Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/pvv9VmMonkDlvhRVfGxw-7AEIoU.roa
File: pvv9VmMonkDlvhRVfGxw-7AEIoU.roa (raw, json)
Hash identifier: lavglnmOgTGDF5/gI4tY9NAHNdqd7NJPpfZ2vm2q+A4=
Subject key identifier: A6:FB:FD:56:63:28:9E:40:E5:BE:14:55:7C:6C:70:FB:B0:04:22:85
Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Certificate serial: 01828B9CCC4E83724EA16EF8EC4B4780917F
Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/pvv9VmMonkDlvhRVfGxw-7AEIoU.roa
Signing time: Thu 11 Aug 2022 06:34:45 +0000
ROA not before: Thu 11 Aug 2022 06:34:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213079
IP address blocks: 147.234.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8b:9c:cc:4e:83:72:4e:a1:6e:f8:ec:4b:47:80:91:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Validity
Not Before: Aug 11 06:34:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a6fbfd5663289e40e5be14557c6c70fbb0042285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:7b:9e:b7:0c:4f:04:7b:31:84:be:3d:01:4d:
96:75:8b:fa:b8:8c:71:e7:04:70:7e:5f:87:5a:95:
ee:92:7d:62:07:cb:c6:32:3b:be:f5:65:1f:5d:50:
32:0f:fd:54:58:98:0d:05:62:96:6d:42:08:22:e1:
2d:dd:77:3c:94:c6:ec:01:a4:a4:eb:49:c8:2d:2f:
1d:c7:54:2b:8b:a6:8e:bd:ab:3c:24:48:13:b2:3c:
bd:1a:da:35:c4:cc:99:c1:6a:d2:5e:f7:b7:8f:72:
fc:9e:0f:34:e4:0f:31:98:be:7e:92:3d:39:7b:95:
48:3f:91:3a:35:98:4f:5b:ab:b2:a7:cc:bb:98:f0:
94:87:c5:ad:80:4c:3f:5a:f4:ce:98:33:e3:05:84:
ed:4e:6a:38:14:14:5f:a3:81:5f:28:e0:0f:b5:90:
1b:ce:67:42:26:54:68:3b:ce:09:4d:b0:b8:4b:8f:
bb:91:b4:48:96:39:06:40:55:e7:ad:c0:8e:d3:09:
15:5c:9a:82:b2:9a:2b:72:58:7e:39:40:95:ec:c0:
49:d1:74:71:68:2a:49:be:23:da:cc:48:69:0f:56:
97:f2:fe:ce:c8:f7:35:30:18:29:41:c9:4a:b1:27:
b2:42:cc:da:2b:43:a8:f3:10:d2:46:11:a9:33:c0:
4d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:FB:FD:56:63:28:9E:40:E5:BE:14:55:7C:6C:70:FB:B0:04:22:85
X509v3 Authority Key Identifier:
keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/pvv9VmMonkDlvhRVfGxw-7AEIoU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.234.85.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:a7:01:d4:28:1c:e8:37:b1:53:53:85:e6:71:5d:be:77:e2:
3f:84:e3:46:3e:ef:26:a5:3a:8c:d4:1b:4e:ea:89:c7:d0:41:
12:cd:36:80:5f:9a:7b:21:d5:fd:c2:39:0c:3f:bf:8d:78:a4:
5e:db:b1:b9:e0:a1:61:e6:b5:92:01:f7:2a:13:d7:5d:f7:ff:
a5:0f:de:f3:4c:5a:f3:63:77:4c:53:07:59:7b:8d:b9:4f:d0:
fe:e2:95:6a:ed:07:81:5d:ec:1f:39:f7:37:1a:1e:35:9b:1e:
27:40:7a:25:80:07:ef:31:64:e0:71:1b:11:9d:d0:69:03:e4:
5d:34:60:15:22:51:fe:cf:a7:b7:1d:4a:55:f0:03:ce:5f:9f:
8f:4c:b9:d1:1f:be:1e:5d:01:25:58:90:cd:fe:48:05:45:fc:
fb:42:98:d4:ea:5f:b3:35:22:3c:8e:2f:aa:1d:66:03:51:08:
59:cf:c5:fc:8e:1b:bb:ae:f1:11:99:95:6e:1f:9e:fc:e4:b0:
6c:3f:04:44:53:9a:e3:f9:99:dc:6c:fe:44:98:34:29:20:98:
ca:0d:90:af:c6:c1:f8:19:aa:6e:67:0e:8b:06:6c:d5:f7:3c:
1c:78:fd:59:91:27:d9:e1:64:b9:6c:76:ba:a8:fd:84:ca:9d:
15:79:cb:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:56 2023 by rpki-client on console-fra.rpki-client.org