Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d8275e-c479-4ed8-beea-da89ed2eb55e/1/hQ6ibrc8NFTmOiq6r3NSeXkUEuY.roa
File: hQ6ibrc8NFTmOiq6r3NSeXkUEuY.roa (raw, json)
Hash identifier: 6V0QRYLkxqZ52tUCRX7tGZigiaqSroGrDPMvjT3Mi2s=
Subject key identifier: 85:0E:A2:6E:B7:3C:34:54:E6:3A:2A:BA:AF:73:52:79:79:14:12:E6
Certificate issuer: /CN=af46fb8d41a47242ae3ee8ce1f0fa8ef811698b5
Certificate serial: 08FC4D33
Authority key identifier: AF:46:FB:8D:41:A4:72:42:AE:3E:E8:CE:1F:0F:A8:EF:81:16:98:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r0b7jUGkckKuPujOHw-o74EWmLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d8275e-c479-4ed8-beea-da89ed2eb55e/1/hQ6ibrc8NFTmOiq6r3NSeXkUEuY.roa
Signing time: Sat 01 Jan 2022 14:05:14 +0000
ROA not before: Sat 01 Jan 2022 14:05:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209535
IP address blocks: 147.78.24.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150752563 (0x8fc4d33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af46fb8d41a47242ae3ee8ce1f0fa8ef811698b5
Validity
Not Before: Jan 1 14:05:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=850ea26eb73c3454e63a2abaaf735279791412e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:93:95:cd:5a:f1:e2:cc:f3:ac:15:7f:a5:bc:
97:a9:90:d8:39:a3:8c:3e:c7:db:4e:4e:b5:bd:84:
35:a7:a4:c2:6a:73:e9:11:4f:fb:a1:25:17:0e:85:
f9:72:42:68:9e:f0:fa:0b:f7:e4:99:0f:6e:cd:f2:
4d:9f:13:c3:54:fe:e0:94:99:cb:89:a8:80:06:da:
bc:35:a4:d3:c2:7e:0a:45:d8:fd:e7:c9:52:57:b2:
c9:4c:b0:48:dd:df:75:95:e4:9d:39:8b:e0:c3:3a:
49:32:c6:c9:5e:c6:09:68:da:fb:a8:f3:b4:59:c2:
95:7d:f9:13:6d:eb:14:fa:f0:89:fd:97:3b:9a:44:
f5:98:30:b0:dd:e7:78:3a:84:17:cc:db:98:dc:bd:
68:26:8f:0a:30:a7:82:5d:53:60:40:92:53:1a:b9:
50:4d:47:46:3f:dd:20:b8:52:73:65:af:4e:0b:28:
4a:09:cc:ae:f1:db:05:f1:18:fe:6b:5c:82:c4:ca:
c4:d6:15:3f:ad:43:dc:87:a9:cc:56:76:f6:27:31:
10:35:f0:4e:f6:b7:81:70:9e:e8:40:f9:bd:c9:3c:
de:14:c0:33:dc:be:cc:ea:11:ca:33:b2:60:b0:69:
88:9a:0c:fe:1a:01:af:9a:76:87:19:be:be:61:c1:
0d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:0E:A2:6E:B7:3C:34:54:E6:3A:2A:BA:AF:73:52:79:79:14:12:E6
X509v3 Authority Key Identifier:
keyid:AF:46:FB:8D:41:A4:72:42:AE:3E:E8:CE:1F:0F:A8:EF:81:16:98:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r0b7jUGkckKuPujOHw-o74EWmLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d8275e-c479-4ed8-beea-da89ed2eb55e/1/hQ6ibrc8NFTmOiq6r3NSeXkUEuY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d8275e-c479-4ed8-beea-da89ed2eb55e/1/r0b7jUGkckKuPujOHw-o74EWmLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.24.0/22
Signature Algorithm: sha256WithRSAEncryption
74:26:59:99:8b:43:27:4a:a5:1a:62:fb:6a:54:e2:7f:a8:e9:
ce:04:d1:a9:02:79:b6:15:64:bc:2f:83:0d:f9:ca:56:e1:83:
2c:de:78:53:d0:93:4a:35:f2:e7:91:64:c7:13:5e:db:7b:e3:
f4:da:09:02:5a:45:17:ef:ca:3a:3b:1d:27:a2:ef:b6:14:15:
26:01:8b:2c:93:4f:17:14:70:bb:4c:76:30:83:eb:09:22:94:
87:c3:e5:ee:6d:ab:fa:cb:2b:32:56:ef:bd:f7:0f:cf:75:46:
14:ae:43:da:9e:fb:b5:12:00:d8:67:ef:6d:96:6c:ff:d5:18:
e3:6e:91:1c:7a:19:b4:e5:55:a1:fc:19:f0:51:ed:3c:1f:af:
38:af:80:b6:eb:49:c6:fd:b5:40:db:eb:29:d2:3d:cc:9a:e1:
3e:1d:67:51:9a:fa:e1:01:a7:24:ab:25:94:ea:16:0f:b7:83:
4f:c0:d7:c7:f1:2f:51:cf:e1:80:97:af:36:95:55:11:3e:bb:
76:fe:93:5e:0d:e9:a3:40:42:e0:9b:49:12:39:26:0a:38:04:
98:fe:3e:48:a0:e1:34:49:74:25:a6:74:0c:31:95:19:ed:40:
70:df:88:25:87:20:65:3b:0b:d3:02:d8:f5:b0:f6:f9:2e:6e:
0f:f3:89:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:25 2023 by rpki-client on console-ams.rpki-client.org