Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/m-CULBSkwsr_6K9xsXJoCi1wIcw.roa
File: m-CULBSkwsr_6K9xsXJoCi1wIcw.roa (raw, json)
Hash identifier: 66sLFso+C7HXtkki6EIRXanuL+p0ipvzLJ2JlVETs/M=
Subject key identifier: 9B:E0:94:2C:14:A4:C2:CA:FF:E8:AF:71:B1:72:68:0A:2D:70:21:CC
Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Certificate serial: 01828B9CC8C10B1D4181674B5F71A9F7A076
Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/m-CULBSkwsr_6K9xsXJoCi1wIcw.roa
Signing time: Thu 11 Aug 2022 06:34:44 +0000
ROA not before: Thu 11 Aug 2022 06:34:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205650
IP address blocks: 147.234.18.0/24 maxlen: 24
147.234.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8b:9c:c8:c1:0b:1d:41:81:67:4b:5f:71:a9:f7:a0:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Validity
Not Before: Aug 11 06:34:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9be0942c14a4c2caffe8af71b172680a2d7021cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:d3:da:c5:97:ef:15:c5:38:fb:17:55:36:0c:
4b:6e:2f:12:db:9d:4f:07:75:56:f9:3f:9b:6a:a2:
d3:03:7b:f0:e1:b5:3a:b1:ec:cd:f5:84:b8:96:5c:
8f:ed:b9:c6:ba:2c:e1:48:4b:a4:b2:d6:3d:fe:1f:
3f:6b:5e:ad:e4:c3:0b:87:d9:4d:71:db:68:bd:36:
2a:4f:94:0f:cd:ed:49:f1:69:8e:fc:c3:bf:59:b6:
fb:d8:f4:a6:c1:4e:6f:50:0b:df:86:56:45:30:26:
44:c1:a2:71:9e:d9:b4:89:ce:bb:ec:6b:56:a8:0b:
49:dd:e9:38:fa:20:30:0d:40:7c:2e:95:c1:a2:8f:
62:06:0d:ce:f6:fd:42:16:c6:8c:d8:34:c0:47:52:
b2:4a:4d:1c:48:56:3b:85:fc:e0:b7:c8:96:83:4d:
0d:31:50:67:f5:85:13:75:27:53:75:0a:52:c3:ec:
d3:9e:38:56:97:4d:51:43:eb:7b:eb:74:ad:0f:77:
1b:0a:21:47:13:bf:aa:4d:c0:c2:14:d3:c6:e5:ac:
42:9c:1b:4a:90:09:25:95:ed:1a:b7:99:04:a6:a5:
5a:ee:58:dc:e2:3e:26:f2:79:7d:41:3f:34:f5:21:
21:d9:8a:85:7b:24:36:7a:75:d3:8d:cb:7e:bb:12:
0c:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:E0:94:2C:14:A4:C2:CA:FF:E8:AF:71:B1:72:68:0A:2D:70:21:CC
X509v3 Authority Key Identifier:
keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/m-CULBSkwsr_6K9xsXJoCi1wIcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.234.18.0/23
Signature Algorithm: sha256WithRSAEncryption
a9:f0:62:99:a5:a7:3d:83:9b:63:78:b5:71:e2:9a:9b:77:b7:
f0:69:78:d6:a2:56:4f:ec:d7:34:1e:4a:a0:9d:33:f1:53:b3:
8c:db:6c:26:96:c3:eb:83:de:3d:b6:10:ac:45:8b:7c:82:00:
08:98:8f:49:d9:63:81:dc:38:f5:f2:aa:b0:2a:59:d6:ca:53:
78:78:15:ee:36:ef:6e:3e:db:00:34:ab:4b:ad:db:ed:59:8c:
05:97:d6:9e:01:87:d1:85:54:9b:ad:a9:56:f0:b3:cc:65:f0:
13:b7:88:e0:2e:5c:e2:24:9a:57:5e:07:cc:dc:33:92:30:f2:
e7:4e:6a:64:97:3a:7b:3b:8b:c8:e2:55:38:ca:2d:6c:1b:ee:
48:92:85:1b:d0:39:c8:82:b4:e0:2e:f0:02:0e:7d:17:07:ef:
16:8c:6a:31:6c:bf:16:5d:d9:ac:a5:0f:b3:da:34:33:b8:53:
72:c7:98:0a:7f:61:23:dd:ae:bb:be:54:dd:5f:04:98:b2:ae:
a7:e3:cb:45:5b:72:59:84:45:dc:bf:fb:fd:dd:49:94:f8:7f:
75:29:9a:6f:e6:82:a6:d0:22:78:a3:37:a1:2a:8c:3c:cf:6c:
52:8c:6c:00:ce:49:9c:7b:88:af:8d:ee:b3:32:ce:fa:b9:0f:
52:3e:89:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:38 2023 by rpki-client on console-ams.rpki-client.org