Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/850d79-ccb8-4bcf-8b06-e5617c366caa/1/7ROP5lt8bDiHI2d8MHWk0kVPvQE.roa
File: 7ROP5lt8bDiHI2d8MHWk0kVPvQE.roa (raw, json)
Hash identifier: kDKdbhs7GAu09ZdGitcPHDK0wOPzXU4b0O5l4NQm7Zs=
Subject key identifier: ED:13:8F:E6:5B:7C:6C:38:87:23:67:7C:30:75:A4:D2:45:4F:BD:01
Certificate issuer: /CN=0b69427ba47680aefdfa08513e61466f767cebdf
Certificate serial: 689355
Authority key identifier: 0B:69:42:7B:A4:76:80:AE:FD:FA:08:51:3E:61:46:6F:76:7C:EB:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C2lCe6R2gK79-ghRPmFGb3Z8698.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/850d79-ccb8-4bcf-8b06-e5617c366caa/1/7ROP5lt8bDiHI2d8MHWk0kVPvQE.roa
Signing time: Sat 01 Jan 2022 00:56:08 +0000
ROA not before: Sat 01 Jan 2022 00:56:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 146.19.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6853461 (0x689355)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b69427ba47680aefdfa08513e61466f767cebdf
Validity
Not Before: Jan 1 00:56:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed138fe65b7c6c388723677c3075a4d2454fbd01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f3:40:80:e2:bb:6c:a8:30:43:b1:76:10:5e:
3e:09:9b:7d:3a:b0:22:bb:49:a3:5c:79:71:3e:5d:
9a:dd:c2:da:dc:2d:a3:3d:16:93:17:8d:89:c1:ff:
fa:8a:9b:bf:1c:83:fd:a9:43:f5:f5:90:6f:f0:44:
5c:e5:73:26:6f:1e:eb:89:a9:51:90:cc:c6:6f:9f:
dc:dc:0c:ec:95:63:0d:eb:d4:9a:03:60:36:9f:16:
33:56:3b:0d:d7:45:69:8a:95:4e:47:ed:1e:6e:50:
9b:6a:63:86:3d:57:86:e0:ec:69:b5:37:3e:58:96:
2f:67:3f:7c:f8:6f:70:1d:f0:11:bc:86:e3:29:b7:
a5:e6:3c:d1:2b:a8:60:4e:4a:9b:06:bd:70:42:ea:
9d:b9:5b:10:f3:40:2b:9a:00:ac:77:4e:a7:3a:58:
6f:2b:51:9b:c0:48:90:f3:b8:97:44:c3:90:88:a7:
ef:ba:3f:e1:f4:33:8a:2e:69:59:34:2d:2a:e2:10:
a4:d0:f2:29:32:1f:a3:30:46:2d:53:11:44:81:34:
13:cf:37:1b:ca:63:90:5d:68:64:8b:a5:49:af:a9:
48:24:ea:cb:a3:76:93:7b:60:e9:f7:10:05:28:15:
8e:39:e3:30:15:34:14:72:b1:3b:70:cf:e4:1d:8e:
80:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:13:8F:E6:5B:7C:6C:38:87:23:67:7C:30:75:A4:D2:45:4F:BD:01
X509v3 Authority Key Identifier:
keyid:0B:69:42:7B:A4:76:80:AE:FD:FA:08:51:3E:61:46:6F:76:7C:EB:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C2lCe6R2gK79-ghRPmFGb3Z8698.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/850d79-ccb8-4bcf-8b06-e5617c366caa/1/7ROP5lt8bDiHI2d8MHWk0kVPvQE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/850d79-ccb8-4bcf-8b06-e5617c366caa/1/C2lCe6R2gK79-ghRPmFGb3Z8698.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.111.0/24
Signature Algorithm: sha256WithRSAEncryption
91:0a:59:cb:e4:4d:94:47:ee:b6:41:04:15:24:c8:21:04:38:
83:9f:5b:12:6e:22:2f:51:d7:d6:99:22:11:6c:57:42:e1:fa:
4a:7a:f2:01:28:b1:1f:73:37:5e:30:5f:48:5d:11:36:3e:e7:
8d:0e:e2:48:fc:d5:bd:d1:e8:a4:1d:62:7d:eb:e7:29:fe:83:
e8:c9:6e:3f:ea:7d:3a:9d:40:10:fe:d0:bb:be:a5:5a:3c:47:
d0:f3:6d:22:6e:91:05:00:c9:fb:c9:ba:22:29:e5:ba:59:cd:
e0:08:e0:6e:4b:dc:cf:6a:e9:2a:29:d8:2e:b4:4e:5f:06:3a:
88:49:ee:11:96:3c:a7:4e:9e:3e:e3:08:e4:d5:3f:b8:8a:2b:
58:66:a5:c7:3f:6a:04:e1:7e:44:25:4c:83:86:23:bb:09:37:
d2:25:c8:53:ed:fd:7d:30:b4:e0:d7:11:66:8f:16:63:18:9d:
b9:7c:5c:0b:b5:e5:bb:27:bf:8c:3b:0a:53:c8:87:c5:21:47:
ca:27:a2:85:fa:8b:f8:84:f5:c3:78:ec:d2:73:a3:f9:c4:96:
d9:b6:b3:c6:80:0d:33:79:c7:cf:e5:69:3f:ed:ad:d4:ac:b9:
dc:63:3a:27:2a:ac:f7:8e:d9:ae:7b:23:a7:84:cf:75:f3:0e:
fc:3a:8e:40
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDaJNVMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDBi
Njk0MjdiYTQ3NjgwYWVmZGZhMDg1MTNlNjE0NjZmNzY3Y2ViZGYwHhcNMjIwMTAx
MDA1NjA4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhlZDEzOGZlNjViN2M2
YzM4ODcyMzY3N2MzMDc1YTRkMjQ1NGZiZDAxMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEArvNAgOK7bKgwQ7F2EF4+CZt9OrAiu0mjXHlxPl2a3cLa3C2j
PRaTF42Jwf/6ipu/HIP9qUP19ZBv8ERc5XMmbx7rialRkMzGb5/c3AzslWMN69Sa
A2A2nxYzVjsN10VpipVOR+0eblCbamOGPVeG4OxptTc+WJYvZz98+G9wHfARvIbj
Kbel5jzRK6hgTkqbBr1wQuqduVsQ80ArmgCsd06nOlhvK1GbwEiQ87iXRMOQiKfv
uj/h9DOKLmlZNC0q4hCk0PIpMh+jMEYtUxFEgTQTzzcbymOQXWhki6VJr6lIJOrL
o3aTe2Dp9xAFKBWOOeMwFTQUcrE7cM/kHY6AHQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFO0Tj+ZbfGw4hyNnfDB1pNJFT70BMB8GA1UdIwQYMBaAFAtpQnukdoCu/foI
UT5hRm92fOvfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
QzJsQ2U2UjJnSzc5LWdoUlBtRkdiM1o4Njk4LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9mZS84NTBkNzktY2NiOC00YmNmLThiMDYtZTU2MTdjMzY2Y2FhLzEv
N1JPUDVsdDhiRGlISTJkOE1IV2swa1ZQdlFFLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS84
NTBkNzktY2NiOC00YmNmLThiMDYtZTU2MTdjMzY2Y2FhLzEvQzJsQ2U2UjJnSzc5
LWdoUlBtRkdiM1o4Njk4LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkhNvMA0GCSqGSIb3DQEBCwUAA4IB
AQCRClnL5E2UR+62QQQVJMghBDiDn1sSbiIvUdfWmSIRbFdC4fpKevIBKLEfczde
MF9IXRE2PueNDuJI/NW90eikHWJ96+cp/oPoyW4/6n06nUAQ/tC7vqVaPEfQ820i
bpEFAMn7yboiKeW6Wc3gCOBuS9zPaukqKdgutE5fBjqISe4RljynTp4+4wjk1T+4
iitYZqXHP2oE4X5EJUyDhiO7CTfSJchT7f19MLTg1xFmjxZjGJ25fFwLteW7J7+M
OwpTyIfFIUfKJ6KF+ov4hPXDeOzSc6P5xJbZtrPGgA0zecfP5Wk/7a3UrLncYzon
Kqz3jtmueyOnhM918w78Oo5A
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:51 2023 by rpki-client on console-ams.rpki-client.org