Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/T8hD8rfiaErzy4n-UMhOk4HaCRY.roa
File: T8hD8rfiaErzy4n-UMhOk4HaCRY.roa (raw, json)
Hash identifier: cdWmK8QKtqy3yq5z+Dd6N4hGwV8ApPumLv2zXWkFAY4=
Subject key identifier: 4F:C8:43:F2:B7:E2:68:4A:F3:CB:89:FE:50:C8:4E:93:81:DA:09:16
Certificate issuer: /CN=e760126dce78bc16e66c2e6e7635848ac46846af
Certificate serial: 01851FE1DFC8F2B874F4AE9471503B8CD180
Authority key identifier: E7:60:12:6D:CE:78:BC:16:E6:6C:2E:6E:76:35:84:8A:C4:68:46:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/52ASbc54vBbmbC5udjWEisRoRq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/T8hD8rfiaErzy4n-UMhOk4HaCRY.roa
Signing time: Sat 17 Dec 2022 11:39:34 +0000
ROA not before: Sat 17 Dec 2022 11:39:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61138
IP address blocks: 146.247.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1f:e1:df:c8:f2:b8:74:f4:ae:94:71:50:3b:8c:d1:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e760126dce78bc16e66c2e6e7635848ac46846af
Validity
Not Before: Dec 17 11:39:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4fc843f2b7e2684af3cb89fe50c84e9381da0916
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:9f:54:6d:1f:89:c9:f1:53:d5:59:82:1a:c2:
cf:d9:66:c8:9d:2f:ec:1a:f0:38:26:1d:04:e0:63:
67:74:4b:70:09:f7:17:11:76:1f:82:22:e3:a2:86:
9b:36:00:c6:0b:1b:85:79:00:21:d2:49:9a:28:51:
20:39:f3:c5:d6:27:5d:ec:50:88:41:d1:b4:88:99:
1c:94:2a:e0:b4:c9:7f:19:7d:6a:d9:0c:5f:58:ac:
7c:ea:18:d8:4c:d7:78:6d:39:a7:6a:7c:ba:0d:c9:
7a:cd:20:51:42:c0:47:d3:0a:70:bc:78:00:9c:39:
af:e6:f5:51:2d:86:25:8d:e9:9c:25:f9:d3:c4:17:
47:56:43:a8:18:d3:28:b1:47:d8:0b:9f:3f:6f:57:
a8:6b:f8:13:a4:44:ae:17:d9:50:88:f9:6d:9f:12:
a3:f7:c9:f3:0c:bb:82:9d:de:ed:ed:4e:c5:49:ad:
5c:0a:df:b7:f1:62:8d:57:64:4b:58:a7:31:67:d1:
9a:57:dc:35:4f:e6:1a:9a:af:3e:bd:32:e8:8d:a1:
97:c3:91:ac:a0:e7:17:33:50:ec:3d:40:6d:8b:59:
01:21:a9:81:b3:96:6c:40:f9:88:a9:cc:83:a5:02:
22:78:65:b3:11:37:77:3d:dc:40:d5:e8:6d:8a:7a:
7b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:C8:43:F2:B7:E2:68:4A:F3:CB:89:FE:50:C8:4E:93:81:DA:09:16
X509v3 Authority Key Identifier:
keyid:E7:60:12:6D:CE:78:BC:16:E6:6C:2E:6E:76:35:84:8A:C4:68:46:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/52ASbc54vBbmbC5udjWEisRoRq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/T8hD8rfiaErzy4n-UMhOk4HaCRY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/52ASbc54vBbmbC5udjWEisRoRq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.247.123.0/24
Signature Algorithm: sha256WithRSAEncryption
44:48:d3:7e:48:cd:ba:7a:cc:d6:ee:eb:28:8c:dc:ce:3f:89:
54:17:9f:b5:3a:00:f7:9a:d6:8f:49:cf:d7:40:39:76:f5:9a:
45:82:80:4f:ca:05:bb:3d:76:fe:23:51:c2:02:1e:ee:52:7b:
77:34:19:2d:77:bb:12:23:b8:e0:83:4a:a0:95:48:72:6c:f2:
71:07:38:93:30:51:0d:45:98:cc:40:fa:69:ae:f4:13:9a:8c:
bd:e1:9d:60:24:67:fa:29:32:27:e1:e7:48:4c:d6:9c:91:4c:
45:61:1a:e9:67:2c:75:b8:41:56:67:6f:fd:89:f6:bf:4e:77:
04:05:31:76:5b:b9:1c:c4:49:81:3c:88:36:8f:7b:07:80:0b:
e4:72:74:0d:f6:ef:89:5e:5e:8f:59:d9:4f:22:d4:9e:c0:60:
fd:93:91:42:24:0d:b8:a6:17:c4:1a:48:c6:06:92:7d:0a:52:
e5:54:32:67:85:81:62:ac:07:13:3a:cc:45:85:53:a7:b5:5e:
23:46:37:92:e5:68:d0:24:07:c2:35:23:af:34:a9:39:90:05:
15:c9:f3:39:e7:58:be:35:47:0d:89:4b:73:fe:ce:1c:ee:2e:
7b:35:a6:91:a0:73:02:59:48:cb:99:33:74:e5:c3:e8:84:82:
31:11:8f:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:34 2023 by rpki-client on console-ams.rpki-client.org