Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/hX3p7owqAAKfZILowYa4qyBh7I0.roa
File: hX3p7owqAAKfZILowYa4qyBh7I0.roa (raw, json)
Hash identifier: ovZPCBu0sA9TbYQG0XW50HbD304oeqr//AFi5UTY0uE=
Subject key identifier: 85:7D:E9:EE:8C:2A:00:02:9F:64:82:E8:C1:86:B8:AB:20:61:EC:8D
Certificate issuer: /CN=3ec63e5db0435c2d3e74a6b28ad3d9c30d6a8cee
Certificate serial: 0181E4425D07CD4AD7CBF2628060F46CDFAC
Authority key identifier: 3E:C6:3E:5D:B0:43:5C:2D:3E:74:A6:B2:8A:D3:D9:C3:0D:6A:8C:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PsY-XbBDXC0-dKayitPZww1qjO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/hX3p7owqAAKfZILowYa4qyBh7I0.roa
Signing time: Sat 09 Jul 2022 18:39:23 +0000
ROA not before: Sat 09 Jul 2022 18:39:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20253
IP address blocks: 146.19.181.0/24 maxlen: 26
2a12:45c7:ffff::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:e4:42:5d:07:cd:4a:d7:cb:f2:62:80:60:f4:6c:df:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ec63e5db0435c2d3e74a6b28ad3d9c30d6a8cee
Validity
Not Before: Jul 9 18:39:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=857de9ee8c2a00029f6482e8c186b8ab2061ec8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:f5:3b:73:3d:b6:45:9b:37:17:55:8c:f5:65:
6e:4d:02:db:80:72:d5:88:a7:a3:c4:47:5d:7d:b8:
3b:1a:d8:8f:f4:b9:2b:31:63:d4:e9:c5:2f:e3:d7:
79:f0:f3:e9:ff:54:39:57:c8:3d:8b:64:64:49:b4:
8b:59:db:80:fc:0d:cc:53:b0:a8:02:69:40:5f:39:
0c:8d:10:49:3b:b2:a4:bd:a3:34:e6:6a:63:ca:f1:
a4:d0:50:e0:48:f6:f9:b0:d8:37:75:b9:7a:ed:88:
5c:b4:27:55:85:f9:e1:80:0e:dd:0c:3b:21:c2:f7:
94:0e:b9:e6:14:00:e1:9b:c8:d9:ee:d2:1e:6e:29:
a1:58:b8:1a:27:22:39:75:f7:51:00:4b:89:b4:06:
e0:84:1e:3d:0a:1b:6f:52:cd:10:2f:dc:6b:13:0c:
31:b1:8d:0e:b4:75:92:a3:d5:ea:e5:ac:6b:8e:84:
2f:f0:49:76:68:6b:ab:1c:17:69:ea:0d:0f:3d:62:
29:b4:70:19:ee:6a:9c:8d:f1:8b:95:62:cb:db:59:
e5:bf:eb:63:09:d8:bd:20:45:ee:b7:83:1f:6a:73:
cd:ad:8e:fe:e6:66:91:9f:6a:3c:d0:0c:8a:52:5d:
ec:39:73:26:a0:eb:27:7c:77:aa:8c:0d:8d:b3:c7:
d5:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:7D:E9:EE:8C:2A:00:02:9F:64:82:E8:C1:86:B8:AB:20:61:EC:8D
X509v3 Authority Key Identifier:
keyid:3E:C6:3E:5D:B0:43:5C:2D:3E:74:A6:B2:8A:D3:D9:C3:0D:6A:8C:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PsY-XbBDXC0-dKayitPZww1qjO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/hX3p7owqAAKfZILowYa4qyBh7I0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.181.0/24
IPv6:
2a12:45c7:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
26:0f:f0:90:04:ed:d9:aa:63:4c:72:e2:a3:c4:91:22:1b:32:
50:26:58:5f:16:c8:12:8f:5e:92:61:08:36:fe:48:79:3d:0a:
33:0d:f4:34:ae:19:68:92:e5:1d:79:56:4a:64:83:52:58:9b:
9d:03:e7:92:42:1d:33:f3:41:e5:4d:fe:0b:97:ea:b4:b5:ee:
19:40:7f:de:4f:cb:0e:25:6a:18:1f:48:af:bf:35:fb:5e:d6:
e9:4c:04:12:70:e1:7d:2e:1a:0e:7d:a3:19:a0:4a:b5:5d:72:
0e:87:3d:27:35:0d:0b:f2:f1:e2:f3:1d:58:3e:09:66:55:b3:
ee:e7:75:60:21:39:3a:0e:44:5b:8d:7d:02:21:ee:f7:81:ce:
60:4e:b0:8c:e3:60:ee:21:70:cc:02:62:09:7b:be:70:c8:aa:
e7:f5:09:d6:e1:e7:32:c9:9c:a8:94:2a:27:7e:68:24:0c:dd:
c9:68:5d:b5:2e:86:b4:40:86:5e:ea:46:5f:fb:57:ee:37:55:
de:88:93:6e:c5:2d:f7:23:15:91:07:45:4a:04:bd:0f:62:8d:
8c:c3:75:4f:10:13:8a:b0:66:80:b4:4a:d8:89:5e:d4:ce:b0:
fc:5c:1e:32:ba:47:56:c9:7f:af:b8:a4:0a:63:2c:a8:c5:24:
68:15:ae:0e
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYHkQl0HzUrXy/JigGD0bN+sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlYzYzZTVkYjA0MzVjMmQzZTc0YTZiMjhhZDNkOWMzMGQ2
YThjZWUwHhcNMjIwNzA5MTgzOTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NTdkZTllZThjMmEwMDAyOWY2NDgyZThjMTg2YjhhYjIwNjFlYzhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1PU7cz22RZs3F1WM9WVuTQLbgHLV
iKejxEddfbg7GtiP9LkrMWPU6cUv49d58PPp/1Q5V8g9i2RkSbSLWduA/A3MU7Co
AmlAXzkMjRBJO7KkvaM05mpjyvGk0FDgSPb5sNg3dbl67YhctCdVhfnhgA7dDDsh
wveUDrnmFADhm8jZ7tIebimhWLgaJyI5dfdRAEuJtAbghB49ChtvUs0QL9xrEwwx
sY0OtHWSo9Xq5axrjoQv8El2aGurHBdp6g0PPWIptHAZ7mqcjfGLlWLL21nlv+tj
Cdi9IEXut4MfanPNrY7+5maRn2o80AyKUl3sOXMmoOsnfHeqjA2Ns8fVCwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFIV96e6MKgACn2SC6MGGuKsgYeyNMB8GA1UdIwQY
MBaAFD7GPl2wQ1wtPnSmsorT2cMNaozuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUHNZLVhiQkRYQzAtZEtheWl0UFp3dzFxak80LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS80NmQ5NDMtOGNiZC00MWEyLWI5ZjIt
NTIwNThmOGE5YTFhLzEvaFgzcDdvd3FBQUtmWklMb3dZYTRxeUJoN0kwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS80NmQ5NDMtOGNiZC00MWEyLWI5ZjItNTIwNThmOGE5YTFh
LzEvUHNZLVhiQkRYQzAtZEtheWl0UFp3dzFxak80LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAkhO1MA8E
AgACMAkDBwAqEkXH//8wDQYJKoZIhvcNAQELBQADggEBACYP8JAE7dmqY0xy4qPE
kSIbMlAmWF8WyBKPXpJhCDb+SHk9CjMN9DSuGWiS5R15Vkpkg1JYm50D55JCHTPz
QeVN/guX6rS17hlAf95Pyw4lahgfSK+/Nfte1ulMBBJw4X0uGg59oxmgSrVdcg6H
PSc1DQvy8eLzHVg+CWZVs+7ndWAhOToORFuNfQIh7veBzmBOsIzjYO4hcMwCYgl7
vnDIquf1Cdbh5zLJnKiUKid+aCQM3cloXbUuhrRAhl7qRl/7V+43Vd6Ik27FLfcj
FZEHRUoEvQ9ijYzDdU8QE4qwZoC0StiJXtTOsPxcHjK6R1bJf6+4pApjLKjFJGgV
rg4=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:16 2023 by rpki-client on console-ams.rpki-client.org