Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/71265f-0a53-4106-b20a-f3b50c65f820/1/UFOmsYdMYdZExxef5CHlV1M0Zl8.roa
File: UFOmsYdMYdZExxef5CHlV1M0Zl8.roa (raw, json)
Hash identifier: g6fqqqMTAy0RRSeBtGHQ69b/2odBpzvsSQMNBe+zFXk=
Subject key identifier: 50:53:A6:B1:87:4C:61:D6:44:C7:17:9F:E4:21:E5:57:53:34:66:5F
Certificate issuer: /CN=764c8eb03ef2326a620df100548d1f06d874551a
Certificate serial: 689825
Authority key identifier: 76:4C:8E:B0:3E:F2:32:6A:62:0D:F1:00:54:8D:1F:06:D8:74:55:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dkyOsD7yMmpiDfEAVI0fBth0VRo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/71265f-0a53-4106-b20a-f3b50c65f820/1/UFOmsYdMYdZExxef5CHlV1M0Zl8.roa
Signing time: Thu 06 Jan 2022 08:25:16 +0000
ROA not before: Thu 06 Jan 2022 08:25:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210432
IP address blocks: 146.19.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6854693 (0x689825)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764c8eb03ef2326a620df100548d1f06d874551a
Validity
Not Before: Jan 6 08:25:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5053a6b1874c61d644c7179fe421e5575334665f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:59:d6:64:cd:a4:b2:9b:3d:0f:eb:fb:65:50:
85:70:09:63:87:60:29:f9:95:03:64:06:a5:49:67:
32:34:3f:c4:97:f4:6b:ff:01:a3:42:29:9d:16:f5:
70:77:d8:93:cb:cf:bf:af:27:19:da:10:d7:ab:8b:
66:ba:c3:5e:b1:b0:98:bc:20:1a:ff:e1:79:d8:b0:
3b:91:a7:ff:56:50:db:29:17:53:7d:86:16:f7:34:
b9:ab:25:34:12:87:57:a6:52:e8:ec:d6:0e:0c:68:
95:e7:7a:9b:06:76:77:8d:a9:09:b9:33:02:0e:5a:
4e:d9:ad:64:e6:96:9c:ca:d6:06:17:4a:d1:21:4e:
76:3a:4b:8b:9e:18:c8:f3:10:5a:1c:96:06:f1:40:
be:fe:40:81:3b:f5:8e:d9:1f:97:1a:b6:95:04:8b:
43:2a:ea:cd:98:c6:b7:49:63:56:96:05:cb:0c:7c:
c1:22:f9:b3:32:7c:e2:f5:d7:9c:c3:66:d9:07:5d:
66:db:92:31:03:e6:ef:03:22:0c:5c:05:05:43:7c:
70:a1:ae:ac:d7:4b:04:10:6b:66:75:d3:6b:72:95:
0a:0c:3a:3c:a1:36:84:74:7a:db:f3:a5:a1:7b:88:
15:bc:5d:a2:3d:db:78:7c:b3:73:aa:61:d5:33:65:
3d:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:53:A6:B1:87:4C:61:D6:44:C7:17:9F:E4:21:E5:57:53:34:66:5F
X509v3 Authority Key Identifier:
keyid:76:4C:8E:B0:3E:F2:32:6A:62:0D:F1:00:54:8D:1F:06:D8:74:55:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dkyOsD7yMmpiDfEAVI0fBth0VRo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/71265f-0a53-4106-b20a-f3b50c65f820/1/UFOmsYdMYdZExxef5CHlV1M0Zl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/71265f-0a53-4106-b20a-f3b50c65f820/1/dkyOsD7yMmpiDfEAVI0fBth0VRo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.239.0/24
Signature Algorithm: sha256WithRSAEncryption
31:95:20:17:4f:41:f5:5d:da:92:cc:f0:7e:c9:d7:ac:62:2f:
cc:be:d5:f0:05:1f:14:fe:67:aa:f4:42:63:df:e6:5f:25:db:
f9:b7:e0:48:de:72:cd:83:42:23:21:85:a5:c2:7a:af:04:85:
ff:b5:5f:19:49:93:bb:b9:1c:ea:55:2e:85:74:65:d4:be:43:
5a:52:46:2f:03:ec:e3:17:51:31:74:3d:be:e1:72:45:b9:51:
5f:c0:38:d0:76:04:65:6c:ef:91:54:8f:f6:25:d1:44:5d:16:
e0:46:19:d4:1b:e0:17:95:6c:47:85:9d:da:01:4d:34:82:b5:
cb:3b:c5:45:ac:89:f6:f9:a1:d4:ac:bc:68:8b:ec:fd:8b:a7:
a6:48:1d:a3:45:12:4d:6f:cb:44:04:1f:9e:9b:bb:00:58:4b:
6b:96:4a:72:f3:07:83:d5:77:b4:0b:1f:0a:01:01:2e:ff:20:
49:10:28:d6:f3:44:b5:19:47:a1:4b:21:ba:42:01:26:fd:74:
39:fd:dd:a8:cf:0e:2b:d5:3d:ac:69:23:b5:c2:2c:5b:dc:aa:
a8:f8:3b:0e:c7:59:a7:b0:42:30:93:2d:f8:f8:dc:cf:0a:25:
8f:c2:49:32:72:b5:3d:21:25:65:7b:dd:6b:71:a8:d0:12:4b:
59:af:fd:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:58 2024 by rpki-client on console-ams.rpki-client.org