Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/dea46a-b58a-4609-9df8-0e037f3d5805/1/wvZrGIGPv42Q3C8tSBJV-JYskS0.roa
File: wvZrGIGPv42Q3C8tSBJV-JYskS0.roa (raw, json)
Hash identifier: j150LTWK9rj3lv7Y8ESNQNJObDA4IqwSGNhj20c1iL8=
Subject key identifier: C2:F6:6B:18:81:8F:BF:8D:90:DC:2F:2D:48:12:55:F8:96:2C:91:2D
Certificate issuer: /CN=28af17c00757b9860ff6a56ffe2f47e69094e2f6
Certificate serial: 804B91
Authority key identifier: 28:AF:17:C0:07:57:B9:86:0F:F6:A5:6F:FE:2F:47:E6:90:94:E2:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KK8XwAdXuYYP9qVv_i9H5pCU4vY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/dea46a-b58a-4609-9df8-0e037f3d5805/1/wvZrGIGPv42Q3C8tSBJV-JYskS0.roa
Signing time: Sat 01 Jan 2022 01:54:16 +0000
ROA not before: Sat 01 Jan 2022 01:54:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48737
IP address blocks: 146.19.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8407953 (0x804b91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28af17c00757b9860ff6a56ffe2f47e69094e2f6
Validity
Not Before: Jan 1 01:54:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c2f66b18818fbf8d90dc2f2d481255f8962c912d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:41:78:6d:12:47:66:cc:05:42:75:fc:37:f1:
c4:57:07:13:8a:c4:70:1e:4e:c8:ff:ab:99:f1:f5:
84:ef:58:99:df:cd:ef:fa:12:0d:96:30:4b:94:fd:
34:27:fd:89:98:e2:db:e3:56:bd:5c:f4:fe:c9:27:
64:e6:f0:21:a0:c3:de:37:4d:cb:87:4d:d0:95:23:
82:6e:dd:48:a2:25:cc:4b:80:d9:17:55:bb:e9:15:
69:e1:8b:7b:25:13:cb:3c:41:e7:86:09:bc:98:41:
7d:ea:fa:ce:69:26:c7:af:4f:a9:10:93:c2:ae:2c:
f7:40:f1:78:d8:9f:cb:65:6f:14:ee:5f:de:bd:79:
c5:c6:52:ad:a9:e5:db:09:01:ac:22:c4:d8:77:76:
e7:d9:b3:c2:6b:6e:3a:07:a0:1f:84:64:b0:95:93:
11:be:99:49:b3:c9:b5:ab:f5:a3:99:a4:2e:47:94:
ed:af:9a:af:b7:d5:0a:d1:d3:06:a1:34:a4:65:92:
02:8c:d2:76:3b:3a:bd:75:6a:1c:fd:72:9d:03:c5:
09:bf:14:4b:f5:8c:8f:ca:22:58:46:62:bc:a4:7a:
2d:e1:55:18:89:08:8b:41:1c:62:99:19:3a:8b:4b:
fb:11:2b:dc:ef:3c:02:03:b7:b8:ae:9a:50:57:a0:
d3:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:F6:6B:18:81:8F:BF:8D:90:DC:2F:2D:48:12:55:F8:96:2C:91:2D
X509v3 Authority Key Identifier:
keyid:28:AF:17:C0:07:57:B9:86:0F:F6:A5:6F:FE:2F:47:E6:90:94:E2:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KK8XwAdXuYYP9qVv_i9H5pCU4vY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/dea46a-b58a-4609-9df8-0e037f3d5805/1/wvZrGIGPv42Q3C8tSBJV-JYskS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/dea46a-b58a-4609-9df8-0e037f3d5805/1/KK8XwAdXuYYP9qVv_i9H5pCU4vY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.12.0/24
Signature Algorithm: sha256WithRSAEncryption
66:ff:ad:89:01:77:c5:fe:b0:f0:ff:a1:42:c4:ce:3c:85:5f:
6a:d8:40:42:82:55:a2:39:6a:96:c4:bd:41:b1:30:d4:51:7c:
09:0b:3a:55:49:18:53:73:ba:2f:74:b4:f1:b6:1d:92:80:64:
48:f8:74:c5:89:d0:3c:50:35:b1:16:20:9f:28:f2:c8:e5:5d:
e8:d9:9d:c2:de:7d:00:30:c1:dd:04:bd:f3:46:e3:84:46:8e:
7c:8b:24:3c:a7:2d:13:a0:ac:84:e1:e5:a9:70:ad:71:ac:34:
ed:e1:fe:07:20:f7:5d:9b:f0:92:fc:20:7a:e0:ba:f8:7c:56:
92:bb:f1:82:07:3d:87:8d:1d:ef:d4:ad:da:6b:50:de:7d:8b:
7f:5f:37:28:05:8c:5a:f8:71:70:d8:fa:fd:44:66:59:c1:44:
62:8f:59:76:aa:d7:fd:1e:d6:35:19:56:35:bc:41:14:85:41:
72:84:53:c0:4e:3a:16:a2:d5:45:cd:04:25:ca:1d:8d:ab:38:
c7:fe:44:6f:02:7e:cc:6b:f1:ae:2c:d6:33:1b:3e:5e:e8:2f:
98:73:bf:97:70:9d:97:a4:8c:25:0d:a7:eb:96:e5:ad:bf:8d:
9c:6e:8c:f4:09:80:f1:16:88:c7:24:f3:10:a8:a5:f8:83:58:
8d:91:38:2b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAIBLkTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
OGFmMTdjMDA3NTdiOTg2MGZmNmE1NmZmZTJmNDdlNjkwOTRlMmY2MB4XDTIyMDEw
MTAxNTQxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzJmNjZiMTg4MThm
YmY4ZDkwZGMyZjJkNDgxMjU1Zjg5NjJjOTEyZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALdBeG0SR2bMBUJ1/DfxxFcHE4rEcB5OyP+rmfH1hO9Ymd/N
7/oSDZYwS5T9NCf9iZji2+NWvVz0/sknZObwIaDD3jdNy4dN0JUjgm7dSKIlzEuA
2RdVu+kVaeGLeyUTyzxB54YJvJhBfer6zmkmx69PqRCTwq4s90DxeNify2VvFO5f
3r15xcZSranl2wkBrCLE2Hd259mzwmtuOgegH4RksJWTEb6ZSbPJtav1o5mkLkeU
7a+ar7fVCtHTBqE0pGWSAozSdjs6vXVqHP1ynQPFCb8US/WMj8oiWEZivKR6LeFV
GIkIi0EcYpkZOotL+xEr3O88AgO3uK6aUFeg06ECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTC9msYgY+/jZDcLy1IElX4liyRLTAfBgNVHSMEGDAWgBQorxfAB1e5hg/2
pW/+L0fmkJTi9jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tLOFh3QWRYdVlZUDlxVnZfaTlINXBDVTR2WS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTYvZGVhNDZhLWI1OGEtNDYwOS05ZGY4LTBlMDM3ZjNkNTgwNS8x
L3d2WnJHSUdQdjQyUTNDOHRTQkpWLUpZc2tTMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTYv
ZGVhNDZhLWI1OGEtNDYwOS05ZGY4LTBlMDM3ZjNkNTgwNS8xL0tLOFh3QWRYdVlZ
UDlxVnZfaTlINXBDVTR2WS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJITDDANBgkqhkiG9w0BAQsFAAOC
AQEAZv+tiQF3xf6w8P+hQsTOPIVfathAQoJVojlqlsS9QbEw1FF8CQs6VUkYU3O6
L3S08bYdkoBkSPh0xYnQPFA1sRYgnyjyyOVd6Nmdwt59ADDB3QS980bjhEaOfIsk
PKctE6CshOHlqXCtcaw07eH+ByD3XZvwkvwgeuC6+HxWkrvxggc9h40d79St2mtQ
3n2Lf183KAWMWvhxcNj6/URmWcFEYo9ZdqrX/R7WNRlWNbxBFIVBcoRTwE46FqLV
Rc0EJcodjas4x/5EbwJ+zGvxrizWMxs+XugvmHO/l3Cdl6SMJQ2n65blrb+NnG6M
9AmA8RaIxyTzEKil+INYjZE4Kw==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:56 2023 by rpki-client on console.sobornost.net