Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/d3a6d3-30cc-4c21-9789-9671f88a77e2/1/ftjXS2M8EbkX4cab7qtrzDOQY9Q.roa
File: ftjXS2M8EbkX4cab7qtrzDOQY9Q.roa (raw, json)
Hash identifier: K5HEu+9XhPRsdfN4lt8fFd8HlIafxyNedt35l7AEmXI=
Subject key identifier: 7E:D8:D7:4B:63:3C:11:B9:17:E1:C6:9B:EE:AB:6B:CC:33:90:63:D4
Certificate issuer: /CN=327519fc8684d3a9442df69619142228279a4f57
Certificate serial: 77ACF2
Authority key identifier: 32:75:19:FC:86:84:D3:A9:44:2D:F6:96:19:14:22:28:27:9A:4F:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MnUZ_IaE06lELfaWGRQiKCeaT1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/d3a6d3-30cc-4c21-9789-9671f88a77e2/1/ftjXS2M8EbkX4cab7qtrzDOQY9Q.roa
Signing time: Sat 01 Jan 2022 00:58:02 +0000
ROA not before: Sat 01 Jan 2022 00:58:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 146.19.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7843058 (0x77acf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=327519fc8684d3a9442df69619142228279a4f57
Validity
Not Before: Jan 1 00:58:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ed8d74b633c11b917e1c69beeab6bcc339063d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:7e:d4:d5:05:cb:1a:8b:25:46:36:da:47:3a:
b4:a3:e0:bd:9e:8d:f0:16:3e:e9:cf:42:05:e6:f3:
1a:fd:03:58:d8:1d:ec:07:ce:87:2e:e8:3a:5b:6e:
9f:66:d8:01:b0:54:74:7c:07:c6:04:3d:93:51:47:
18:47:c0:d2:3e:fe:32:62:18:bd:8d:b0:6a:13:4f:
90:73:b0:99:ef:7b:da:0d:5e:a1:b2:7e:b5:a4:af:
3e:51:72:86:d8:89:ae:f7:97:57:ac:36:71:15:d4:
f4:4d:61:45:8f:e8:07:f8:b5:c3:78:64:4d:7c:72:
3e:47:d3:89:a4:1b:ef:93:60:b9:cd:2a:e4:fc:ec:
85:32:e7:02:b9:7a:59:3a:27:a6:20:e6:e3:46:25:
a2:e8:ca:f5:62:cc:e0:34:a0:b0:74:cf:2d:04:86:
17:0e:22:42:f5:c4:00:02:31:6d:cf:d2:88:af:a8:
5d:47:d2:4a:40:84:f6:09:99:af:45:9d:d4:c9:fb:
0e:2a:5a:c0:bd:4e:2e:85:10:44:af:cb:02:1f:d9:
c8:7d:4c:de:99:27:e3:9a:86:c6:48:83:61:4b:40:
9a:a1:a1:0c:a8:2a:9a:55:df:e1:f9:3c:d0:99:00:
f7:16:a1:44:f5:d9:e9:65:95:a5:53:4e:6f:62:93:
a6:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:D8:D7:4B:63:3C:11:B9:17:E1:C6:9B:EE:AB:6B:CC:33:90:63:D4
X509v3 Authority Key Identifier:
keyid:32:75:19:FC:86:84:D3:A9:44:2D:F6:96:19:14:22:28:27:9A:4F:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MnUZ_IaE06lELfaWGRQiKCeaT1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/d3a6d3-30cc-4c21-9789-9671f88a77e2/1/ftjXS2M8EbkX4cab7qtrzDOQY9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/d3a6d3-30cc-4c21-9789-9671f88a77e2/1/MnUZ_IaE06lELfaWGRQiKCeaT1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.93.0/24
Signature Algorithm: sha256WithRSAEncryption
70:8f:d6:db:87:11:54:78:b3:be:b0:af:89:ca:e7:48:99:3c:
98:a9:85:91:47:ea:3c:63:0c:da:97:3f:c6:ed:06:c9:f7:e5:
7d:92:50:6e:79:ac:c9:f2:4f:48:88:77:0d:59:a5:6c:86:45:
43:e9:f4:94:79:c7:bb:4f:81:1d:50:3e:b5:44:90:ac:6e:d9:
2a:7f:65:12:35:82:32:95:3a:15:20:35:56:49:16:a8:76:9c:
37:0b:6b:b4:3e:67:3e:39:83:df:2c:83:b9:6d:e9:35:e3:82:
df:d8:88:8e:35:7a:0d:da:a4:95:c2:fe:44:f3:1e:76:1d:bd:
25:b6:a9:9c:b9:20:27:7b:00:71:ed:3d:98:07:a5:90:61:8d:
f3:65:bc:4c:f0:67:28:33:57:89:7a:53:1f:ed:81:44:62:32:
55:11:64:4f:05:d2:47:88:ab:de:fa:8a:a3:bf:99:12:fa:a4:
12:06:af:76:fb:9b:f2:b3:d2:6f:15:53:59:49:4b:20:32:a0:
76:1d:11:26:23:0f:92:6d:d0:be:76:b3:b7:d6:b7:0c:d8:e0:
27:9c:cd:5c:5c:08:58:5e:2d:45:9e:fe:23:f1:aa:9c:60:40:
74:b3:d7:6a:52:49:b1:b6:cb:c3:e6:f1:c1:82:8f:2c:e9:bc:
e0:aa:2b:54
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDd6zyMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDMy
NzUxOWZjODY4NGQzYTk0NDJkZjY5NjE5MTQyMjI4Mjc5YTRmNTcwHhcNMjIwMTAx
MDA1ODAyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg3ZWQ4ZDc0YjYzM2Mx
MWI5MTdlMWM2OWJlZWFiNmJjYzMzOTA2M2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAhn7U1QXLGoslRjbaRzq0o+C9no3wFj7pz0IF5vMa/QNY2B3s
B86HLug6W26fZtgBsFR0fAfGBD2TUUcYR8DSPv4yYhi9jbBqE0+Qc7CZ73vaDV6h
sn61pK8+UXKG2Imu95dXrDZxFdT0TWFFj+gH+LXDeGRNfHI+R9OJpBvvk2C5zSrk
/OyFMucCuXpZOiemIObjRiWi6Mr1YszgNKCwdM8tBIYXDiJC9cQAAjFtz9KIr6hd
R9JKQIT2CZmvRZ3UyfsOKlrAvU4uhRBEr8sCH9nIfUzemSfjmobGSINhS0CaoaEM
qCqaVd/h+TzQmQD3FqFE9dnpZZWlU05vYpOmJQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFH7Y10tjPBG5F+HGm+6ra8wzkGPUMB8GA1UdIwQYMBaAFDJ1GfyGhNOpRC32
lhkUIignmk9XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
TW5VWl9JYUUwNmxFTGZhV0dSUWlLQ2VhVDFjLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC85MC9kM2E2ZDMtMzBjYy00YzIxLTk3ODktOTY3MWY4OGE3N2UyLzEv
ZnRqWFMyTThFYmtYNGNhYjdxdHJ6RE9RWTlRLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC9k
M2E2ZDMtMzBjYy00YzIxLTk3ODktOTY3MWY4OGE3N2UyLzEvTW5VWl9JYUUwNmxF
TGZhV0dSUWlLQ2VhVDFjLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkhNdMA0GCSqGSIb3DQEBCwUAA4IB
AQBwj9bbhxFUeLO+sK+JyudImTyYqYWRR+o8Ywzalz/G7QbJ9+V9klBueazJ8k9I
iHcNWaVshkVD6fSUece7T4EdUD61RJCsbtkqf2USNYIylToVIDVWSRaodpw3C2u0
Pmc+OYPfLIO5bek144Lf2IiONXoN2qSVwv5E8x52Hb0ltqmcuSAnewBx7T2YB6WQ
YY3zZbxM8GcoM1eJelMf7YFEYjJVEWRPBdJHiKve+oqjv5kS+qQSBq92+5vys9Jv
FVNZSUsgMqB2HREmIw+SbdC+drO31rcM2OAnnM1cXAhYXi1Fnv4j8aqcYEB0s9dq
UkmxtsvD5vHBgo8s6bzgqitU
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:15 2023 by rpki-client on console-ams.rpki-client.org