Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/5c28ab-4402-419b-acd2-b10f0b66232c/1/53Wu1KJcKgSkMgvOGBib2wjbAgI.roa
File: 53Wu1KJcKgSkMgvOGBib2wjbAgI.roa (raw, json)
Hash identifier: fghIAyLerDr35WBGvkKrJuguCaIt3Pm7Mo8NQGU5kXQ=
Subject key identifier: E7:75:AE:D4:A2:5C:2A:04:A4:32:0B:CE:18:18:9B:DB:08:DB:02:02
Certificate issuer: /CN=3b09d41126077279143c180b9115384174aba70a
Certificate serial: 011171ED
Authority key identifier: 3B:09:D4:11:26:07:72:79:14:3C:18:0B:91:15:38:41:74:AB:A7:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OwnUESYHcnkUPBgLkRU4QXSrpwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/5c28ab-4402-419b-acd2-b10f0b66232c/1/53Wu1KJcKgSkMgvOGBib2wjbAgI.roa
Signing time: Mon 07 Mar 2022 17:31:11 +0000
ROA not before: Mon 07 Mar 2022 17:31:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 146.19.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17920493 (0x11171ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b09d41126077279143c180b9115384174aba70a
Validity
Not Before: Mar 7 17:31:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e775aed4a25c2a04a4320bce18189bdb08db0202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:41:0d:40:e6:19:fd:ff:ef:99:30:cf:55:e2:
70:39:36:68:14:58:9e:59:25:3e:3f:d5:91:52:51:
91:8e:c7:5c:41:95:9f:ad:8d:1e:0d:8d:fe:d1:7a:
9e:ce:b9:88:f4:93:ee:34:82:42:68:50:22:df:64:
e9:68:20:86:b6:44:0e:90:60:b7:62:74:0f:35:1f:
6f:a3:f2:59:37:41:78:61:15:92:94:f0:ba:42:c1:
d9:31:10:90:70:69:2a:d9:1b:0a:de:dc:cc:31:4b:
3f:d0:e8:62:1b:d5:02:b8:3a:b6:20:cd:43:46:e2:
50:8f:80:c0:f1:dd:42:71:0b:6d:e8:c2:4d:29:0d:
1d:d7:57:49:3c:ae:4d:95:9f:55:c5:f9:3d:30:74:
25:7c:3f:d4:49:85:94:c7:11:3b:46:77:6f:74:9e:
cb:c9:37:53:71:18:12:ec:ec:1b:2f:14:83:38:df:
06:3b:c6:3b:aa:64:c5:54:da:8e:cd:59:62:9f:4f:
b3:f6:d7:6e:63:2e:16:18:4b:2c:5a:67:5c:27:99:
76:b7:29:d1:73:1e:25:75:4e:1b:c6:c4:89:df:1e:
c8:49:12:2b:33:a4:8b:34:57:15:a7:33:64:e3:47:
7e:b6:f0:6b:29:80:5e:a8:67:c9:f7:60:c6:9e:f6:
1f:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:75:AE:D4:A2:5C:2A:04:A4:32:0B:CE:18:18:9B:DB:08:DB:02:02
X509v3 Authority Key Identifier:
keyid:3B:09:D4:11:26:07:72:79:14:3C:18:0B:91:15:38:41:74:AB:A7:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OwnUESYHcnkUPBgLkRU4QXSrpwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5c28ab-4402-419b-acd2-b10f0b66232c/1/53Wu1KJcKgSkMgvOGBib2wjbAgI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5c28ab-4402-419b-acd2-b10f0b66232c/1/OwnUESYHcnkUPBgLkRU4QXSrpwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.123.0/24
Signature Algorithm: sha256WithRSAEncryption
11:34:76:0b:8a:cb:aa:6b:40:e4:29:6b:b6:97:24:ba:2a:6c:
d5:0e:32:e5:7c:2f:9b:81:32:90:0e:19:66:ba:dc:0e:72:be:
39:7b:bc:bc:11:c7:66:69:17:e7:0c:26:de:11:5f:4a:03:75:
b0:c5:5a:6b:58:91:22:c6:2e:fd:79:43:63:72:7a:86:fa:80:
0f:4e:14:31:47:ca:a5:b0:67:06:32:e9:31:1c:4f:eb:ba:0c:
d7:37:5c:81:be:0f:d4:44:f3:bc:1a:42:d4:72:f2:47:26:3a:
61:e5:bb:48:83:d0:a0:5d:53:28:18:ae:0a:71:af:e7:11:4a:
6a:c5:64:37:a5:32:3a:62:da:75:fc:51:6b:5b:07:eb:56:84:
1b:2b:6c:cb:d6:af:9a:f0:37:48:ca:de:61:af:f0:ec:81:a1:
c4:38:53:88:ca:b9:05:74:ad:ae:21:3f:40:d2:6b:1e:9a:11:
3f:7e:c5:44:bf:9a:d3:7b:32:35:e4:c8:8e:c5:28:80:4f:25:
f6:e2:73:b6:a4:34:da:d0:bb:0c:bb:c2:f0:e0:ae:c2:bd:fb:
21:bb:20:5c:19:e6:f2:f8:83:9e:8d:33:bb:db:ef:df:d3:3e:
2a:f6:11:e9:09:35:c6:57:7d:f5:02:0c:d2:20:4e:cf:65:82:
82:ad:66:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:33 2023 by rpki-client on console-fra.rpki-client.org