Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/84b489-8b6f-459d-9a31-f18ad9f4cc34/1/dNgqELwLeR_Q8tS7XjhpF2eu5y8.roa
File: dNgqELwLeR_Q8tS7XjhpF2eu5y8.roa (raw, json)
Hash identifier: XLkfuNJmN0zgRzcTALiHGaARF3BJ4zLboql4MsGFc/U=
Subject key identifier: 74:D8:2A:10:BC:0B:79:1F:D0:F2:D4:BB:5E:38:69:17:67:AE:E7:2F
Certificate issuer: /CN=19b800c39126db3ca4e0d56910f0ad379257e4a0
Certificate serial: 05054197
Authority key identifier: 19:B8:00:C3:91:26:DB:3C:A4:E0:D5:69:10:F0:AD:37:92:57:E4:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GbgAw5Em2zyk4NVpEPCtN5JX5KA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/84b489-8b6f-459d-9a31-f18ad9f4cc34/1/dNgqELwLeR_Q8tS7XjhpF2eu5y8.roa
Signing time: Tue 14 Jun 2022 13:18:42 +0000
ROA not before: Tue 14 Jun 2022 13:18:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20546
IP address blocks: 149.249.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84230551 (0x5054197)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19b800c39126db3ca4e0d56910f0ad379257e4a0
Validity
Not Before: Jun 14 13:18:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74d82a10bc0b791fd0f2d4bb5e38691767aee72f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:eb:76:c0:a1:eb:35:9b:f6:c9:a9:0b:e9:a9:
6d:c8:d8:59:6c:9f:22:3c:e3:85:17:6b:4a:17:fb:
2a:3c:9f:35:70:02:95:b2:b6:c9:56:d8:01:e8:aa:
c2:f2:dd:a4:8a:64:8c:e2:93:fb:92:ed:fd:93:e8:
5f:cd:49:6e:00:35:2f:05:6d:18:12:75:9c:ed:ef:
b1:0d:80:ad:e6:ef:ba:85:31:51:dd:ed:6d:88:86:
f3:a8:b6:da:35:e5:0f:25:f0:be:e4:e4:f5:82:42:
0e:95:3a:0b:1a:26:48:ac:33:a8:71:b1:0a:8f:48:
d1:a5:4f:f3:ca:dc:9f:ce:51:cf:35:be:34:b7:c0:
39:35:4e:5f:38:83:10:7e:9e:a2:b8:95:cf:29:7d:
41:d4:76:cd:90:25:e4:b1:e4:22:40:1d:98:a2:19:
5a:35:8c:3c:4a:22:8e:6a:2c:8f:bd:a6:21:97:81:
97:1a:aa:d7:73:97:67:c7:d8:e2:79:e1:36:85:63:
85:f7:81:97:be:52:f2:5e:76:a8:66:94:84:d0:0a:
7a:18:17:7c:8a:1f:2c:ab:42:63:03:2d:cc:bf:d0:
8f:d5:30:40:9d:80:7e:01:55:4d:c9:0d:00:01:7e:
dd:08:65:13:ac:c3:31:37:1a:ab:4b:83:43:de:96:
5b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:D8:2A:10:BC:0B:79:1F:D0:F2:D4:BB:5E:38:69:17:67:AE:E7:2F
X509v3 Authority Key Identifier:
keyid:19:B8:00:C3:91:26:DB:3C:A4:E0:D5:69:10:F0:AD:37:92:57:E4:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GbgAw5Em2zyk4NVpEPCtN5JX5KA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/84b489-8b6f-459d-9a31-f18ad9f4cc34/1/dNgqELwLeR_Q8tS7XjhpF2eu5y8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/84b489-8b6f-459d-9a31-f18ad9f4cc34/1/GbgAw5Em2zyk4NVpEPCtN5JX5KA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.249.128.0/19
Signature Algorithm: sha256WithRSAEncryption
36:ae:f3:3a:ea:f0:9e:a1:f7:74:0e:f8:62:76:3f:42:0d:5d:
f3:06:9d:f6:85:ce:90:34:46:ab:ee:2c:85:6e:aa:4a:70:44:
20:b6:d1:a9:f9:ad:a4:3e:9c:a5:20:75:fb:16:f4:2c:3f:ce:
32:a1:67:ab:f5:b1:28:23:ce:f7:b3:91:c2:3e:95:64:41:92:
38:39:e0:bd:28:eb:f7:5d:f8:d0:81:84:a7:4f:a5:dc:08:8a:
b4:ba:3b:86:1f:02:11:de:15:e0:77:37:06:58:74:3a:fb:af:
b5:9d:bf:c3:a7:0c:da:83:dc:ea:33:ae:17:c6:c7:48:5f:d0:
f8:9e:80:ca:6c:60:81:82:02:de:b7:cc:35:f8:a6:1a:cc:e1:
e2:8a:b0:da:07:76:61:56:cd:44:f2:ee:49:b4:34:52:ce:c4:
b0:43:b7:4d:58:ac:39:97:0f:72:19:d7:93:d7:70:c5:b6:ef:
b2:9b:62:b8:f2:a5:e1:d1:a4:b4:4a:06:9e:df:ed:40:5b:ac:
4a:82:2b:85:ab:15:b2:c2:6a:da:8c:b9:b1:d6:f6:c4:24:0e:
8c:dc:8d:4d:5f:6d:11:7a:46:f2:cb:f4:50:e6:9b:94:70:91:
19:3f:ad:b1:11:ea:83:0d:d6:18:46:01:d8:4d:d2:b2:92:88:
f8:e7:6a:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:25:52 2025 by rpki-client