Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/f95bb4-5c31-4a3c-8b3c-b174a94155ed/1/N4HA0izQPF7ZHiQCdWtGz_awe60.roa
File: N4HA0izQPF7ZHiQCdWtGz_awe60.roa (raw, json)
Hash identifier: ulXnp0lSVNUaA/CmihGzsfVv4t3cwAxZ8hB89WlG9AM=
Subject key identifier: 37:81:C0:D2:2C:D0:3C:5E:D9:1E:24:02:75:6B:46:CF:F6:B0:7B:AD
Certificate issuer: /CN=281597558437c58185d4c2fe71b9d52779d800d6
Certificate serial: 6C4075
Authority key identifier: 28:15:97:55:84:37:C5:81:85:D4:C2:FE:71:B9:D5:27:79:D8:00:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBWXVYQ3xYGF1ML-cbnVJ3nYANY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/f95bb4-5c31-4a3c-8b3c-b174a94155ed/1/N4HA0izQPF7ZHiQCdWtGz_awe60.roa
Signing time: Sat 01 Jan 2022 02:58:15 +0000
ROA not before: Sat 01 Jan 2022 02:58:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 146.19.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7094389 (0x6c4075)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=281597558437c58185d4c2fe71b9d52779d800d6
Validity
Not Before: Jan 1 02:58:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3781c0d22cd03c5ed91e2402756b46cff6b07bad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:12:f0:d0:05:65:28:b9:ad:56:56:3a:77:c5:
c3:5f:10:5c:b9:aa:15:8d:eb:da:e9:c8:1a:66:08:
66:17:a2:5e:25:f0:26:eb:ec:8f:c2:50:43:ce:c5:
b3:70:58:fa:13:a6:e6:80:1b:67:2a:7c:20:3f:aa:
18:d8:d9:31:64:97:a9:94:9a:9e:03:29:71:37:e6:
c5:82:5b:63:9b:c0:9c:08:08:3e:9a:95:17:ce:3b:
86:a7:44:b2:39:ee:63:eb:f5:5b:b1:ad:60:76:3e:
73:95:2b:5d:c3:02:74:4b:d5:fa:62:5a:f3:5b:58:
cb:2f:d1:3c:b7:6a:27:ed:48:b7:7c:4f:10:6c:ce:
3e:55:01:c4:e6:47:3f:92:24:f7:3b:3a:0f:13:a1:
83:4e:dd:f4:ea:d1:f8:63:32:a8:b6:f6:5f:e3:dc:
9e:be:2d:ac:f5:ca:f4:c3:c8:dc:84:69:e5:10:c6:
81:73:39:76:c2:cd:0b:88:cc:7c:9d:39:6b:1c:a4:
ae:21:f1:d4:19:85:d2:78:91:4e:c5:f2:14:27:b8:
bc:28:18:3a:59:14:af:6d:ce:ad:a1:82:a6:c1:96:
e8:89:f5:62:13:8c:f7:42:63:4e:3c:86:8f:5f:94:
b5:b1:80:1d:fa:cc:1c:8b:5f:cd:c0:7f:01:7c:f3:
b6:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:81:C0:D2:2C:D0:3C:5E:D9:1E:24:02:75:6B:46:CF:F6:B0:7B:AD
X509v3 Authority Key Identifier:
keyid:28:15:97:55:84:37:C5:81:85:D4:C2:FE:71:B9:D5:27:79:D8:00:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBWXVYQ3xYGF1ML-cbnVJ3nYANY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f95bb4-5c31-4a3c-8b3c-b174a94155ed/1/N4HA0izQPF7ZHiQCdWtGz_awe60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f95bb4-5c31-4a3c-8b3c-b174a94155ed/1/KBWXVYQ3xYGF1ML-cbnVJ3nYANY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.227.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:e8:3c:1e:c2:8c:48:75:3a:0c:41:92:be:a5:2f:11:0d:25:
1c:36:30:c4:a8:dc:8c:51:01:23:b8:2c:00:39:12:55:77:a9:
3d:95:f2:ce:62:09:db:df:46:fa:1c:db:4b:e6:ae:89:60:71:
be:2c:eb:2f:ed:9d:03:a8:4a:9a:80:f0:51:7a:04:ef:1a:57:
b0:8c:46:d2:a3:d7:ec:e8:9a:02:0b:7e:00:65:0b:49:57:1c:
e6:eb:66:03:b3:8a:0c:3c:f9:e3:34:d5:cc:1d:b1:06:20:88:
50:b3:a9:43:04:db:8c:1d:a9:6f:8f:cb:0c:fa:e4:0a:4f:04:
62:2f:e5:52:12:0b:b7:80:97:f2:c9:b6:e2:b4:53:83:7b:19:
c3:2b:d1:1f:37:fb:cf:6b:f9:f1:89:5d:6e:da:01:33:6a:0d:
d8:e1:03:dd:9a:71:ff:0f:6b:34:55:ae:26:82:b2:cb:f8:bb:
fe:13:ce:3c:9b:f8:b4:f7:f9:11:9e:f9:1b:1c:f0:8e:05:87:
3e:10:e2:3e:18:9c:8f:6f:d5:36:f1:d1:21:15:9a:90:d4:52:
16:84:00:95:ff:4b:e6:a6:c4:2e:5c:85:ff:c7:25:f6:52:71:
37:03:9d:d1:ed:49:d6:89:4d:e3:49:85:00:b4:87:8d:7b:90:
dd:63:2c:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:38 2023 by rpki-client on console-fra.rpki-client.org