Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/5c28ab-4402-419b-acd2-b10f0b66232c/1/SV1OQLRX_T_ClhwA6MeHKR0UXR0.roa
File: SV1OQLRX_T_ClhwA6MeHKR0UXR0.roa (raw, json)
Hash identifier: Joti2U8u+L/gflk907PHqIgQRxn7BBpw4NVOqOYv12o=
Subject key identifier: 49:5D:4E:40:B4:57:FD:3F:C2:96:1C:00:E8:C7:87:29:1D:14:5D:1D
Certificate issuer: /CN=3b09d41126077279143c180b9115384174aba70a
Certificate serial: 74D31D
Authority key identifier: 3B:09:D4:11:26:07:72:79:14:3C:18:0B:91:15:38:41:74:AB:A7:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OwnUESYHcnkUPBgLkRU4QXSrpwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/5c28ab-4402-419b-acd2-b10f0b66232c/1/SV1OQLRX_T_ClhwA6MeHKR0UXR0.roa
Signing time: Sat 01 Jan 2022 01:01:17 +0000
ROA not before: Sat 01 Jan 2022 01:01:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 146.19.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7656221 (0x74d31d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b09d41126077279143c180b9115384174aba70a
Validity
Not Before: Jan 1 01:01:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=495d4e40b457fd3fc2961c00e8c787291d145d1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:46:73:7b:d1:88:4b:f5:32:f6:49:6c:ce:b9:
4e:e3:b8:42:2c:7f:65:ef:5a:20:4d:b0:c9:74:1c:
91:d4:b7:d1:75:53:12:62:d8:e9:ab:a0:c2:18:38:
f6:6c:71:40:35:0a:ac:40:10:76:f2:56:f2:fd:5a:
06:77:1e:0b:a2:dd:d2:46:2a:56:d1:98:a1:c9:9c:
55:4f:cb:1e:c5:74:37:f1:e3:5a:d8:6f:1c:25:bd:
e8:be:e1:f1:e0:3e:13:6e:75:55:62:d7:85:fa:22:
33:68:fb:d1:cd:a7:77:b5:a6:d2:37:78:c6:52:2a:
79:ed:fb:4f:8e:4e:f0:56:14:94:15:17:e9:cd:0b:
20:d7:ce:23:6c:23:ef:8b:66:25:fa:33:48:41:f0:
a2:89:6f:73:ec:c7:5d:52:01:25:44:d6:7f:7f:ef:
bb:65:bc:03:de:53:e1:34:00:55:e3:82:db:39:40:
94:96:0d:1c:e0:4d:c4:db:99:47:df:db:6c:77:26:
38:a4:eb:5f:04:76:ae:24:ff:27:2e:91:2b:3f:82:
20:58:16:ab:62:0e:89:33:d9:ed:89:d7:1f:f3:f8:
ce:70:f7:45:e3:b5:f0:f5:c0:10:48:31:c7:6d:4a:
e1:49:26:a3:ca:54:69:10:b6:49:8b:a9:28:e4:ec:
c7:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:5D:4E:40:B4:57:FD:3F:C2:96:1C:00:E8:C7:87:29:1D:14:5D:1D
X509v3 Authority Key Identifier:
keyid:3B:09:D4:11:26:07:72:79:14:3C:18:0B:91:15:38:41:74:AB:A7:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OwnUESYHcnkUPBgLkRU4QXSrpwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5c28ab-4402-419b-acd2-b10f0b66232c/1/SV1OQLRX_T_ClhwA6MeHKR0UXR0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5c28ab-4402-419b-acd2-b10f0b66232c/1/OwnUESYHcnkUPBgLkRU4QXSrpwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.123.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:97:f5:b1:e8:9b:c7:c7:dc:71:9a:71:5e:5b:61:dc:14:20:
92:fc:4b:12:a8:91:38:e7:ab:0c:ba:cd:4e:cc:32:9e:b5:50:
0f:65:b3:4a:58:fd:72:3a:0a:6d:76:91:74:25:a9:85:38:f3:
f1:12:97:4a:32:fb:93:b3:a7:1a:8a:74:f6:9e:b5:28:b5:ba:
56:2c:c5:b9:4a:d7:44:73:65:c5:d1:a2:c8:d6:63:c2:53:a8:
8a:24:71:14:d4:07:94:11:c0:00:fd:db:9a:2a:62:de:66:44:
84:a8:0a:fe:84:67:9e:ae:e4:76:f5:da:98:51:6f:b0:ef:b2:
1c:f5:3f:1d:dc:70:c2:b6:0c:e9:9a:e3:ab:2f:db:f8:5f:6a:
d6:8d:f8:6e:b3:09:36:6d:6d:c4:9a:ac:30:b6:a0:97:43:53:
42:76:13:d4:cc:cd:92:2d:95:31:0d:24:f9:f8:84:f2:72:d5:
7c:d8:9f:55:4e:3b:41:a7:c7:9b:b2:d7:d5:38:04:96:9d:8c:
5f:21:1c:cf:67:c0:68:1f:46:d8:90:12:41:2a:08:bb:db:97:
a4:2b:c0:7d:8a:4f:c8:64:67:8b:13:d9:ba:2a:f7:1d:35:84:
32:26:4c:59:1d:82:6a:a6:15:9f:b3:23:f4:f2:f0:19:e7:1a:
27:c7:e8:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:27 2023 by rpki-client on console-ams.rpki-client.org