Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/e768bd-f512-4b8a-936a-06c9296f08a2/1/g2DIIrp5LTUpL2flcxPIHWy7CyA.roa
File: g2DIIrp5LTUpL2flcxPIHWy7CyA.roa (raw, json)
Hash identifier: K+495Vp5sFLNeikwWdCpZflM2dhgZwFVplxMMr22ITk=
Subject key identifier: 83:60:C8:22:BA:79:2D:35:29:2F:67:E5:73:13:C8:1D:6C:BB:0B:20
Certificate issuer: /CN=a6b789b32e16e9dd2f70513119dc77ea61ff1e09
Certificate serial: 04E520DE
Authority key identifier: A6:B7:89:B3:2E:16:E9:DD:2F:70:51:31:19:DC:77:EA:61:FF:1E:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/preJsy4W6d0vcFExGdx36mH_Hgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/e768bd-f512-4b8a-936a-06c9296f08a2/1/g2DIIrp5LTUpL2flcxPIHWy7CyA.roa
Signing time: Sat 01 Jan 2022 05:00:52 +0000
ROA not before: Sat 01 Jan 2022 05:00:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20733
IP address blocks: 147.78.117.0/24 maxlen: 24
147.78.116.0/24 maxlen: 24
147.78.116.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82125022 (0x4e520de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b789b32e16e9dd2f70513119dc77ea61ff1e09
Validity
Not Before: Jan 1 05:00:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8360c822ba792d35292f67e57313c81d6cbb0b20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ed:ee:88:08:0c:e1:e4:3c:f5:1b:12:49:4f:
7f:70:56:25:fb:30:b0:70:64:54:5e:8f:55:9a:c8:
1c:37:56:e8:ab:a5:4e:76:15:f5:e4:32:44:fb:e6:
84:81:37:98:85:f1:09:c1:c3:2e:a9:82:31:81:c0:
7d:dd:d7:0a:b8:02:c5:b6:c2:a6:63:c6:81:dc:0c:
8b:1c:40:01:56:62:24:c2:ef:46:24:f4:e0:1e:37:
07:d4:85:c4:6b:22:0d:7e:09:04:d1:b9:ff:4d:56:
a2:03:9b:52:37:b1:ed:a9:02:1d:60:00:d2:56:d8:
a3:68:cf:f1:d8:e1:10:3d:f5:5c:95:3c:82:f3:a6:
03:da:cf:3c:53:ba:94:2e:37:5b:80:b4:0f:28:4c:
ca:b4:59:ed:fa:86:31:c1:96:ea:2e:ff:96:60:a2:
94:ab:66:91:8b:8b:95:0e:1b:92:9c:e7:79:53:cd:
ea:0d:bc:a6:df:e2:e1:13:71:8d:30:19:d7:2a:e1:
c8:4c:ca:97:e3:c9:d1:6b:df:6d:be:ae:d8:1a:60:
42:7c:2a:90:61:c9:cc:b2:b6:ef:83:3f:a7:22:09:
51:36:ec:9f:c4:66:f1:3c:1f:c2:8e:92:cb:b3:37:
b6:7a:06:b0:09:c5:7a:61:8e:8b:99:e6:0d:4d:d6:
95:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:60:C8:22:BA:79:2D:35:29:2F:67:E5:73:13:C8:1D:6C:BB:0B:20
X509v3 Authority Key Identifier:
keyid:A6:B7:89:B3:2E:16:E9:DD:2F:70:51:31:19:DC:77:EA:61:FF:1E:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/preJsy4W6d0vcFExGdx36mH_Hgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/e768bd-f512-4b8a-936a-06c9296f08a2/1/g2DIIrp5LTUpL2flcxPIHWy7CyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/e768bd-f512-4b8a-936a-06c9296f08a2/1/preJsy4W6d0vcFExGdx36mH_Hgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.116.0/23
Signature Algorithm: sha256WithRSAEncryption
03:d4:7a:0c:a5:95:66:09:49:fa:e0:f9:d3:30:32:b7:2a:33:
79:c8:3e:05:a8:f7:69:08:c5:8a:b0:8d:f7:95:52:40:2a:44:
45:a0:28:3e:39:0c:36:df:eb:3f:3b:a2:e0:75:b1:74:db:57:
c5:c9:9e:55:08:64:31:2f:1a:38:ff:ed:e9:5d:1a:7d:27:c5:
44:50:1c:b1:49:79:89:fc:56:b6:5c:7e:d2:bd:36:0e:ac:06:
45:2f:60:77:a9:67:8d:d4:2e:a7:5e:a9:47:20:10:2f:52:cc:
7b:69:0b:99:f5:e0:09:d9:e5:fe:50:6f:94:96:85:6b:b4:c4:
cd:0e:dd:02:57:10:19:ef:78:22:bb:c7:9b:c8:3b:b4:9b:22:
72:3f:87:32:ae:c4:a2:e5:8e:99:85:ae:00:da:3c:31:70:6d:
6a:a2:7e:c0:d8:0e:9d:b7:49:b3:b5:2f:6f:a2:5a:b2:97:7e:
89:20:77:33:16:1d:82:8a:c1:c2:4a:8a:6f:3f:96:1e:d2:79:
33:88:c3:25:32:f1:72:74:28:ee:cb:db:e4:07:92:ee:08:9e:
76:c1:66:ae:c3:0d:ac:bf:1d:1e:88:f9:b3:4a:43:72:a7:76:
b9:61:e6:ba:a3:82:16:cf:ed:f2:bc:52:93:1e:88:12:76:bf:
c6:3d:04:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:30 2024 by rpki-client on console-ams.rpki-client.org