Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/hIq-eN_v5lJpoRH6pFyb37DCuN4.roa
File: hIq-eN_v5lJpoRH6pFyb37DCuN4.roa (raw, json)
Hash identifier: Bmtmtqu0iuA/qDqlgtwFgWmxvSdgvATF3prT1ZvVEeA=
Subject key identifier: 84:8A:BE:78:DF:EF:E6:52:69:A1:11:FA:A4:5C:9B:DF:B0:C2:B8:DE
Certificate issuer: /CN=e760126dce78bc16e66c2e6e7635848ac46846af
Certificate serial: 0182C4F5BECD364FEB4977F0F65E50D68F32
Authority key identifier: E7:60:12:6D:CE:78:BC:16:E6:6C:2E:6E:76:35:84:8A:C4:68:46:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/52ASbc54vBbmbC5udjWEisRoRq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/hIq-eN_v5lJpoRH6pFyb37DCuN4.roa
Signing time: Mon 22 Aug 2022 09:50:15 +0000
ROA not before: Mon 22 Aug 2022 09:50:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57037
IP address blocks: 146.247.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c4:f5:be:cd:36:4f:eb:49:77:f0:f6:5e:50:d6:8f:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e760126dce78bc16e66c2e6e7635848ac46846af
Validity
Not Before: Aug 22 09:50:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=848abe78dfefe65269a111faa45c9bdfb0c2b8de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:20:4d:19:fd:8a:7f:5c:dd:7b:97:07:5a:7d:
bc:53:e7:7e:59:3c:f3:70:e7:58:c4:64:e0:04:ae:
e8:cb:e0:d6:00:45:7a:07:af:fd:5c:b3:82:4d:b4:
5f:7d:b7:f9:17:f5:35:e1:77:42:4a:96:38:e5:06:
52:11:4c:bf:0c:99:2f:72:3c:de:3f:fd:6b:e9:fd:
63:6e:86:90:5d:f6:8e:42:b2:ca:06:aa:ea:01:62:
e3:6c:c4:d3:cf:91:e0:b9:16:75:b2:7b:9c:99:9e:
f8:d1:37:ee:57:95:43:cd:7f:68:e7:e6:4e:d4:13:
a0:c4:43:25:24:c0:f4:9e:4a:e9:74:82:c1:77:54:
0d:2a:0b:12:e0:12:c5:62:66:e6:c9:fa:d6:99:dd:
e1:08:b1:4a:08:76:cf:94:52:d0:dc:c0:55:54:0c:
4d:ed:f1:6d:23:85:a5:d2:70:be:81:4b:ae:c5:95:
60:c0:ca:18:36:cb:cb:18:63:1a:6c:a2:11:9f:3d:
dc:58:b4:21:d4:2c:d0:71:24:7e:57:61:6e:93:c2:
84:15:4c:3a:5a:d0:9f:79:1e:f1:be:81:6f:ad:6e:
59:54:21:1d:53:88:50:3f:9d:44:d7:15:bf:b7:dd:
98:97:ff:41:cf:1d:4f:47:ea:53:2b:3f:f7:49:88:
ea:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:8A:BE:78:DF:EF:E6:52:69:A1:11:FA:A4:5C:9B:DF:B0:C2:B8:DE
X509v3 Authority Key Identifier:
keyid:E7:60:12:6D:CE:78:BC:16:E6:6C:2E:6E:76:35:84:8A:C4:68:46:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/52ASbc54vBbmbC5udjWEisRoRq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/hIq-eN_v5lJpoRH6pFyb37DCuN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/52ASbc54vBbmbC5udjWEisRoRq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.247.102.0/24
Signature Algorithm: sha256WithRSAEncryption
45:f0:3c:95:43:10:3e:69:0d:8f:2e:53:cd:d1:7d:94:cc:d0:
f0:14:e9:27:e3:8b:c6:0c:fb:56:ee:5f:9e:d7:37:85:e7:1c:
03:0c:c4:bb:34:18:d7:88:5c:07:1e:b3:df:a7:ba:44:8f:cf:
79:89:19:2e:43:47:5b:b1:bb:d1:f8:56:ca:53:bb:7c:7d:5c:
9d:ea:15:71:c5:c8:3f:bb:0d:d1:5c:84:5a:cc:0d:07:ee:f5:
d2:90:10:b8:7d:6e:d8:76:52:a9:80:45:23:5c:79:ca:79:52:
8d:d7:6a:29:72:e4:54:9e:9c:db:c7:f5:0e:f8:46:fa:4e:e6:
99:e9:e5:af:93:35:59:0f:ab:c1:68:7e:60:5e:dd:dc:b9:58:
33:32:fe:ec:7d:62:16:16:55:c4:ec:61:ff:94:0d:8c:4a:f6:
97:ac:26:6b:98:87:1c:ac:c4:f6:8f:b3:35:23:31:3d:8d:d5:
a5:75:73:4a:3f:48:97:08:24:fc:93:75:c8:d2:18:74:18:89:
30:3e:78:b1:f3:30:f5:3c:dc:b9:40:3d:b7:e6:85:1c:e7:44:
2f:08:fd:69:ec:ac:b8:e3:44:34:89:7e:be:9b:b8:92:53:6a:
10:d5:6d:69:8f:91:6a:cf:e9:cc:3f:73:61:3b:11:1a:61:46:
57:40:53:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:34 2023 by rpki-client on console-ams.rpki-client.org