Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/rVmrdGlTDyhVJOuknHcPcJ--RZw.roa
File: rVmrdGlTDyhVJOuknHcPcJ--RZw.roa (raw, json)
Hash identifier: NDRm9lqCrRtU9lXGp8GDetZb8tSxvisadzoe161xj1A=
Subject key identifier: AD:59:AB:74:69:53:0F:28:55:24:EB:A4:9C:77:0F:70:9F:BE:45:9C
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 0DF820F5
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/rVmrdGlTDyhVJOuknHcPcJ--RZw.roa
Signing time: Mon 03 Jan 2022 10:42:20 +0000
ROA not before: Mon 03 Jan 2022 10:42:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200023
IP address blocks: 147.136.64.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 234365173 (0xdf820f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Jan 3 10:42:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad59ab7469530f285524eba49c770f709fbe459c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:3d:c1:c4:ac:b3:d1:b5:68:c0:47:c5:46:c5:
cb:c1:88:34:92:37:45:f6:48:d9:ca:cf:f9:c4:82:
fa:02:80:19:29:2b:0d:05:99:be:5e:54:00:29:b4:
eb:83:87:da:4f:f3:31:42:a6:4b:47:fb:5c:54:5e:
01:9e:f2:7b:04:69:f2:0d:e4:49:61:c6:a7:db:fb:
61:2d:fe:ea:38:b0:c4:02:11:0b:cc:17:4c:ce:d5:
d2:b9:f7:c7:89:10:5f:ec:7f:06:90:b5:40:6d:9a:
46:fc:8d:2d:c1:f3:93:3d:c4:b2:f2:10:19:51:0c:
cd:99:a5:ef:df:59:c1:2c:9e:05:b5:ad:fa:78:7e:
d0:e0:f4:4a:33:89:e6:9f:18:51:7b:e1:ff:75:54:
b4:41:f3:f8:90:42:4f:fd:a6:22:0e:7d:76:e4:41:
d1:aa:15:57:e3:95:ff:d9:ec:cd:de:eb:09:03:65:
09:bf:7a:31:fd:03:0a:bc:b2:22:e7:23:ae:a2:11:
42:cf:e5:21:04:e5:e0:57:a8:c3:af:8e:6b:1f:01:
16:e0:79:2b:81:c5:60:b1:1b:fd:5f:f4:b0:04:65:
0d:aa:ec:c2:b3:af:fa:d9:87:91:c7:f7:11:57:a1:
13:6f:d4:6b:e9:94:d0:6b:91:72:d9:2b:12:cd:1b:
a4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:59:AB:74:69:53:0F:28:55:24:EB:A4:9C:77:0F:70:9F:BE:45:9C
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/rVmrdGlTDyhVJOuknHcPcJ--RZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.136.64.0/22
Signature Algorithm: sha256WithRSAEncryption
39:f5:52:8d:9d:52:d2:96:c0:d4:56:4d:d0:94:88:ab:4f:b2:
9f:a7:35:c7:6b:64:9d:63:5a:df:4c:dc:7b:87:a5:02:99:a6:
b3:c7:d4:9d:dc:c2:bd:9d:95:a3:39:67:0a:c4:82:10:fb:4b:
05:39:30:6d:cf:2c:ab:53:f4:ab:df:95:e2:04:d8:86:d8:40:
6a:49:3d:a8:cf:c0:d6:70:4e:df:9b:9d:80:4c:40:32:38:dd:
4e:85:89:d4:4d:dc:24:9b:0b:0b:2e:b2:a5:33:64:96:96:23:
fe:23:06:84:8d:15:ab:8d:7b:31:19:d7:da:f9:ab:7f:57:13:
ba:11:31:31:be:52:e8:dd:02:b6:5c:a3:d5:04:ff:66:15:99:
68:81:75:fb:83:73:29:93:dd:33:8f:67:66:54:4a:58:df:ac:
bd:73:76:9b:3f:a0:41:ae:ec:73:bd:f3:ec:27:f3:57:c8:b0:
03:7f:7d:49:b1:8e:c0:50:17:fd:49:e9:60:de:e2:b7:58:64:
4e:67:6d:f7:99:98:c4:dc:bb:e9:51:fe:e6:03:df:0c:75:af:
05:87:83:fc:5c:c6:74:29:5b:63:da:0b:0f:32:38:07:c9:19:
4b:66:0c:1b:8c:7a:bc:cd:2b:80:b8:18:66:40:84:41:f3:fc:
4e:4d:1e:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:59 2023 by rpki-client on console-fra.rpki-client.org