Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/6d74fd-5bb9-42f8-bb51-0d9cd7e8ff36/1/J5OF49aPcg7Cbj_JqpensNM9jPc.roa
File: J5OF49aPcg7Cbj_JqpensNM9jPc.roa (raw, json)
Hash identifier: q82lYSMeuNPWC1CR6Cf4pUNO0uJOks0Mn3e+XPb4eJs=
Subject key identifier: 27:93:85:E3:D6:8F:72:0E:C2:6E:3F:C9:AA:97:A7:B0:D3:3D:8C:F7
Certificate issuer: /CN=01d6ef0479f9fdfa826657dfd8e0ef3668ca1abf
Certificate serial: 0AA6F447
Authority key identifier: 01:D6:EF:04:79:F9:FD:FA:82:66:57:DF:D8:E0:EF:36:68:CA:1A:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AdbvBHn5_fqCZlff2ODvNmjKGr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/6d74fd-5bb9-42f8-bb51-0d9cd7e8ff36/1/J5OF49aPcg7Cbj_JqpensNM9jPc.roa
Signing time: Sat 01 Jan 2022 04:55:53 +0000
ROA not before: Sat 01 Jan 2022 04:55:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2852
IP address blocks: 147.33.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178713671 (0xaa6f447)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01d6ef0479f9fdfa826657dfd8e0ef3668ca1abf
Validity
Not Before: Jan 1 04:55:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=279385e3d68f720ec26e3fc9aa97a7b0d33d8cf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:8c:f5:0d:81:eb:5f:de:c6:57:90:59:bc:d9:
43:b9:02:d2:54:a6:cb:be:83:ac:e8:6b:ab:12:f4:
3c:e4:a4:44:09:17:e2:cf:ba:f9:fa:07:ef:48:38:
99:05:f6:aa:9c:28:07:84:dc:f3:cf:91:49:dd:6c:
36:a9:d6:77:c6:2f:c5:20:4a:d3:3c:92:4b:3c:a1:
c1:b6:58:96:0d:11:52:84:02:07:eb:e4:eb:2e:27:
8a:d3:de:8d:93:5b:31:86:d0:6a:d4:4d:46:b3:f8:
2c:03:3e:34:d5:43:3e:39:be:ed:d2:02:74:45:7a:
b4:88:2c:b9:5f:98:63:ba:b4:7a:90:b2:e6:9a:cc:
e0:59:4c:a9:19:d1:bb:88:e2:94:ba:38:cc:ca:5c:
ad:13:e5:f6:fe:19:e4:aa:c8:4a:2d:51:b2:88:eb:
f9:cc:a2:af:36:0a:7b:6c:ea:43:fe:c6:23:0f:bf:
3f:d6:f7:d7:54:2d:18:b9:9f:71:80:67:87:ee:cd:
ab:2b:33:57:93:9b:d0:3d:32:13:2c:ff:a4:a6:64:
f7:ed:a0:3d:63:5b:32:31:9e:58:ad:69:60:35:04:
6a:f6:5e:46:4a:14:52:7c:67:8d:c3:59:6a:cb:c3:
d2:5f:9a:f0:23:75:1b:53:ec:22:11:dd:48:ac:7f:
b3:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:93:85:E3:D6:8F:72:0E:C2:6E:3F:C9:AA:97:A7:B0:D3:3D:8C:F7
X509v3 Authority Key Identifier:
keyid:01:D6:EF:04:79:F9:FD:FA:82:66:57:DF:D8:E0:EF:36:68:CA:1A:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AdbvBHn5_fqCZlff2ODvNmjKGr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/6d74fd-5bb9-42f8-bb51-0d9cd7e8ff36/1/J5OF49aPcg7Cbj_JqpensNM9jPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/6d74fd-5bb9-42f8-bb51-0d9cd7e8ff36/1/AdbvBHn5_fqCZlff2ODvNmjKGr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.33.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7d:4a:0b:3c:33:89:fd:70:c8:c4:6f:01:e8:f3:3b:5f:0c:b9:
d7:89:9e:09:46:ff:08:8e:7d:b0:bf:60:07:8c:75:1d:3a:e5:
d9:2c:1a:f7:c0:ca:f5:47:4c:6b:58:06:bf:80:df:9f:99:ac:
98:07:d5:93:47:25:3e:0a:42:d3:95:ca:b0:d5:0b:9c:43:1a:
01:e1:ed:28:48:28:e2:63:30:d6:c2:65:e5:54:66:29:7c:86:
c8:2d:4c:5c:bc:a5:1e:72:ae:8a:4b:15:5c:f8:f9:8d:7c:98:
04:1e:7e:8b:a9:cd:b3:7a:9a:65:65:e2:45:d6:21:37:50:22:
08:0e:d9:15:1a:50:af:1f:cf:64:35:5f:8d:44:51:c5:27:7c:
29:6c:f0:fa:cf:a5:6a:b9:c9:d3:aa:dc:00:13:7c:a2:bc:b3:
c4:a2:f1:4d:dd:14:1c:5b:38:09:53:d6:db:bb:d0:58:2e:da:
11:36:11:df:c5:3b:92:5c:d4:f7:f9:20:68:fa:36:ad:6e:fa:
89:c4:43:50:09:c1:06:de:b0:29:6c:63:6f:dc:66:04:a1:c4:
b4:ed:32:7e:52:a3:62:a2:26:5e:b7:98:54:46:d8:9e:10:17:
35:d1:f4:7a:a3:b5:4d:e2:4c:49:82:af:19:c8:43:1d:d7:3c:
b7:a5:11:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:12 2024 by rpki-client on console-fra.rpki-client.org