Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/df0e81-bdcb-4a24-8435-c1f12e58fedd/1/Y6-dcWZkE3bZqrdiXbObyAuTDBU.roa
File: Y6-dcWZkE3bZqrdiXbObyAuTDBU.roa (raw, json)
Hash identifier: s+vJbBwRvj44rnFCUdUt1qk0f4LpyHGThDviYKx31ow=
Subject key identifier: 63:AF:9D:71:66:64:13:76:D9:AA:B7:62:5D:B3:9B:C8:0B:93:0C:15
Certificate issuer: /CN=cb889feed135dc03492d8b3e828c7309587d1411
Certificate serial: 01CCD0F7
Authority key identifier: CB:88:9F:EE:D1:35:DC:03:49:2D:8B:3E:82:8C:73:09:58:7D:14:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y4if7tE13ANJLYs-goxzCVh9FBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/df0e81-bdcb-4a24-8435-c1f12e58fedd/1/Y6-dcWZkE3bZqrdiXbObyAuTDBU.roa
Signing time: Sat 01 Jan 2022 12:05:52 +0000
ROA not before: Sat 01 Jan 2022 12:05:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 4749
IP address blocks: 147.189.33.0/24 maxlen: 24
147.189.32.0/24 maxlen: 24
147.189.32.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30200055 (0x1ccd0f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb889feed135dc03492d8b3e828c7309587d1411
Validity
Not Before: Jan 1 12:05:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63af9d7166641376d9aab7625db39bc80b930c15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6b:a3:ec:fe:a3:08:fb:48:e3:6b:17:a8:f7:
3e:ea:4a:8d:3c:20:37:e8:c0:f4:80:3d:f1:40:59:
18:6f:11:2a:8b:5f:bd:98:9a:56:d9:19:f6:6b:54:
52:8a:ed:4b:d2:04:51:7e:77:61:06:85:17:55:3f:
06:28:72:e2:57:1e:96:11:46:e8:40:e4:76:47:a1:
43:dd:35:26:87:40:6c:02:0a:c2:2d:de:21:0d:95:
8c:e2:55:eb:59:d8:f8:0e:19:a6:f5:db:69:fe:75:
10:14:44:9c:c0:e2:90:48:25:f6:ff:a2:b2:b1:44:
06:47:43:eb:89:f8:13:65:95:53:65:9e:d7:37:1e:
20:3d:ef:29:5b:9b:33:36:39:86:e9:c3:7b:9d:ea:
15:9f:af:00:28:ac:b1:8f:28:b2:df:0e:1c:f9:f8:
94:01:32:f2:3c:2a:c2:d7:7f:53:b1:ad:69:c4:76:
eb:da:2e:8f:d2:d9:f8:f9:76:a2:3d:13:e7:75:a7:
ab:3e:6d:6b:84:f8:9d:42:22:13:73:ed:5e:67:61:
0a:c2:9d:63:c9:4f:e1:48:4a:ed:5b:9a:63:00:66:
8d:64:5c:d9:a4:9d:43:f7:b5:0a:7f:ac:a3:98:87:
48:88:24:73:7f:2c:09:3d:ab:20:7f:8e:96:b6:01:
d9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:AF:9D:71:66:64:13:76:D9:AA:B7:62:5D:B3:9B:C8:0B:93:0C:15
X509v3 Authority Key Identifier:
keyid:CB:88:9F:EE:D1:35:DC:03:49:2D:8B:3E:82:8C:73:09:58:7D:14:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y4if7tE13ANJLYs-goxzCVh9FBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/df0e81-bdcb-4a24-8435-c1f12e58fedd/1/Y6-dcWZkE3bZqrdiXbObyAuTDBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/df0e81-bdcb-4a24-8435-c1f12e58fedd/1/y4if7tE13ANJLYs-goxzCVh9FBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.189.32.0/23
Signature Algorithm: sha256WithRSAEncryption
a6:7c:81:ad:a7:bf:88:f1:8a:0d:05:d1:1a:ee:22:63:d9:78:
1f:62:aa:3d:99:fe:60:71:e7:36:c4:11:1e:a5:89:55:d7:7b:
3a:ab:cd:6a:22:96:7e:1b:05:5e:25:2e:e0:92:8c:8b:87:61:
49:b1:dc:67:25:52:be:5a:0f:4d:a5:40:e1:98:21:24:91:4e:
eb:74:ff:f5:4a:3b:45:88:69:97:fe:ee:cf:28:bd:64:5c:17:
a8:05:c5:94:59:fd:3c:74:d1:e2:43:40:4f:7d:25:e6:fa:db:
62:b7:9a:b2:37:17:54:66:4e:f9:84:cf:93:8e:b3:e9:35:a5:
28:24:e4:74:1e:c6:a4:00:9c:70:79:d3:71:60:c5:3a:6f:f8:
4b:11:67:b4:3b:46:3b:88:8e:78:4e:fb:ca:cf:55:1c:73:56:
58:dd:e9:f8:35:35:68:a5:02:83:c1:56:01:ae:de:da:1d:3e:
08:66:f5:8e:82:03:f7:24:0c:81:1a:34:34:f8:ee:be:97:b1:
08:3f:c8:ec:f7:0f:66:83:eb:a9:26:4c:8e:db:9f:d0:c3:68:
8c:8c:7d:08:0e:fe:c9:74:72:24:70:bb:b2:62:91:f2:ad:0b:
72:22:f4:f6:a7:26:e0:0b:11:be:ef:f2:fd:9d:47:20:5f:cc:
cc:f3:78:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:48 2023 by rpki-client on console-ams.rpki-client.org