Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/lVRmrq8wJivfvd3TuKHStGnnMA4.roa
File: lVRmrq8wJivfvd3TuKHStGnnMA4.roa (raw, json)
Hash identifier: QtLqu1X5Ts6GTAPmmFsa+jSjc4dnnH55lYYJ0UORhAY=
Subject key identifier: 95:54:66:AE:AF:30:26:2B:DF:BD:DD:D3:B8:A1:D2:B4:69:E7:30:0E
Certificate issuer: /CN=a0df7f5b6618bda23c83bed11b442041f1fb456d
Certificate serial: BB28A3
Authority key identifier: A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/lVRmrq8wJivfvd3TuKHStGnnMA4.roa
Signing time: Sun 06 Feb 2022 00:50:41 +0000
ROA not before: Sun 06 Feb 2022 00:50:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 147293
IP address blocks: 146.19.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12265635 (0xbb28a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0df7f5b6618bda23c83bed11b442041f1fb456d
Validity
Not Before: Feb 6 00:50:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=955466aeaf30262bdfbdddd3b8a1d2b469e7300e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:0f:27:05:81:85:b6:cf:4c:cb:2d:c5:73:29:
ca:b8:77:5a:02:7d:63:41:7b:b9:f4:fa:16:01:d9:
46:60:50:59:cb:dc:99:0c:76:b7:1d:ad:b4:58:88:
5a:a8:c0:41:69:13:a1:36:5c:42:a2:c9:44:6f:df:
d3:ca:1f:a1:da:38:4a:5c:ee:f0:21:f1:8b:36:c0:
9e:93:b1:73:fa:be:8e:cc:bd:00:fb:ab:47:46:11:
db:c0:29:b9:af:0e:a0:82:a4:b1:8a:7b:cf:a3:35:
69:31:9e:5c:77:ea:a4:03:36:08:a9:5a:49:41:ec:
76:5a:eb:c4:47:ce:5e:d5:2f:46:2a:ef:af:80:92:
ac:54:1f:00:6e:48:e8:70:03:f2:c1:6c:00:4d:de:
14:68:05:9c:6a:84:1c:76:20:c7:2d:35:e7:d4:cc:
08:37:0a:64:fa:0c:ad:10:25:5b:78:1c:3b:9f:d1:
62:33:64:9d:e0:a6:e0:86:31:1e:45:14:54:6a:00:
32:6e:35:fc:e3:c5:5b:7e:02:a7:cb:88:c6:1c:ce:
d8:9c:e9:98:e4:5a:b2:ae:65:65:49:43:db:dd:7d:
94:ab:3a:13:9d:1c:6b:15:99:51:0b:2d:65:ca:b5:
75:92:54:65:c5:0a:de:f7:54:92:d9:e0:08:c6:81:
ed:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:54:66:AE:AF:30:26:2B:DF:BD:DD:D3:B8:A1:D2:B4:69:E7:30:0E
X509v3 Authority Key Identifier:
keyid:A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/lVRmrq8wJivfvd3TuKHStGnnMA4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.174.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:f0:43:28:e5:10:db:df:24:36:15:44:e1:37:8d:eb:e6:36:
9b:a8:53:17:c9:da:6e:b4:7c:93:14:7e:de:18:82:63:b7:1c:
39:c9:ad:6d:9f:15:64:06:cd:ad:38:39:3c:5f:e6:2a:7c:28:
bf:e2:c5:ae:ec:c2:82:2c:c8:f7:21:42:51:ed:45:88:90:44:
be:9d:a4:9b:e9:e8:27:c4:dd:c3:5a:83:58:a9:34:d0:f0:e9:
81:8b:d3:8f:ac:42:d1:b9:f0:dd:92:48:4d:03:90:07:7b:bd:
dc:b0:e6:e6:23:77:12:cc:00:71:d0:6c:b7:80:15:30:d8:7c:
c7:cf:b4:eb:01:02:d6:1c:12:ff:0c:1c:cf:05:a0:31:62:ef:
f5:21:64:1c:dc:02:64:fa:af:f3:0f:e2:20:ae:41:c8:4d:37:
e8:a7:82:fc:a3:5d:b2:df:c8:4e:24:80:99:36:89:20:7b:78:
f9:1d:ab:10:4a:91:75:b2:b7:48:a0:8f:90:09:25:51:0c:54:
f5:af:d6:0f:c9:48:fe:da:24:57:94:7c:3b:cc:35:c2:c1:45:
78:a9:18:c1:dd:ff:f0:83:f4:c7:72:39:9e:8d:87:b6:02:b5:
eb:cf:4a:cf:4c:5a:fe:d6:57:be:ba:7a:7b:39:86:fe:ed:2d:
73:4a:a7:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:15 2023 by rpki-client on console-ams.rpki-client.org