Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/501ada-7c30-4501-8111-9ceb070c7e05/1/9Ir0b79ZKh3TDrzZV0w72Ay3SUw.roa
File: 9Ir0b79ZKh3TDrzZV0w72Ay3SUw.roa (raw, json)
Hash identifier: ur4nOgeI/vdz5ZIgD+cuzIT/DKVsYm1+v02QuxOIh8c=
Subject key identifier: F4:8A:F4:6F:BF:59:2A:1D:D3:0E:BC:D9:57:4C:3B:D8:0C:B7:49:4C
Certificate issuer: /CN=a1234bb888ec5734f579747455363171eefb1a43
Certificate serial: 01833FAF98CFC0E09D51846FD67323D00B69
Authority key identifier: A1:23:4B:B8:88:EC:57:34:F5:79:74:74:55:36:31:71:EE:FB:1A:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oSNLuIjsVzT1eXR0VTYxce77GkM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/501ada-7c30-4501-8111-9ceb070c7e05/1/9Ir0b79ZKh3TDrzZV0w72Ay3SUw.roa
Signing time: Thu 15 Sep 2022 05:46:56 +0000
ROA not before: Thu 15 Sep 2022 05:46:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400039
IP address blocks: 146.19.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:3f:af:98:cf:c0:e0:9d:51:84:6f:d6:73:23:d0:0b:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1234bb888ec5734f579747455363171eefb1a43
Validity
Not Before: Sep 15 05:46:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f48af46fbf592a1dd30ebcd9574c3bd80cb7494c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:53:34:db:15:cd:f1:c7:a0:16:43:74:e3:c0:
6a:85:f6:ca:ca:07:df:6c:c3:10:08:fd:73:a3:5b:
d1:93:32:71:b1:3a:1a:43:25:9b:5d:e1:0c:c3:e9:
c5:2c:40:b3:11:24:6a:d2:72:b9:b1:71:e4:01:82:
24:48:64:bb:f9:d2:43:fc:e9:2b:de:9b:ee:16:31:
fc:65:0f:fb:cc:c7:9f:e6:3a:e2:61:09:95:df:fc:
5b:27:83:ee:f7:cf:1e:68:6c:65:f1:30:77:5c:55:
50:70:b1:7f:a0:9a:8e:93:38:9b:26:33:e6:50:cb:
3a:66:bb:f2:3d:bb:41:07:17:62:c6:14:1e:98:57:
a4:57:ed:27:e1:b5:3a:16:c8:ff:ca:7b:4a:e8:7f:
bd:a6:9e:4f:ab:98:f2:f1:5a:06:61:5d:f4:20:38:
5e:65:9f:62:2c:6f:4d:d2:a7:9b:65:26:78:0c:32:
27:49:75:e4:5c:49:6c:5c:d1:10:60:20:a9:18:f0:
e0:c2:51:c5:ae:8d:f7:b7:92:cf:73:15:65:3e:72:
7a:32:e7:00:34:3f:2a:6c:e1:ba:45:c7:bb:1a:08:
6f:be:11:f8:b9:cf:41:04:60:fa:3a:40:9b:dd:dc:
48:61:27:9b:da:50:18:19:97:96:7d:9f:a9:35:5a:
b8:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:8A:F4:6F:BF:59:2A:1D:D3:0E:BC:D9:57:4C:3B:D8:0C:B7:49:4C
X509v3 Authority Key Identifier:
keyid:A1:23:4B:B8:88:EC:57:34:F5:79:74:74:55:36:31:71:EE:FB:1A:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oSNLuIjsVzT1eXR0VTYxce77GkM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/501ada-7c30-4501-8111-9ceb070c7e05/1/9Ir0b79ZKh3TDrzZV0w72Ay3SUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/501ada-7c30-4501-8111-9ceb070c7e05/1/oSNLuIjsVzT1eXR0VTYxce77GkM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.237.0/24
Signature Algorithm: sha256WithRSAEncryption
83:13:44:dd:3d:f7:64:26:1c:5f:1c:a8:98:ce:52:98:09:0f:
52:ff:ef:e1:4e:fe:1f:29:26:81:15:b5:06:8d:21:ed:db:56:
91:17:63:0c:f3:22:de:7a:1d:2d:a6:a7:2d:f6:3e:4e:7b:f5:
39:0e:39:dd:79:0c:0b:55:a8:09:71:2d:ca:1b:8f:4a:0b:0d:
6b:1a:c9:14:82:53:40:3d:30:aa:72:e7:a5:53:75:cc:67:76:
23:56:23:9d:c4:b2:11:bc:71:c4:e1:93:b4:4e:ec:14:ef:af:
19:ea:f9:46:35:5e:cd:67:23:a9:ef:81:56:da:4b:a4:6d:2c:
31:70:76:3b:48:11:82:d4:2d:ec:a8:8e:93:82:10:d2:55:0e:
3a:c1:6a:26:ae:25:67:80:5b:5f:d8:96:38:2a:7a:4d:90:60:
15:de:2f:d7:17:a9:6e:c0:6e:b4:66:66:ff:c5:2b:7e:4b:55:
f6:10:47:31:87:e8:ef:6c:63:c5:b1:3b:0a:24:62:81:8c:de:
a4:39:11:be:9e:b9:11:fc:5c:15:01:af:86:ad:27:46:92:a4:
88:09:ac:57:c4:9b:b1:ae:99:b1:50:10:8e:a1:94:04:6d:e1:
ee:bf:c9:c8:39:76:22:ff:ff:8b:c9:48:d4:f1:9e:07:54:0f:
28:9e:4e:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:47 2023 by rpki-client on console-fra.rpki-client.org