Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/878a1c-a7a0-4fd1-98a0-33e44621db07/1/AwSsB6iv0pOFQtUTlMNNQpVjiC0.roa
File: AwSsB6iv0pOFQtUTlMNNQpVjiC0.roa (raw, json)
Hash identifier: EVRirFpbDNC8ABmAChc10TtEQzyKBwD7dnXq5qTFthM=
Subject key identifier: 03:04:AC:07:A8:AF:D2:93:85:42:D5:13:94:C3:4D:42:95:63:88:2D
Certificate issuer: /CN=b31f0671f399e4da20a48bd327c47afa4a41ffc3
Certificate serial: 0A8BFC54
Authority key identifier: B3:1F:06:71:F3:99:E4:DA:20:A4:8B:D3:27:C4:7A:FA:4A:41:FF:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sx8GcfOZ5NogpIvTJ8R6-kpB_8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/878a1c-a7a0-4fd1-98a0-33e44621db07/1/AwSsB6iv0pOFQtUTlMNNQpVjiC0.roa
Signing time: Sat 01 Jan 2022 13:56:49 +0000
ROA not before: Sat 01 Jan 2022 13:56:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2852
IP address blocks: 147.231.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176946260 (0xa8bfc54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b31f0671f399e4da20a48bd327c47afa4a41ffc3
Validity
Not Before: Jan 1 13:56:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0304ac07a8afd2938542d51394c34d429563882d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:db:8c:bc:1a:6d:c3:6f:5b:ea:82:00:ea:15:
0b:f2:25:52:6d:7b:cc:c0:2a:30:96:be:0f:87:6b:
0f:38:be:4c:6b:28:96:97:bf:6a:6f:a9:c4:a6:e7:
50:9a:a7:ee:6a:5e:d6:ba:fe:65:f0:20:07:e6:e5:
4e:f9:27:c2:b3:62:1f:28:f1:78:d4:36:dc:bc:de:
e1:f2:b8:dd:d9:92:1c:95:cc:52:fa:52:2f:c3:f7:
ee:34:7a:33:8f:cf:3f:94:e8:39:3d:d9:2a:db:9a:
7e:1f:7f:5d:c8:a9:76:b4:b5:00:ff:80:b3:25:61:
61:d9:66:d4:a9:4b:5e:9f:c3:8e:4e:bc:bb:96:41:
3e:dd:bc:e2:40:bb:f8:1d:77:20:59:5d:62:4b:72:
db:7f:95:5a:68:40:e9:f7:18:25:0f:62:75:f3:28:
b9:8e:32:dc:dc:da:a9:02:07:b6:a6:a1:7d:c8:d9:
ff:e5:f1:f3:15:7d:9f:96:58:c9:c7:75:be:5d:f0:
e9:c3:c6:ad:f7:38:8d:33:c8:2d:71:53:77:fa:75:
60:e0:5b:6c:82:b4:45:7b:0f:be:af:2a:af:60:a1:
f4:95:73:ac:dd:29:8f:8d:bd:af:31:d0:3e:e2:a7:
ce:d3:2e:a1:af:74:4c:3f:96:66:45:e5:eb:12:53:
e8:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:04:AC:07:A8:AF:D2:93:85:42:D5:13:94:C3:4D:42:95:63:88:2D
X509v3 Authority Key Identifier:
keyid:B3:1F:06:71:F3:99:E4:DA:20:A4:8B:D3:27:C4:7A:FA:4A:41:FF:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sx8GcfOZ5NogpIvTJ8R6-kpB_8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/878a1c-a7a0-4fd1-98a0-33e44621db07/1/AwSsB6iv0pOFQtUTlMNNQpVjiC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/878a1c-a7a0-4fd1-98a0-33e44621db07/1/sx8GcfOZ5NogpIvTJ8R6-kpB_8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.231.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2a:4a:4a:30:95:54:b9:ae:9a:18:23:12:57:7d:46:55:08:c2:
33:8a:d9:69:62:66:57:e9:ac:39:4f:46:ff:a8:04:56:1c:43:
1e:63:ae:e7:30:4f:f9:ab:8b:19:15:a4:57:f0:3f:8e:1c:4c:
13:02:af:af:f1:b6:aa:65:eb:e4:3a:49:66:5d:a6:bf:f4:7e:
c7:b8:ce:8b:e6:2e:d1:45:c8:68:fe:53:4d:13:5c:c3:ab:73:
70:a2:9f:0c:4c:b6:ee:17:98:3b:f6:f0:98:bd:48:b2:43:e1:
de:d4:17:a2:5b:0d:7e:68:92:02:bd:be:1e:8d:10:de:d1:12:
b9:fc:d4:c4:fb:33:24:cd:fc:4d:c5:be:a9:71:45:f5:19:61:
9f:1e:12:db:56:55:37:bb:1a:fe:c5:7c:fc:6d:d7:20:1c:7d:
e8:26:66:c6:1d:da:fd:b5:c0:a3:d1:4b:e4:27:c2:7a:01:50:
6a:c1:ef:42:fc:25:ec:2a:a3:b8:01:c0:e3:ec:b8:15:56:f3:
9e:bb:ab:d7:c9:c6:75:6b:09:1d:b1:cf:19:1a:51:fd:37:c3:
54:4d:b9:0d:63:86:e4:02:e6:58:a6:f0:0a:13:8f:84:d5:6b:
5a:82:de:7d:e8:b4:f4:b0:5c:4b:9b:13:ea:b1:53:f0:56:3b:
74:c6:24:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:23 2024 by rpki-client on console-fra.rpki-client.org