Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/E7J-fUus9P09M2VQI5uSt7kWNvc.roa
File: E7J-fUus9P09M2VQI5uSt7kWNvc.roa (raw, json)
Hash identifier: s230kW8+AkQLafWFkaKYW9pPsksIWkPKy2HIpOaYHM8=
Subject key identifier: 13:B2:7E:7D:4B:AC:F4:FD:3D:33:65:50:23:9B:92:B7:B9:16:36:F7
Certificate issuer: /CN=2455d7fee4a499ecaf11d2d3da8e389de323412f
Certificate serial: 03C998A9
Authority key identifier: 24:55:D7:FE:E4:A4:99:EC:AF:11:D2:D3:DA:8E:38:9D:E3:23:41:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JFXX_uSkmeyvEdLT2o44neMjQS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/E7J-fUus9P09M2VQI5uSt7kWNvc.roa
Signing time: Sat 01 Jan 2022 14:04:22 +0000
ROA not before: Sat 01 Jan 2022 14:04:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 147.78.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63543465 (0x3c998a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2455d7fee4a499ecaf11d2d3da8e389de323412f
Validity
Not Before: Jan 1 14:04:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=13b27e7d4bacf4fd3d336550239b92b7b91636f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4d:8d:1f:ef:c8:9a:f5:da:5f:ff:f0:01:4a:
4e:e7:bd:e7:31:a5:03:4d:33:2e:51:95:3c:0c:3d:
44:09:db:55:97:61:4d:98:e8:37:d2:e8:ec:55:40:
ac:b7:b7:8b:71:5c:74:34:21:21:b7:c0:d6:4c:01:
96:f7:78:9d:d1:2b:b5:3e:fd:5c:72:4d:80:6d:01:
6c:b4:19:24:f8:14:3f:c4:c1:d9:a4:1c:dc:03:d8:
c1:be:a3:ed:6d:78:5d:c9:16:41:da:dc:be:27:c3:
3b:6a:41:80:d4:24:10:3c:8d:8d:44:7c:a1:9e:23:
51:dd:b0:94:2c:ce:24:95:4f:dd:a1:bb:88:08:75:
24:fe:c0:b7:75:4f:72:48:ca:07:7b:13:02:c0:92:
4f:34:57:bc:39:d7:9c:62:cd:46:4a:5c:7c:37:a6:
c9:ce:75:64:25:89:42:e8:c2:fb:2b:42:33:fc:f9:
d4:d3:91:6f:bd:60:81:7b:0b:6e:9f:d2:92:f5:3f:
27:ae:92:f3:84:88:77:96:db:3f:de:3a:d9:37:cf:
1e:e9:5b:3c:27:b2:5a:1d:e4:af:51:58:ef:53:ae:
e7:5c:27:33:e5:62:c2:6f:18:ef:64:1d:c7:3c:3f:
f2:04:f8:b7:c9:b6:2a:5a:a7:67:0c:68:12:cc:cb:
4f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:B2:7E:7D:4B:AC:F4:FD:3D:33:65:50:23:9B:92:B7:B9:16:36:F7
X509v3 Authority Key Identifier:
keyid:24:55:D7:FE:E4:A4:99:EC:AF:11:D2:D3:DA:8E:38:9D:E3:23:41:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JFXX_uSkmeyvEdLT2o44neMjQS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/E7J-fUus9P09M2VQI5uSt7kWNvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/JFXX_uSkmeyvEdLT2o44neMjQS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.47.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:ba:12:ba:6f:ca:27:1e:ab:c3:35:6e:a9:ee:ee:78:57:37:
0f:f6:e4:6a:8a:b9:c4:a2:03:18:47:96:7d:85:72:b1:c9:a8:
29:0c:e9:54:c1:d6:c4:30:1e:32:9d:c4:4a:39:b8:91:f9:ae:
f1:ce:28:2e:56:87:d2:a3:58:16:5b:09:95:1e:2b:f2:51:66:
31:4c:d6:26:54:20:71:ed:2e:74:26:7c:70:20:6c:13:72:12:
06:9a:da:ae:30:f4:b8:c6:6e:99:a2:fe:fe:5d:c0:92:48:1e:
b8:e3:ee:e0:35:79:d8:11:13:fc:c0:e7:1a:9e:83:e9:7a:bd:
0c:3c:a4:32:fb:3e:fe:8b:1b:18:fe:08:c0:b9:55:ac:86:12:
83:27:79:28:28:88:8d:28:ef:83:36:31:95:78:6e:5f:ca:48:
81:d3:34:ad:b2:d4:49:a0:ae:ec:2e:66:a5:ab:87:48:81:c3:
83:13:72:fc:64:8b:fd:95:f7:8a:67:2d:7b:2c:30:9c:67:78:
2c:ab:2d:f6:45:cf:0d:28:c0:f4:4a:7e:cb:46:af:66:90:d1:
b6:1b:19:a0:f9:c6:19:7f:d6:5a:7e:33:70:16:bf:be:b2:ec:
f8:0c:cc:42:e9:07:72:d6:db:22:e4:52:23:92:95:92:94:aa:
6c:59:63:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:27 2023 by rpki-client on console-ams.rpki-client.org