Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/_yEb6bSjzn8uXf2RvYBj-LnRaKo.roa
File: _yEb6bSjzn8uXf2RvYBj-LnRaKo.roa (raw, json)
Hash identifier: nDDsOaY6jRtm7sBBuKBj8bq449xzXEJ5HKN0+SA4FJ8=
Subject key identifier: FF:21:1B:E9:B4:A3:CE:7F:2E:5D:FD:91:BD:80:63:F8:B9:D1:68:AA
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 0DF1A8AE
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/_yEb6bSjzn8uXf2RvYBj-LnRaKo.roa
Signing time: Sat 01 Jan 2022 10:54:16 +0000
ROA not before: Sat 01 Jan 2022 10:54:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212786
IP address blocks: 147.136.88.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 233941166 (0xdf1a8ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Jan 1 10:54:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff211be9b4a3ce7f2e5dfd91bd8063f8b9d168aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b5:01:25:0e:80:a8:eb:5c:75:13:4c:67:46:
c7:bc:26:9c:3a:50:7d:36:0d:27:64:47:59:18:64:
fc:6e:cf:36:ec:36:56:54:d5:83:c3:94:05:52:7c:
77:0e:2c:15:59:82:54:e5:c4:84:0b:85:77:32:96:
4c:04:ae:37:9e:3e:1a:03:40:2c:a7:2e:1b:fb:b4:
fb:cd:fb:93:76:14:4b:3f:62:c2:d2:36:86:87:ef:
1f:cc:e1:42:3f:dc:62:32:c7:65:4c:a7:8e:56:b0:
6a:1c:7e:6a:65:38:15:37:5c:82:de:cc:5c:89:ab:
fb:27:14:f6:cb:96:db:64:84:3c:44:1d:98:cb:30:
cb:29:26:22:48:0e:12:d3:11:5f:56:2c:a9:87:2d:
4d:4e:8b:b3:1e:a9:77:b0:ae:f2:59:18:fe:79:38:
1f:0d:a4:8b:fe:80:f2:f5:f8:6c:16:0c:79:9a:47:
0b:ec:a4:da:9b:6f:26:58:d3:9f:e2:62:41:17:b0:
15:b6:bb:e7:79:ca:be:fd:29:12:bf:e3:0e:65:d7:
bf:95:ca:dc:d1:61:b6:cb:ce:9e:27:6e:e0:95:cb:
de:53:2c:50:77:00:a9:43:45:f5:e6:7d:52:80:db:
5b:79:f0:3a:c0:84:0a:78:75:a5:90:11:9f:7b:ea:
97:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:21:1B:E9:B4:A3:CE:7F:2E:5D:FD:91:BD:80:63:F8:B9:D1:68:AA
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/_yEb6bSjzn8uXf2RvYBj-LnRaKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.136.88.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:e6:19:3a:e6:e0:d1:20:15:23:a1:b9:09:06:33:2c:7c:31:
d8:3b:1c:46:61:17:3b:4e:8f:a2:8f:2e:45:02:8d:da:90:3d:
37:a2:d4:9c:4b:10:f3:f2:2d:2e:ed:59:a7:e4:0c:f4:b0:4a:
80:5d:5b:0c:19:da:86:ce:48:f7:f4:2a:13:76:7c:c8:63:99:
af:6b:75:47:64:c9:79:74:2e:37:a7:5c:cf:76:a7:ed:78:46:
2a:cb:ec:ac:66:90:01:e9:45:0c:a0:69:ac:95:be:c3:ce:4a:
36:24:c8:be:74:a3:7a:d0:b2:91:20:c8:b5:c7:f7:dc:63:e7:
f3:f2:91:d0:28:fc:0f:5d:4d:cd:5f:70:12:a1:85:ed:ea:ab:
72:6c:be:c4:32:06:cc:11:c2:37:29:60:83:47:cb:fc:7f:7c:
3d:d0:25:ff:16:0e:9b:83:4c:64:f0:5a:3a:7d:df:60:53:b1:
37:dd:a2:72:b0:c6:35:07:ad:aa:6d:b7:d4:77:b7:8a:7d:ad:
cf:4c:99:b2:10:fa:ea:35:a2:f2:cb:44:68:fb:69:4b:a9:8f:
d6:0d:91:3d:b7:51:7b:08:e6:90:6a:d6:1a:ef:97:46:7e:c2:
ef:fc:ba:25:2d:1e:1e:55:d0:1e:ce:66:79:bd:96:89:28:11:
31:ef:ec:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:50 2024 by rpki-client on console-ams.rpki-client.org