Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/cc8200-ec37-4394-9264-e926159044e9/1/B4Hkgi3_KdoVqN58X95zM6rSviY.roa
File: B4Hkgi3_KdoVqN58X95zM6rSviY.roa (raw, json)
Hash identifier: 1H8ja/rQ7b4D+9/2pMQIB00kmQMcAPpRS/1qhsOnhq0=
Subject key identifier: 07:81:E4:82:2D:FF:29:DA:15:A8:DE:7C:5F:DE:73:33:AA:D2:BE:26
Certificate issuer: /CN=8eb72829e6f70ebe6bdb07cec8d0b855e5774f97
Certificate serial: 5E59D7
Authority key identifier: 8E:B7:28:29:E6:F7:0E:BE:6B:DB:07:CE:C8:D0:B8:55:E5:77:4F:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jrcoKeb3Dr5r2wfOyNC4VeV3T5c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/cc8200-ec37-4394-9264-e926159044e9/1/B4Hkgi3_KdoVqN58X95zM6rSviY.roa
Signing time: Sat 01 Jan 2022 03:56:08 +0000
ROA not before: Sat 01 Jan 2022 03:56:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 146.19.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6183383 (0x5e59d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8eb72829e6f70ebe6bdb07cec8d0b855e5774f97
Validity
Not Before: Jan 1 03:56:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0781e4822dff29da15a8de7c5fde7333aad2be26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:46:f2:6f:d2:67:9e:2f:f7:4b:f9:90:50:f9:
34:eb:58:52:20:ca:ec:0a:20:fc:ca:35:a8:ba:bf:
76:3f:36:73:e6:75:a8:d2:17:d2:fd:a4:61:7f:13:
20:97:26:13:f3:cd:f1:2d:e8:23:aa:96:65:81:7f:
cb:3e:4f:12:0f:c6:83:e7:bc:c2:d2:12:48:20:bc:
55:5b:b9:c0:84:58:38:68:cd:6c:42:8e:10:33:c0:
a4:65:f3:f8:0c:a6:91:04:bb:0e:ca:77:04:7f:a4:
cf:0d:69:4f:14:b3:9d:77:fd:fd:02:97:00:1e:56:
7f:87:37:08:81:b0:cd:28:46:3e:3c:7a:09:de:9c:
79:2e:22:3f:f0:7b:b2:87:a2:27:ce:8b:30:fa:9f:
02:d3:c7:2f:4f:8e:ec:1c:95:e8:65:4a:3d:47:71:
f3:59:3c:06:4f:9a:52:5d:59:84:8e:fe:eb:a1:65:
72:00:4f:bd:dc:43:e1:0d:41:dd:f5:41:16:5a:78:
34:a2:18:de:56:ba:05:af:39:35:3c:aa:90:18:f8:
3d:bb:04:97:f8:4b:82:4d:96:d3:83:2a:f5:da:f8:
c4:e5:71:f2:47:76:e6:b0:13:57:b4:de:32:e1:b3:
a3:8b:18:e2:90:93:7c:0d:9b:cd:fb:8e:6f:9a:23:
8d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:81:E4:82:2D:FF:29:DA:15:A8:DE:7C:5F:DE:73:33:AA:D2:BE:26
X509v3 Authority Key Identifier:
keyid:8E:B7:28:29:E6:F7:0E:BE:6B:DB:07:CE:C8:D0:B8:55:E5:77:4F:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jrcoKeb3Dr5r2wfOyNC4VeV3T5c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/cc8200-ec37-4394-9264-e926159044e9/1/B4Hkgi3_KdoVqN58X95zM6rSviY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/cc8200-ec37-4394-9264-e926159044e9/1/jrcoKeb3Dr5r2wfOyNC4VeV3T5c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.229.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:12:d0:16:5b:0e:2d:bd:b3:57:21:1e:ff:8e:08:80:bf:99:
b4:9d:ca:21:12:6e:71:39:a4:b5:23:bd:5b:68:37:04:c8:e5:
e3:43:85:88:88:84:08:bc:65:82:26:93:b4:22:b5:08:51:68:
43:13:7a:e4:05:b3:8a:b3:bb:de:e3:58:c6:22:1f:29:23:ed:
ed:3c:4b:02:41:20:11:89:0c:d2:44:b7:0c:e1:bd:1c:8c:2b:
9a:65:5c:7d:11:b7:0a:e5:5a:36:13:bd:b5:b8:1b:58:5c:99:
87:93:bc:86:e9:3f:bb:bd:89:86:59:36:05:79:2b:72:7c:2a:
c5:05:79:99:fc:e7:34:d8:36:32:fd:e1:2c:ff:c6:c0:e4:30:
c4:d6:3a:71:9b:ba:7f:ed:d2:78:79:65:89:7f:94:cd:0f:91:
b2:12:16:a1:33:1a:29:99:92:93:bd:67:03:d5:18:ee:7d:c5:
85:2c:57:06:9b:1f:1b:2d:fd:5a:ac:ec:cf:9e:73:a7:28:fc:
d4:c1:b8:5a:42:dc:1c:3d:a7:62:de:70:64:e2:5a:dc:59:42:
00:c7:c9:8c:28:26:39:8f:53:5f:7d:20:26:86:c7:24:05:1f:
c4:f9:2f:da:05:c5:a9:0d:bf:a7:b9:fa:56:3c:e9:63:34:f7:
a2:76:b4:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:46 2023 by rpki-client on console-ams.rpki-client.org