Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/PyFJSHKf6l6IJws3yTLfdAxZ9BI.roa
File: PyFJSHKf6l6IJws3yTLfdAxZ9BI.roa (raw, json)
Hash identifier: CB0A/cw1mDneR88NKKnmD7+kB4FCZGGewsB+o3T1rnA=
Subject key identifier: 3F:21:49:48:72:9F:EA:5E:88:27:0B:37:C9:32:DF:74:0C:59:F4:12
Certificate issuer: /CN=a0df7f5b6618bda23c83bed11b442041f1fb456d
Certificate serial: 897B8C
Authority key identifier: A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/PyFJSHKf6l6IJws3yTLfdAxZ9BI.roa
Signing time: Sat 15 Jan 2022 12:20:15 +0000
ROA not before: Sat 15 Jan 2022 12:20:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51847
IP address blocks: 146.19.174.0/24 maxlen: 24
2a12:e100:1::/48 maxlen: 48
2a12:e100:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9010060 (0x897b8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0df7f5b6618bda23c83bed11b442041f1fb456d
Validity
Not Before: Jan 15 12:20:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f214948729fea5e88270b37c932df740c59f412
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9e:f9:0e:b1:84:b6:49:92:9c:36:bc:86:bf:
b0:74:6c:7a:21:ac:de:20:90:0a:b5:ae:83:76:4b:
38:03:be:3a:3e:e5:24:08:98:e6:cf:11:4b:54:07:
58:61:37:77:aa:75:dd:ce:38:a8:23:74:c6:f5:3c:
ed:c6:81:b8:40:c6:03:5e:1c:b4:1c:bd:d6:77:4f:
4e:55:b6:60:83:64:51:6d:4e:0e:0a:48:43:cc:ba:
02:46:04:34:d5:4d:ff:ab:d4:af:f9:ad:12:97:9f:
b2:93:63:8a:1e:cc:1d:1b:94:45:a8:d3:10:db:fe:
e5:00:0c:93:30:8b:47:37:bd:fa:b6:a4:a9:d3:b2:
81:31:c8:11:d2:bb:d5:fe:b2:79:02:47:b9:cf:1e:
78:88:e9:8a:d7:a7:75:91:98:bb:62:80:03:d7:a6:
4e:87:cd:79:d8:35:5e:8c:16:4a:bf:fc:22:54:3c:
c0:ea:bb:f9:18:b9:88:5e:31:9c:b1:01:9e:87:19:
44:35:02:05:b0:e9:08:e9:06:45:48:e3:4a:fb:74:
7b:84:6b:51:0f:cf:26:a7:30:e3:5a:f3:9b:9d:0b:
f0:cf:ff:59:34:f9:85:50:7c:0a:cf:64:a3:ce:42:
ea:02:46:dc:54:f1:7a:51:91:83:c4:9d:c4:ef:cc:
3a:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:21:49:48:72:9F:EA:5E:88:27:0B:37:C9:32:DF:74:0C:59:F4:12
X509v3 Authority Key Identifier:
keyid:A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/PyFJSHKf6l6IJws3yTLfdAxZ9BI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.174.0/24
IPv6:
2a12:e100:1::-2a12:e100:2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
74:2d:55:7a:40:c4:ae:64:6d:ff:67:a9:20:12:7b:2d:4e:86:
c4:3b:17:66:ec:33:b4:40:89:32:2c:32:e9:2d:af:71:ca:cd:
c3:d8:69:30:31:d8:c1:b2:f5:6e:ab:56:41:73:e3:da:11:06:
f7:39:e3:8b:35:41:b6:c2:3f:15:eb:79:e9:bf:f3:c1:1f:f2:
5f:52:fe:e2:e4:29:c8:fc:31:20:26:94:37:1a:0a:24:c9:38:
40:9a:ff:b9:1e:eb:7a:0e:af:a7:4e:23:8d:82:f9:99:f3:68:
f6:86:57:48:0d:49:e8:33:ae:b9:3b:73:6b:e3:25:9c:b7:78:
c2:3b:65:36:80:0c:91:78:04:50:88:66:9c:9b:ee:09:de:ce:
fb:c9:9d:f0:09:a0:b8:f6:eb:40:59:9a:98:03:52:42:c7:7d:
a7:5a:4e:84:a5:ec:a3:11:67:8e:90:7a:d9:8f:6a:0c:66:c2:
93:94:86:70:a7:81:61:66:4a:86:90:11:00:c7:9c:ec:2b:ec:
17:d0:c5:78:d6:f5:26:5f:20:e7:8f:53:f1:d3:5a:44:1e:94:
5c:69:c6:4c:53:e5:3c:87:e0:83:58:b2:d3:7d:ba:fb:45:38:
33:e6:a7:05:d9:2b:57:3d:51:92:c4:57:a3:b1:e0:55:3a:4e:
ae:30:13:76
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgIEAIl7jDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
MGRmN2Y1YjY2MThiZGEyM2M4M2JlZDExYjQ0MjA0MWYxZmI0NTZkMB4XDTIyMDEx
NTEyMjAxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2YyMTQ5NDg3Mjlm
ZWE1ZTg4MjcwYjM3YzkzMmRmNzQwYzU5ZjQxMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMue+Q6xhLZJkpw2vIa/sHRseiGs3iCQCrWug3ZLOAO+Oj7l
JAiY5s8RS1QHWGE3d6p13c44qCN0xvU87caBuEDGA14ctBy91ndPTlW2YINkUW1O
DgpIQ8y6AkYENNVN/6vUr/mtEpefspNjih7MHRuURajTENv+5QAMkzCLRze9+rak
qdOygTHIEdK71f6yeQJHuc8eeIjpitendZGYu2KAA9emTofNedg1XowWSr/8IlQ8
wOq7+Ri5iF4xnLEBnocZRDUCBbDpCOkGRUjjSvt0e4RrUQ/PJqcw41rzm50L8M//
WTT5hVB8Cs9ko85C6gJG3FTxelGRg8SdxO/MOlMCAwEAAaOCAiUwggIhMB0GA1Ud
DgQWBBQ/IUlIcp/qXognCzfJMt90DFn0EjAfBgNVHSMEGDAWgBSg339bZhi9ojyD
vtEbRCBB8ftFbTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L29OOV9XMllZdmFJOGc3N1JHMFFnUWZIN1JXMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTIvYTU3MjhiLWEzNmQtNGZiYS05M2FhLTVmNGJjOTAwYzAzZC8x
L1B5RkpTSEtmNmw2SUp3czN5VExmZEF4WjlCSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTIv
YTU3MjhiLWEzNmQtNGZiYS05M2FhLTVmNGJjOTAwYzAzZC8xL29OOV9XMllZdmFJ
OGc3N1JHMFFnUWZIN1JXMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA7
BggrBgEFBQcBBwEB/wQsMCowDAQCAAEwBgMEAJITrjAaBAIAAjAUMBIDBwAqEuEA
AAEDBwAqEuEAAAIwDQYJKoZIhvcNAQELBQADggEBAHQtVXpAxK5kbf9nqSASey1O
hsQ7F2bsM7RAiTIsMuktr3HKzcPYaTAx2MGy9W6rVkFz49oRBvc544s1QbbCPxXr
eem/88Ef8l9S/uLkKcj8MSAmlDcaCiTJOECa/7ke63oOr6dOI42C+ZnzaPaGV0gN
Segzrrk7c2vjJZy3eMI7ZTaADJF4BFCIZpyb7gnezvvJnfAJoLj260BZmpgDUkLH
fadaToSl7KMRZ46QetmPagxmwpOUhnCngWFmSoaQEQDHnOwr7BfQxXjW9SZfIOeP
U/HTWkQelFxpxkxT5TyH4INYstN9uvtFODPmpwXZK1c9UZLEV6Ox4FU6Tq4wE3Y=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:12 2024 by rpki-client on console-fra.rpki-client.org