Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/7kN83xGPm4GLQS35xSvKOjUvQj4.roa
File: 7kN83xGPm4GLQS35xSvKOjUvQj4.roa (raw, json)
Hash identifier: foTqc3FxxkdtooshNZAXqVVk/vEay2x+Al5WYKZyBFM=
Subject key identifier: EE:43:7C:DF:11:8F:9B:81:8B:41:2D:F9:C5:2B:CA:3A:35:2F:42:3E
Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Certificate serial: 01828B9CC8F8CCEB4C37CBCCB7287266C469
Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/7kN83xGPm4GLQS35xSvKOjUvQj4.roa
Signing time: Thu 11 Aug 2022 06:34:44 +0000
ROA not before: Thu 11 Aug 2022 06:34:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206106
IP address blocks: 147.234.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8b:9c:c8:f8:cc:eb:4c:37:cb:cc:b7:28:72:66:c4:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Validity
Not Before: Aug 11 06:34:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee437cdf118f9b818b412df9c52bca3a352f423e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:8b:ea:cb:a5:3d:64:2c:1a:d8:7f:d0:72:8e:
ab:7a:c3:48:d6:80:a7:a7:de:31:a4:ca:e4:95:e2:
99:3f:c7:28:a9:27:6f:5f:81:dc:fa:fb:a9:04:ea:
ec:e9:02:48:68:92:12:ca:b3:9e:82:18:fa:66:05:
9e:3c:3d:32:0c:74:3e:a6:f6:80:95:89:9c:e6:7c:
fb:81:ba:03:18:76:56:c6:8b:1d:df:05:1b:9c:1a:
36:e2:bd:19:b5:3e:88:10:29:03:af:2a:56:9b:a3:
83:ae:e0:83:0a:36:d4:bb:26:0c:38:3e:92:e1:8e:
d5:57:5f:ee:ed:ba:53:a7:5a:4a:39:a1:49:3d:52:
f9:39:d6:1a:b4:50:4f:d0:09:f9:a3:29:f5:da:cb:
ae:a0:9b:ea:c8:a2:39:aa:eb:62:ac:3c:5f:88:45:
44:a0:09:18:39:03:ec:ef:28:01:55:fb:fc:d0:8d:
08:4e:2a:f0:45:2a:c7:59:84:54:57:f2:fe:9f:da:
1a:7b:39:62:4a:68:1c:0c:a2:0e:c6:01:0c:70:ad:
56:52:b0:6c:01:be:ba:c0:60:21:88:ca:0f:5a:52:
ac:c4:f1:de:3a:2c:cd:03:cc:e2:70:4a:d0:2d:96:
61:35:fc:d8:f6:aa:60:bc:51:4e:6b:b4:75:16:41:
e5:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:43:7C:DF:11:8F:9B:81:8B:41:2D:F9:C5:2B:CA:3A:35:2F:42:3E
X509v3 Authority Key Identifier:
keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/7kN83xGPm4GLQS35xSvKOjUvQj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.234.52.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:8a:da:d4:b9:4a:3d:74:a9:a5:9f:a7:c0:cb:a7:5c:21:f8:
1a:a0:9e:c3:7c:9f:66:00:96:0a:97:61:8a:bb:6e:1d:bb:d1:
82:58:de:7b:f3:24:3c:39:4e:27:35:93:98:a9:ad:76:fe:a3:
14:92:a9:8f:31:a7:c8:7a:17:ca:78:5f:d5:07:5e:67:4d:b6:
51:c6:2a:f5:e4:55:f8:94:0e:77:82:3e:d2:60:ca:44:bf:f0:
fd:6d:c4:cc:da:e0:dd:cf:41:38:f0:75:d2:bd:7f:5a:08:ec:
48:e9:81:9b:d4:c9:0c:86:b6:e7:3a:9b:72:61:ee:f6:2e:5e:
c5:d5:c1:cd:67:98:a2:79:44:5f:bd:bd:0b:70:bf:99:ec:fd:
b0:af:d5:b8:b2:9e:e4:3d:3f:b9:30:65:33:87:2d:e5:d8:d5:
4f:a4:88:48:8e:8b:48:46:4b:5b:37:65:e5:b0:8e:5c:9c:76:
3a:22:63:4b:e2:ab:a4:c0:4e:d4:ac:88:3f:55:64:7b:7c:b4:
fa:61:88:cb:3b:6e:df:89:5b:8e:15:a5:de:17:fa:73:1d:77:
b8:c4:67:6c:7b:48:90:03:62:12:64:c8:f8:8a:b2:9b:33:7b:
52:ee:77:df:4b:33:5f:c1:69:d9:89:c4:21:76:86:20:66:80:
b3:19:ed:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:38 2023 by rpki-client on console-ams.rpki-client.org