Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/790e87-201a-4543-b46c-7298c47454fe/1/XG9VCxCs4abVFbPJcDmXDVRdAMM.roa
File: XG9VCxCs4abVFbPJcDmXDVRdAMM.roa (raw, json)
Hash identifier: sBbgJc5si8FXHKlc7hg/805Yg5o2cHGjSq+3FbZpblk=
Subject key identifier: 5C:6F:55:0B:10:AC:E1:A6:D5:15:B3:C9:70:39:97:0D:54:5D:00:C3
Certificate issuer: /CN=1ee51ed90c49cae92fca2e8238114c7638380483
Certificate serial: 689701
Authority key identifier: 1E:E5:1E:D9:0C:49:CA:E9:2F:CA:2E:82:38:11:4C:76:38:38:04:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HuUe2QxJyukvyi6COBFMdjg4BIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/790e87-201a-4543-b46c-7298c47454fe/1/XG9VCxCs4abVFbPJcDmXDVRdAMM.roa
Signing time: Sat 01 Jan 2022 00:52:14 +0000
ROA not before: Sat 01 Jan 2022 00:52:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49321
IP address blocks: 146.19.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6854401 (0x689701)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ee51ed90c49cae92fca2e8238114c7638380483
Validity
Not Before: Jan 1 00:52:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c6f550b10ace1a6d515b3c97039970d545d00c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:42:7b:75:d9:d6:81:63:1a:73:ac:dd:ba:d1:
f6:bf:30:a9:5f:ae:e6:df:6c:45:01:56:31:b2:ce:
35:d6:d1:f1:27:6a:87:19:a7:2b:7d:d6:33:03:ae:
83:d0:eb:0d:80:c7:6c:8b:23:50:39:fa:6c:29:88:
72:f1:8e:aa:62:aa:79:ab:b3:c8:e2:79:71:10:02:
ac:82:27:ff:65:bb:ab:81:b2:87:83:33:67:28:01:
e2:5e:6c:2f:f0:48:db:1c:83:ca:2f:d1:e2:c9:9e:
4e:03:72:e3:a3:a9:75:ef:8b:26:a5:a0:e0:68:7e:
37:35:1c:2d:e4:b5:44:38:5e:fb:bf:a3:32:22:17:
33:cb:d3:d0:85:81:75:96:c1:19:72:3d:46:0f:22:
41:86:87:15:37:95:11:b5:8c:32:45:da:a2:9a:f1:
11:d1:b5:c7:ad:26:25:39:51:f7:4c:1c:b0:38:03:
af:7e:60:88:49:44:24:5a:9d:04:8b:ff:81:4b:eb:
92:b0:e6:23:7b:23:d4:87:65:78:dc:39:77:89:6b:
0c:7e:15:31:9a:b7:b3:69:0e:9a:3d:2e:a8:23:90:
8e:de:af:88:e2:4b:b4:36:61:30:ed:b7:0c:a0:06:
d0:ee:fa:8a:f7:ca:3a:f4:07:9e:5e:27:82:b9:12:
ee:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:6F:55:0B:10:AC:E1:A6:D5:15:B3:C9:70:39:97:0D:54:5D:00:C3
X509v3 Authority Key Identifier:
keyid:1E:E5:1E:D9:0C:49:CA:E9:2F:CA:2E:82:38:11:4C:76:38:38:04:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HuUe2QxJyukvyi6COBFMdjg4BIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/790e87-201a-4543-b46c-7298c47454fe/1/XG9VCxCs4abVFbPJcDmXDVRdAMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/790e87-201a-4543-b46c-7298c47454fe/1/HuUe2QxJyukvyi6COBFMdjg4BIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.146.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:60:17:ba:f4:f5:c8:ce:89:48:e7:19:5c:a7:e0:bb:8f:86:
95:52:ca:cf:b5:04:0c:e6:90:41:b2:e6:68:6c:6d:e4:34:36:
72:a8:21:dd:1e:36:c8:5c:1f:36:37:62:44:a2:b6:e1:51:51:
2d:fd:1b:64:c0:c4:c7:4e:10:7f:8d:42:28:08:d6:82:be:c1:
25:74:59:bd:06:9e:c4:a0:3d:c7:48:a2:a8:dd:6e:3a:e1:1b:
f0:93:c7:7b:fa:69:c0:02:b8:0b:13:ee:82:97:11:97:a3:c7:
6e:f9:e4:84:3e:9a:9d:8f:9f:48:82:05:93:c7:d6:ff:13:89:
ae:2d:1a:01:cb:40:a8:db:b7:ad:d9:00:37:10:49:68:97:8b:
94:5a:de:e6:9c:af:83:16:6e:5a:9f:8d:9f:5e:28:f0:36:20:
43:9c:3a:5e:fa:15:82:a3:72:13:9c:97:21:1c:09:f0:b0:d0:
b6:2b:96:7e:89:5a:cb:45:ac:16:bb:17:ac:2c:76:ba:b3:ef:
f4:d2:e6:79:ac:12:a5:38:88:7d:fd:99:df:f9:c2:4e:fc:41:
7c:78:ff:28:8e:76:2c:9a:cc:dc:23:4c:2a:6b:00:56:ab:d9:
50:8f:3c:d2:e2:ed:38:01:1e:d9:0e:18:72:77:68:c0:5f:af:
ed:c5:37:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:40 2023 by rpki-client on console-fra.rpki-client.org