Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/861c75-dd03-437b-9fc7-890522c6105b/1/fIgrDiAz0aQByF2zsWNYEz1c88Q.roa
File: fIgrDiAz0aQByF2zsWNYEz1c88Q.roa (raw, json)
Hash identifier: Yh77reRALOT85WgASg+iXAVMk+fuCvP38dbtWCKMJik=
Subject key identifier: 7C:88:2B:0E:20:33:D1:A4:01:C8:5D:B3:B1:63:58:13:3D:5C:F3:C4
Certificate issuer: /CN=430a5648e1d46b662f4d1dcc066d39427c65f0d1
Certificate serial: 09359636
Authority key identifier: 43:0A:56:48:E1:D4:6B:66:2F:4D:1D:CC:06:6D:39:42:7C:65:F0:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwpWSOHUa2YvTR3MBm05Qnxl8NE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/861c75-dd03-437b-9fc7-890522c6105b/1/fIgrDiAz0aQByF2zsWNYEz1c88Q.roa
Signing time: Sat 01 Jan 2022 01:56:05 +0000
ROA not before: Sat 01 Jan 2022 01:56:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2439
IP address blocks: 147.215.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154506806 (0x9359636)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=430a5648e1d46b662f4d1dcc066d39427c65f0d1
Validity
Not Before: Jan 1 01:56:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7c882b0e2033d1a401c85db3b16358133d5cf3c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:7f:ad:0d:49:fe:81:3c:d6:4c:4a:7f:48:75:
4e:ac:d2:40:f0:0f:79:08:c1:f6:74:f6:03:38:2c:
c1:f1:5e:df:d3:68:1e:12:28:ca:59:e9:5e:c0:75:
3d:36:e6:88:b7:ff:23:7a:51:dc:90:71:47:3a:6a:
89:95:90:b6:f8:23:e4:3a:dc:01:4e:24:a0:0c:ed:
ea:5f:1c:3d:ab:70:29:d8:d7:7e:7b:98:27:f0:ba:
d2:11:09:b9:49:1c:9b:02:63:af:5d:a1:d8:44:4d:
c5:16:9f:67:48:f2:7e:29:72:bc:52:33:8f:88:44:
e7:96:50:b7:12:ed:9c:ee:93:17:0d:dc:33:de:6e:
b9:2d:23:c9:4a:fc:00:7d:61:a1:a0:70:f6:50:64:
91:9a:28:7f:be:e5:15:79:bf:d6:5e:67:f5:94:45:
89:85:00:b5:94:c3:c8:25:b7:42:68:12:83:51:eb:
f6:98:c1:da:b3:67:38:84:7c:8b:a2:3d:aa:1a:07:
24:08:51:29:d0:7f:a2:1c:9e:28:90:67:89:7f:57:
e4:61:3a:94:51:28:bb:38:d3:86:77:6d:1f:85:2e:
be:a6:a5:c2:92:0c:2b:1a:f0:fc:53:c1:00:95:37:
62:45:46:40:bd:1b:68:fd:72:e4:bb:0d:3b:da:00:
c7:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:88:2B:0E:20:33:D1:A4:01:C8:5D:B3:B1:63:58:13:3D:5C:F3:C4
X509v3 Authority Key Identifier:
keyid:43:0A:56:48:E1:D4:6B:66:2F:4D:1D:CC:06:6D:39:42:7C:65:F0:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwpWSOHUa2YvTR3MBm05Qnxl8NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/861c75-dd03-437b-9fc7-890522c6105b/1/fIgrDiAz0aQByF2zsWNYEz1c88Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/861c75-dd03-437b-9fc7-890522c6105b/1/QwpWSOHUa2YvTR3MBm05Qnxl8NE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.215.0.0/16
Signature Algorithm: sha256WithRSAEncryption
41:e7:5a:01:63:cc:7a:5f:7f:53:10:b1:53:c4:39:a2:77:4a:
d0:c6:89:fd:24:ff:dc:37:5e:92:0b:97:21:ef:56:88:28:99:
1f:0a:b4:b9:d4:94:d9:66:c6:67:29:ec:cc:44:e9:d5:c7:8d:
50:9a:1a:83:01:39:e5:be:0c:80:0a:bc:17:7c:e2:3a:71:89:
00:93:d5:c2:cd:05:9e:25:94:6d:1d:fd:22:9c:9e:0d:ce:5f:
d6:d3:f0:0f:ee:e2:f1:f1:5a:f4:5e:eb:0e:31:40:9b:a4:c9:
5c:32:bf:4c:51:ea:b1:9f:ac:33:69:22:57:29:ce:42:3a:ff:
27:eb:5f:9a:1a:5e:fd:7e:78:49:e1:a4:81:3e:1d:3e:bf:b0:
ec:bc:00:13:29:77:de:dc:b0:62:d9:de:24:f6:86:1c:03:5b:
35:4c:29:0a:a7:1b:8f:aa:a8:25:b4:6b:83:c9:73:f4:60:8e:
f1:e5:39:5c:8e:21:37:69:5b:a0:17:3d:c4:88:6d:4c:24:42:
8f:d5:3d:14:4f:b3:a2:08:e0:2e:f4:a8:51:a9:c6:15:58:48:
fc:1e:ac:0c:2e:9a:ed:8c:ea:16:e8:0d:86:d8:16:ce:4c:b6:
af:cf:4d:de:b1:5c:6a:2c:80:54:b1:de:3b:6d:8f:9d:18:31:
ed:c6:a8:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:22 2024 by rpki-client on console-fra.rpki-client.org