Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/8hUxurUj6faOErtqW-oUgcga9MQ.roa
File: 8hUxurUj6faOErtqW-oUgcga9MQ.roa (raw, json)
Hash identifier: 1GSBZAzCw6yvXuU359eByQSXl1QGRbpaNTliOD9Pu+s=
Subject key identifier: F2:15:31:BA:B5:23:E9:F6:8E:12:BB:6A:5B:EA:14:81:C8:1A:F4:C4
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018335C02C40F54F659A37509DFE51213757
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/8hUxurUj6faOErtqW-oUgcga9MQ.roa
Signing time: Tue 13 Sep 2022 07:28:50 +0000
ROA not before: Tue 13 Sep 2022 07:28:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2914
IP address blocks: 91.186.220.0/22 maxlen: 24
83.147.244.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:35:c0:2c:40:f5:4f:65:9a:37:50:9d:fe:51:21:37:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Sep 13 07:28:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f21531bab523e9f68e12bb6a5bea1481c81af4c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:d8:ed:dd:4b:5f:9a:5f:19:05:cb:8a:8b:e6:
31:77:64:a9:d1:5b:51:de:c2:e0:d7:62:76:d9:a5:
39:b4:d2:fd:a2:a1:44:fd:03:85:7c:ad:fb:d3:86:
b2:e2:64:e6:a1:2f:91:69:0a:4d:68:db:ac:46:20:
8d:bb:00:85:33:41:df:13:cb:d1:c9:bb:d6:92:61:
67:b4:81:7d:78:53:1b:1b:34:7c:80:42:d7:97:ad:
d2:74:ab:da:97:b4:45:f2:1d:3a:48:8f:f7:59:92:
23:34:d7:cf:96:ba:f7:e5:08:89:53:4c:6f:43:4f:
80:b4:fc:c9:c1:61:ed:f8:c5:27:34:67:db:94:63:
f0:50:4f:7a:97:63:a7:91:c7:68:c7:6f:d9:07:25:
a4:ea:3c:61:13:7e:a2:6e:be:0e:3f:25:b2:fc:a9:
80:87:91:d2:4f:14:eb:7d:2e:8a:9e:f1:a9:2a:fc:
bd:51:42:e1:16:5a:f6:d1:8c:96:a6:6e:79:26:61:
99:09:f2:a6:56:75:df:71:ae:98:a2:78:02:8e:c5:
4d:cd:70:a4:9c:9a:74:5e:60:c8:b2:c2:cb:53:b8:
d5:16:4f:84:b6:cd:2c:aa:bd:19:85:ec:b9:58:b9:
ca:14:c6:62:51:eb:79:e6:b9:0d:f4:29:c6:77:e6:
72:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:15:31:BA:B5:23:E9:F6:8E:12:BB:6A:5B:EA:14:81:C8:1A:F4:C4
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/8hUxurUj6faOErtqW-oUgcga9MQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.244.0/22
91.186.220.0/22
Signature Algorithm: sha256WithRSAEncryption
27:97:97:69:74:e8:e8:b8:50:17:7a:b6:99:fc:72:e8:90:dd:
5b:9a:71:20:85:a7:77:43:8c:e0:47:9a:ee:43:5b:95:af:01:
ac:c5:a7:ee:fc:71:8e:01:b2:34:5c:29:f4:2e:ed:72:b6:0c:
8c:62:f7:ae:a4:60:c0:d5:9f:9c:05:62:d0:87:e8:d9:79:9b:
fb:33:96:b3:28:56:cc:fa:f8:ca:3d:41:b5:ec:b6:bc:58:d5:
fb:fb:a7:12:97:a3:e2:29:2e:0d:33:91:5a:69:f2:c4:59:41:
aa:ac:60:3c:9a:70:72:87:c6:aa:83:44:6a:48:09:47:c9:78:
09:16:67:78:f9:a2:93:b6:fb:d1:88:59:64:55:13:54:aa:81:
79:02:c3:64:cd:70:2b:db:a1:55:22:3e:24:1d:f5:ff:e8:a8:
e0:9f:ef:3b:f6:4b:f7:48:ea:58:90:e9:2a:b2:d9:84:67:98:
d9:ba:33:ed:56:08:e4:0e:dd:43:fa:02:e9:27:76:68:97:bb:
62:e1:c8:ae:a2:fd:ff:10:3d:84:ff:62:e1:87:96:80:51:bf:
e2:80:a0:81:5d:a2:0b:7a:8b:7d:31:cc:10:1a:ee:4e:11:bf:
ad:9d:2e:d0:2c:c7:00:98:ea:3a:fa:c6:56:df:2d:c4:d3:56:
41:ac:82:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:38 2023 by rpki-client on console-ams.rpki-client.org