Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/7de221-e3be-456d-91f4-b14b7cf70d2f/1/SmzMnmotGXJidXKKCYbNPMkM4vQ.roa
File: SmzMnmotGXJidXKKCYbNPMkM4vQ.roa (raw, json)
Hash identifier: 3iGQcgoDRRUR/TdS8ivGBJMiQdc5UoSNTrRYFV8rnLo=
Subject key identifier: 4A:6C:CC:9E:6A:2D:19:72:62:75:72:8A:09:86:CD:3C:C9:0C:E2:F4
Certificate issuer: /CN=02edfcfb335c9d76888d81b73ecd8a40bafecffc
Certificate serial: 67CB6F
Authority key identifier: 02:ED:FC:FB:33:5C:9D:76:88:8D:81:B7:3E:CD:8A:40:BA:FE:CF:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Au38-zNcnXaIjYG3Ps2KQLr-z_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/7de221-e3be-456d-91f4-b14b7cf70d2f/1/SmzMnmotGXJidXKKCYbNPMkM4vQ.roa
Signing time: Sat 01 Jan 2022 01:01:13 +0000
ROA not before: Sat 01 Jan 2022 01:01:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 146.19.204.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6802287 (0x67cb6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02edfcfb335c9d76888d81b73ecd8a40bafecffc
Validity
Not Before: Jan 1 01:01:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a6ccc9e6a2d19726275728a0986cd3cc90ce2f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:92:e8:5d:2a:9a:69:4d:e0:5b:9d:88:74:34:
bc:2f:29:83:2f:78:9b:68:0a:54:7e:9d:35:17:ee:
ec:f0:fd:cd:01:b0:b4:47:cb:d4:f4:2c:d0:64:84:
39:3b:93:17:9e:0b:58:57:ef:5c:a8:32:fb:d2:60:
bc:90:1e:2e:90:d5:28:8e:d2:e9:cc:cb:4f:8a:9d:
31:ae:73:db:c2:06:9a:f8:a4:9f:28:cf:c0:10:9d:
cf:33:de:a5:0e:9f:47:62:49:4d:67:68:13:7c:ae:
13:b9:6d:04:34:20:ba:a3:f9:94:0d:40:2e:18:03:
71:1b:8f:48:84:97:8e:d1:d1:39:36:b9:47:5e:f0:
72:fb:58:68:d8:63:81:85:12:42:74:17:c5:34:b6:
ed:4d:6c:fe:06:13:ef:4b:74:eb:e5:d9:cf:c3:b7:
44:2f:c1:78:6f:fc:05:46:15:16:f5:e1:e0:ff:53:
2f:b2:48:ea:46:c3:8f:ea:71:06:6c:2a:89:1e:4c:
b8:4a:4c:05:b5:34:5a:f3:44:36:49:a8:d5:23:36:
81:9d:c0:2a:6f:70:31:8e:e1:ed:20:8f:57:10:91:
1c:7e:c2:8d:e9:55:08:a7:5b:6e:3b:b5:b1:c7:f7:
c1:fb:5e:ee:09:66:5a:38:5b:d7:73:18:e2:2e:bd:
f5:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:6C:CC:9E:6A:2D:19:72:62:75:72:8A:09:86:CD:3C:C9:0C:E2:F4
X509v3 Authority Key Identifier:
keyid:02:ED:FC:FB:33:5C:9D:76:88:8D:81:B7:3E:CD:8A:40:BA:FE:CF:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Au38-zNcnXaIjYG3Ps2KQLr-z_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/7de221-e3be-456d-91f4-b14b7cf70d2f/1/SmzMnmotGXJidXKKCYbNPMkM4vQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/7de221-e3be-456d-91f4-b14b7cf70d2f/1/Au38-zNcnXaIjYG3Ps2KQLr-z_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.204.0/24
Signature Algorithm: sha256WithRSAEncryption
87:89:37:7e:aa:45:7c:ef:22:f3:c3:ba:01:af:ff:0d:b2:c7:
e2:28:38:90:00:74:4e:99:6d:fb:52:54:78:6f:e8:a4:90:11:
89:a7:4d:06:04:1a:60:fc:a9:74:fc:67:ac:24:ae:c7:90:37:
7e:94:16:ab:57:31:f2:c8:70:58:d0:89:71:fd:78:96:04:ed:
17:63:34:cb:e9:f3:d3:72:d2:0e:bb:f8:81:fb:ef:f2:2b:46:
83:a0:9e:d3:44:8f:16:14:68:f2:df:f4:06:10:07:44:b0:63:
95:60:c9:9e:af:a1:72:b3:64:c5:97:8a:b8:b2:c4:0f:67:9a:
9c:65:95:d4:f3:1b:40:27:fd:03:00:8a:21:3d:4a:e8:b6:d8:
dd:b2:1f:68:74:29:59:5b:e5:bb:b2:4f:59:2b:9f:14:28:5b:
5f:4d:f3:72:ab:00:18:1e:b5:13:eb:38:da:43:87:1a:a6:50:
86:de:0f:2b:3f:80:e0:ae:10:56:14:5d:d0:78:e0:59:10:09:
d1:ac:d0:28:07:b4:61:0c:86:b9:6f:37:58:1d:38:38:64:8c:
84:f7:5d:51:57:0b:9a:52:ad:b1:3a:db:0b:8a:82:f4:2c:a1:
40:2b:cf:a5:6a:4a:ba:e5:5a:4e:c1:9e:11:cc:f4:75:b3:db:
c5:38:42:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:37 2023 by rpki-client on console-fra.rpki-client.org