 by rpki-client on console-ams.rpki-client.org