Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/xcI2L8VJWlSha9bmQA3LU4g9MQM.roa
File: xcI2L8VJWlSha9bmQA3LU4g9MQM.roa (raw, json)
Hash identifier: I14HYOXRE9afQBZyvoXmTtaxXLaFSS4ucJNiRkbdr34=
Subject key identifier: C5:C2:36:2F:C5:49:5A:54:A1:6B:D6:E6:40:0D:CB:53:88:3D:31:03
Certificate issuer: /CN=e760126dce78bc16e66c2e6e7635848ac46846af
Certificate serial: 25FB49C0
Authority key identifier: E7:60:12:6D:CE:78:BC:16:E6:6C:2E:6E:76:35:84:8A:C4:68:46:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/52ASbc54vBbmbC5udjWEisRoRq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/xcI2L8VJWlSha9bmQA3LU4g9MQM.roa
Signing time: Sat 02 Jul 2022 09:33:25 +0000
ROA not before: Sat 02 Jul 2022 09:33:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51765
IP address blocks: 146.247.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 637225408 (0x25fb49c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e760126dce78bc16e66c2e6e7635848ac46846af
Validity
Not Before: Jul 2 09:33:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c5c2362fc5495a54a16bd6e6400dcb53883d3103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6e:60:10:21:e6:0c:27:ea:23:5b:e1:6b:28:
05:88:a3:1c:75:3d:6f:7c:2e:58:da:49:f5:fe:ad:
0f:7f:55:73:0a:20:0f:1c:68:1f:2e:8f:96:83:36:
6e:42:d0:0a:85:08:d0:f4:40:cc:73:97:6a:f9:6a:
9b:6d:14:67:99:fc:1d:68:57:34:b0:85:0c:8b:0a:
2a:ff:ec:d4:e4:67:a4:35:a3:9a:76:12:3d:31:c8:
26:9f:55:3f:11:5e:22:bf:bd:08:aa:8e:da:92:ab:
6d:c9:45:e8:5e:1c:4f:2a:4c:ae:cf:b6:c8:ad:7d:
51:2d:ee:b6:3f:ba:da:43:d3:d4:4f:23:32:f0:90:
5a:1b:ff:d4:6d:19:04:f0:18:b8:6b:26:0e:e6:48:
ff:d1:5d:d6:ca:95:78:77:d3:da:75:53:62:64:08:
ce:cd:a2:4f:11:80:ef:de:93:be:ad:43:f0:a6:d8:
9d:e3:4e:8c:7c:75:b3:8a:9f:6b:a9:7c:69:d5:0f:
2d:14:6b:c2:cc:18:42:98:f0:e9:e6:ab:81:8e:8a:
0c:7a:a6:c2:d9:82:13:a7:05:0e:2c:29:c4:de:ad:
84:b7:d2:53:12:1d:f6:bf:ba:68:80:07:16:c6:7b:
39:55:b7:69:b2:82:e8:e4:4f:e7:8a:42:63:dc:e1:
65:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:C2:36:2F:C5:49:5A:54:A1:6B:D6:E6:40:0D:CB:53:88:3D:31:03
X509v3 Authority Key Identifier:
keyid:E7:60:12:6D:CE:78:BC:16:E6:6C:2E:6E:76:35:84:8A:C4:68:46:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/52ASbc54vBbmbC5udjWEisRoRq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/xcI2L8VJWlSha9bmQA3LU4g9MQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/52ASbc54vBbmbC5udjWEisRoRq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.247.101.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:01:a3:70:57:07:a9:90:a1:75:4c:b9:c2:5e:0f:ed:49:a4:
dd:67:1a:2d:01:ab:ec:8f:38:9c:7d:1a:23:b5:45:fe:04:f1:
f9:1e:24:72:23:4e:29:30:a8:27:5f:7e:a3:d9:a2:06:54:f1:
da:59:bf:cc:cf:bf:2c:93:54:72:fb:2c:e2:26:df:e6:7d:5f:
c7:9c:b4:0a:f0:d5:f1:30:fc:a1:cc:06:97:0a:c4:74:92:91:
9f:65:e4:b1:42:fc:2e:6d:d7:db:4d:15:83:02:16:53:2d:dc:
64:82:09:23:54:f8:fb:26:dd:d5:98:08:d1:d8:11:13:74:f6:
90:fe:b8:bc:ac:15:5b:e4:22:7d:6b:ca:c4:4b:e0:bb:85:8b:
6b:54:4a:3d:3e:2a:79:26:c2:ac:4e:9c:a2:7d:84:65:62:05:
41:80:4b:7e:2c:07:45:39:eb:67:29:8a:1f:07:28:0c:12:25:
63:9a:4e:05:bc:e8:d8:c1:3f:55:a6:29:fa:08:38:05:bb:ae:
80:eb:11:5e:1b:a7:8a:32:46:d8:c9:be:9b:87:98:89:c2:46:
58:51:eb:4c:49:d2:1f:42:45:78:8e:a7:49:c4:7f:bc:0d:e5:
0b:84:ab:ff:1b:da:26:c2:c0:66:a3:c0:9a:90:90:8c:e6:74:
e1:65:27:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:34 2023 by rpki-client on console-ams.rpki-client.org