Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/7c1131-966f-43af-8f4c-c3fbc8d8f966/1/DMYHoHqT1sRey-lyDiG1cEkaQjU.roa
File: DMYHoHqT1sRey-lyDiG1cEkaQjU.roa (raw, json)
Hash identifier: HYCmGJKEP5qcFguzaxsySJLi0cwsxGBz7ZPJt4WkwxY=
Subject key identifier: 0C:C6:07:A0:7A:93:D6:C4:5E:CB:E9:72:0E:21:B5:70:49:1A:42:35
Certificate issuer: /CN=f7ed6e066436e0a0b617474955a8a758e6e35d76
Certificate serial: 714250
Authority key identifier: F7:ED:6E:06:64:36:E0:A0:B6:17:47:49:55:A8:A7:58:E6:E3:5D:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9-1uBmQ24KC2F0dJVainWObjXXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/7c1131-966f-43af-8f4c-c3fbc8d8f966/1/DMYHoHqT1sRey-lyDiG1cEkaQjU.roa
Signing time: Sat 01 Jan 2022 01:01:49 +0000
ROA not before: Sat 01 Jan 2022 01:01:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 146.19.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7422544 (0x714250)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7ed6e066436e0a0b617474955a8a758e6e35d76
Validity
Not Before: Jan 1 01:01:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0cc607a07a93d6c45ecbe9720e21b570491a4235
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:fc:df:b4:63:28:bb:9d:1a:03:9d:00:21:b4:
cb:3b:d9:f8:dc:15:10:37:fc:0f:88:e8:4d:fb:f2:
f2:9b:71:be:2e:31:0f:39:68:10:98:e9:3c:a0:7e:
81:08:e4:b5:42:2f:1a:67:b8:4c:b3:52:13:4b:ea:
b4:f3:56:ed:30:ee:33:49:d0:e4:a4:01:0d:3f:8d:
36:60:90:9d:9b:04:98:62:0f:ef:fb:52:97:4a:fe:
84:e1:34:1c:fb:e8:a6:9b:e9:51:bb:aa:06:4d:9c:
26:86:f1:4f:ee:20:49:01:45:62:e4:2e:cc:2f:b8:
10:c4:fc:65:45:62:a0:50:40:e1:7e:73:60:44:d1:
5a:eb:f8:5e:3a:f0:bf:bb:20:aa:12:e1:cf:c5:65:
84:4f:57:61:e6:ee:7b:fa:48:9f:d4:be:fd:43:90:
f7:66:df:67:0f:22:13:30:89:38:58:5d:f3:69:94:
7a:f8:c7:45:3f:de:ea:1d:79:8c:20:03:1e:d3:2c:
1b:99:80:ad:c1:de:4c:42:77:0a:e9:da:5d:8c:35:
17:ac:23:75:62:e5:90:0f:51:28:7c:0a:97:a0:69:
64:89:3c:6e:ca:92:21:cb:59:71:6c:11:14:f7:a5:
8e:d9:22:9d:ec:69:13:48:63:08:7e:b8:29:a0:50:
d1:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:C6:07:A0:7A:93:D6:C4:5E:CB:E9:72:0E:21:B5:70:49:1A:42:35
X509v3 Authority Key Identifier:
keyid:F7:ED:6E:06:64:36:E0:A0:B6:17:47:49:55:A8:A7:58:E6:E3:5D:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9-1uBmQ24KC2F0dJVainWObjXXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/7c1131-966f-43af-8f4c-c3fbc8d8f966/1/DMYHoHqT1sRey-lyDiG1cEkaQjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/7c1131-966f-43af-8f4c-c3fbc8d8f966/1/9-1uBmQ24KC2F0dJVainWObjXXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.92.0/24
Signature Algorithm: sha256WithRSAEncryption
54:4d:09:90:ca:93:df:d8:08:b9:84:45:05:85:cc:8c:a8:f9:
ae:be:ba:95:70:8c:d8:fb:3c:1f:48:31:a3:4c:57:8b:6b:bd:
38:99:99:46:e1:98:c4:28:ba:07:32:58:94:21:e7:3f:1f:1e:
5c:f8:2a:db:af:be:02:78:e4:07:95:b8:56:47:37:83:89:6a:
95:ec:62:90:dd:ec:b7:69:e1:76:01:2e:7f:4d:f6:da:e3:a9:
ec:5e:38:c7:b0:e7:40:1e:4b:eb:e1:84:ed:0c:6d:4a:0b:fa:
9f:61:20:58:4d:f0:c4:91:6b:8e:08:6b:9c:4b:56:89:e1:cf:
7d:35:e2:c6:9e:2b:5c:70:e8:47:04:2d:82:ba:1e:3d:c6:37:
0c:b7:2b:1d:75:3a:76:a6:c6:62:75:5f:5e:c0:47:fc:c7:fc:
38:bc:38:a8:7e:a2:9c:bc:35:28:88:1c:04:86:7a:3c:ae:71:
36:95:00:0d:7d:6e:56:91:58:fd:f0:36:10:23:83:4f:fd:d4:
e6:56:06:94:9c:63:66:b1:77:1e:48:0d:d4:cf:9f:fe:67:c7:
be:96:70:7d:3e:ee:ae:63:c2:94:45:0c:ad:18:ae:d3:87:ad:
c4:c5:7c:85:86:8e:47:06:6f:c6:57:2e:2c:4a:bb:87:55:a2:
c0:e3:66:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:03 2023 by rpki-client on console-ams.rpki-client.org