Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9e2dfd-f2e9-416d-8f1f-bb3431fe0285/1/mM4IQaRTBWAqUqVjDieZ1xyL-GY.roa
File: mM4IQaRTBWAqUqVjDieZ1xyL-GY.roa (raw, json)
Hash identifier: C30Y7kz1vOn+K8CB3ebR3K3HSj/3l+VjvxKDIfHLvwM=
Subject key identifier: 98:CE:08:41:A4:53:05:60:2A:52:A5:63:0E:27:99:D7:1C:8B:F8:66
Certificate issuer: /CN=a0606b8aad553f0948c7a894d68671870eb82cb0
Certificate serial: 0457C538
Authority key identifier: A0:60:6B:8A:AD:55:3F:09:48:C7:A8:94:D6:86:71:87:0E:B8:2C:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oGBriq1VPwlIx6iU1oZxhw64LLA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9e2dfd-f2e9-416d-8f1f-bb3431fe0285/1/mM4IQaRTBWAqUqVjDieZ1xyL-GY.roa
Signing time: Sat 01 Jan 2022 14:07:13 +0000
ROA not before: Sat 01 Jan 2022 14:07:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2259
IP address blocks: 147.100.144.0/23 maxlen: 23
147.100.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72860984 (0x457c538)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0606b8aad553f0948c7a894d68671870eb82cb0
Validity
Not Before: Jan 1 14:07:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=98ce0841a45305602a52a5630e2799d71c8bf866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:54:eb:e8:2e:6e:13:5f:ac:c6:8d:16:8f:a9:
7a:c9:e5:34:b7:79:24:0c:f3:e0:63:29:df:24:65:
fb:da:67:fb:06:16:f3:f1:39:5c:42:7a:cf:53:c6:
e2:1c:24:17:76:06:80:b8:8c:72:10:ad:0c:2b:c7:
f2:16:2d:46:9e:dd:fa:0e:46:ca:04:66:12:4d:c9:
8c:e9:94:e2:59:e2:26:b2:c9:19:4d:67:87:2b:9b:
0a:fa:ab:ad:1e:84:1d:eb:ff:f2:c1:66:23:65:bd:
29:6e:a3:fc:c8:47:71:a5:17:2a:69:74:1c:46:fe:
cf:e4:f9:d7:d9:6f:42:e6:28:fc:72:90:33:0c:70:
a9:60:23:14:54:d3:3d:10:80:b5:b3:6e:5a:4f:60:
96:ce:89:d1:12:4f:b0:b0:14:8f:19:ec:a3:09:3c:
b6:d5:01:38:cc:1c:88:95:dc:f8:e4:d0:f5:9a:4f:
01:16:9a:de:d4:f4:05:b0:43:87:17:25:b1:34:70:
ea:c6:63:a5:12:59:b6:07:7c:5a:c2:54:5c:33:75:
82:e2:99:bd:7c:07:df:d8:32:0f:2a:99:9b:af:5e:
e0:ab:47:b8:4e:d8:60:b7:d1:6d:d9:45:9c:6a:3b:
5d:3d:fe:23:6a:8e:87:93:8d:19:d6:d2:1a:85:0f:
aa:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:CE:08:41:A4:53:05:60:2A:52:A5:63:0E:27:99:D7:1C:8B:F8:66
X509v3 Authority Key Identifier:
keyid:A0:60:6B:8A:AD:55:3F:09:48:C7:A8:94:D6:86:71:87:0E:B8:2C:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oGBriq1VPwlIx6iU1oZxhw64LLA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9e2dfd-f2e9-416d-8f1f-bb3431fe0285/1/mM4IQaRTBWAqUqVjDieZ1xyL-GY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9e2dfd-f2e9-416d-8f1f-bb3431fe0285/1/oGBriq1VPwlIx6iU1oZxhw64LLA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.100.144.0/23
147.100.188.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:7f:00:64:59:6a:df:af:80:3c:9c:86:93:69:af:8a:b4:af:
1a:f0:98:a8:05:dd:2e:b3:4e:84:2e:35:a1:46:be:a1:14:8c:
81:72:94:3b:a2:f3:a6:2e:ca:88:78:2b:35:92:68:ce:7b:7d:
11:1f:17:20:67:00:4a:39:24:48:31:b9:26:81:3b:80:9e:34:
26:4f:d4:8b:df:de:3f:3b:51:53:38:95:b3:f7:f9:3f:39:06:
82:0e:2e:61:68:92:25:40:e9:9a:2d:c4:d3:1c:7e:9f:38:62:
3b:98:16:1d:91:e2:9a:c3:65:dc:90:95:53:af:09:c3:95:67:
bc:63:43:93:3f:b7:87:fa:95:51:15:ee:c8:ea:8d:7c:c7:b3:
bb:86:31:23:34:f4:66:09:f4:1d:dc:31:1d:a1:61:51:6e:7c:
f4:db:9d:f1:c2:eb:0c:1d:6a:7b:08:d2:4a:35:05:6e:a8:d0:
2f:1f:ad:34:65:fb:71:94:1b:5e:03:23:f1:c0:e0:fd:d8:94:
6a:a5:42:28:2a:32:66:6f:57:bc:0f:8e:4a:98:76:38:88:92:
a4:3e:0e:50:94:bb:7f:cb:ae:fd:a5:39:22:33:4d:01:bb:70:
5f:2b:ee:bf:74:89:c6:c8:11:40:5f:f1:ae:51:46:05:54:c8:
9d:3b:68:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:57 2024 by rpki-client on console-fra.rpki-client.org