Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/d3a6d3-30cc-4c21-9789-9671f88a77e2/1/bOkerTXZSRIq0DL2672JwSd_NH8.roa
File: bOkerTXZSRIq0DL2672JwSd_NH8.roa (raw, json)
Hash identifier: 4DGwciH+reTLUxx9a8CDY1oJrv2NO9wBtARbU8QMNRk=
Subject key identifier: 6C:E9:1E:AD:35:D9:49:12:2A:D0:32:F6:EB:BD:89:C1:27:7F:34:7F
Certificate issuer: /CN=327519fc8684d3a9442df69619142228279a4f57
Certificate serial: A50CA5
Authority key identifier: 32:75:19:FC:86:84:D3:A9:44:2D:F6:96:19:14:22:28:27:9A:4F:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MnUZ_IaE06lELfaWGRQiKCeaT1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/d3a6d3-30cc-4c21-9789-9671f88a77e2/1/bOkerTXZSRIq0DL2672JwSd_NH8.roa
Signing time: Thu 20 Jan 2022 14:59:42 +0000
ROA not before: Thu 20 Jan 2022 14:59:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15924
IP address blocks: 146.19.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10816677 (0xa50ca5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=327519fc8684d3a9442df69619142228279a4f57
Validity
Not Before: Jan 20 14:59:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ce91ead35d949122ad032f6ebbd89c1277f347f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a6:cc:fd:fb:f9:b5:46:7f:14:dd:30:ac:ec:
3e:7f:28:1e:f6:76:e8:78:dd:09:a5:9d:61:92:f7:
7e:19:de:b4:5b:cf:06:a2:79:5c:2d:43:91:e6:15:
ac:ca:f7:d1:cb:28:f8:16:09:f5:0a:1c:fa:2b:58:
a8:f9:3e:e5:a8:79:7d:4a:51:55:76:55:00:98:11:
bc:6e:eb:81:21:eb:c5:c4:82:0a:f0:50:cb:9a:83:
ff:f4:b0:fc:e9:5a:74:15:7c:62:fa:2f:8f:94:9e:
bb:f1:14:db:e9:74:24:45:4c:7f:e0:15:e5:40:86:
77:aa:de:72:7b:52:29:ba:2e:98:c6:85:d0:aa:a9:
0c:39:64:a0:ea:56:1b:df:5a:36:d9:c0:e9:d4:cc:
28:88:51:3c:60:25:7a:91:25:15:a7:b9:25:2a:4e:
0c:03:37:0a:17:a4:90:7b:fb:9f:c9:a9:b6:9d:25:
db:5b:30:c5:f9:7f:a2:f9:56:e0:94:86:d8:a9:ad:
af:63:3e:3d:90:95:0a:ed:51:26:0e:30:34:c6:3d:
97:54:b7:ba:0e:22:9c:f3:cf:02:c2:30:6c:ba:05:
86:ee:d1:39:cc:1a:c8:3e:ad:c4:d3:13:1d:dc:d2:
a3:15:16:d1:21:c6:df:d1:77:d9:18:52:cb:d5:81:
cc:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:E9:1E:AD:35:D9:49:12:2A:D0:32:F6:EB:BD:89:C1:27:7F:34:7F
X509v3 Authority Key Identifier:
keyid:32:75:19:FC:86:84:D3:A9:44:2D:F6:96:19:14:22:28:27:9A:4F:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MnUZ_IaE06lELfaWGRQiKCeaT1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/d3a6d3-30cc-4c21-9789-9671f88a77e2/1/bOkerTXZSRIq0DL2672JwSd_NH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/d3a6d3-30cc-4c21-9789-9671f88a77e2/1/MnUZ_IaE06lELfaWGRQiKCeaT1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.93.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:f0:b3:23:47:8a:68:47:e1:65:c6:54:81:7b:0e:53:e5:77:
20:a6:24:a2:71:53:c4:7d:fb:a1:d3:dc:6f:41:f2:c0:b9:6b:
62:9b:4f:09:bc:1b:fa:bb:06:91:65:48:88:bf:cb:98:f4:3b:
75:f0:e9:d1:bc:60:9e:19:2c:28:cc:77:6a:ce:60:94:39:1c:
9a:4c:8f:ae:19:86:ba:8e:7a:98:12:71:39:90:a6:7d:90:17:
5c:76:1c:b1:91:77:32:9b:a7:08:1c:60:99:8e:3a:09:5f:7f:
dd:82:2d:1c:54:27:6e:65:d4:c3:a4:b3:4c:24:f1:06:da:1d:
ab:ac:e6:75:da:20:36:2a:a9:31:9e:d8:af:4a:a4:51:2c:52:
b2:a1:eb:4b:e8:47:7c:8e:f5:db:69:1c:80:8f:05:8c:df:61:
de:ec:db:16:d0:9c:59:43:a4:70:81:f3:bb:c1:00:53:57:3d:
04:2a:9f:59:dd:55:fb:f9:bb:eb:d1:31:bf:67:39:6b:b9:fd:
87:04:d4:1b:85:e1:f4:a4:a2:78:9e:73:71:a7:a7:0f:a0:63:
d7:d5:33:13:2f:b7:97:db:ad:65:4c:d2:3b:0d:2c:37:cc:26:
1e:70:a4:63:21:fb:7e:b5:77:7a:bc:18:e2:a8:0b:bd:ca:9b:
2f:d5:b7:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:26 2023 by rpki-client on console-fra.rpki-client.org