Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/uD56Qy4ojQZ9otN1MTiZNk2G1c0.roa
File: uD56Qy4ojQZ9otN1MTiZNk2G1c0.roa (raw, json)
Hash identifier: 3KIM4gn//QgZrwEEZ3DJPMeBLKvEgHdhIcVKkZk8MUU=
Subject key identifier: B8:3E:7A:43:2E:28:8D:06:7D:A2:D3:75:31:38:99:36:4D:86:D5:CD
Certificate issuer: /CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Certificate serial: 01F42213
Authority key identifier: F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/uD56Qy4ojQZ9otN1MTiZNk2G1c0.roa
Signing time: Sat 01 Jan 2022 15:06:19 +0000
ROA not before: Sat 01 Jan 2022 15:06:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33387
IP address blocks: 185.127.94.0/24 maxlen: 24
185.127.93.0/24 maxlen: 24
147.189.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32776723 (0x1f42213)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Validity
Not Before: Jan 1 15:06:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b83e7a432e288d067da2d375313899364d86d5cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:7b:83:43:e9:9d:43:14:20:da:24:62:c8:09:
90:93:70:bd:cf:49:eb:2e:7b:75:24:be:3f:9b:8b:
46:97:ed:be:70:8d:80:c4:8a:30:ee:c0:91:9c:ee:
02:e1:9c:ea:aa:12:db:33:7b:f4:c0:c4:6e:a9:63:
74:ed:89:b4:a4:54:03:b6:e2:a8:01:8c:63:d1:98:
6f:6e:ff:76:c3:d1:df:2b:2c:ec:f8:14:90:88:63:
98:4d:dc:25:94:f7:01:40:25:38:35:97:c3:2e:83:
37:96:29:1f:d7:28:57:64:52:d8:94:f7:fe:3a:c5:
09:a7:9d:c4:3c:d1:23:59:c8:88:90:d4:d4:27:7b:
fd:92:df:1f:2e:c4:04:80:f5:16:72:1f:b1:c0:a9:
41:e1:3a:0a:79:d3:0e:58:05:a6:3c:4b:0c:16:15:
91:93:8d:1c:27:73:d5:48:13:32:3b:9c:54:3a:d6:
05:34:71:fc:3e:88:17:46:3f:4f:fb:41:1c:0f:e8:
83:23:d0:63:81:a6:55:d6:8b:20:27:89:4b:79:4e:
b7:17:c6:b7:f9:3a:a5:f1:80:c5:8f:8e:b0:c8:77:
0f:54:f5:48:f6:30:24:97:cc:25:dd:00:f3:50:71:
35:d5:77:fa:9d:9d:77:ff:85:b1:f4:a9:2c:e9:99:
36:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:3E:7A:43:2E:28:8D:06:7D:A2:D3:75:31:38:99:36:4D:86:D5:CD
X509v3 Authority Key Identifier:
keyid:F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/uD56Qy4ojQZ9otN1MTiZNk2G1c0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.189.142.0/24
185.127.93.0-185.127.94.255
Signature Algorithm: sha256WithRSAEncryption
26:00:8a:02:68:f8:0c:4c:bb:a7:3a:4b:bb:57:e0:99:93:7a:
22:c5:c6:54:c6:33:bf:d0:59:43:ed:61:d9:bc:b9:2f:2c:87:
4f:89:57:56:01:74:82:bd:7a:a7:9f:65:19:76:3b:f1:fe:6d:
10:53:da:29:e4:0d:e0:81:20:ae:91:5a:d3:0a:6d:8b:8d:32:
e9:e3:f9:45:80:18:12:ae:4e:77:77:dd:7e:44:1a:5e:69:94:
03:77:bd:c8:cd:4c:1b:87:27:c1:b1:b2:d0:a1:95:c2:7c:d9:
bc:e9:9d:b3:9b:88:9f:e1:4c:a6:1c:e4:7f:c8:b0:0d:c3:15:
b4:8b:a5:40:e2:be:9c:43:cb:ef:0c:fd:d0:7b:c7:92:5f:70:
b8:f3:a4:65:ad:ed:2f:58:87:8f:07:f9:85:ca:a1:88:3c:ab:
22:9f:b9:bf:2f:5e:1a:98:2d:4b:de:88:c0:71:b2:b5:63:a6:
d8:8f:6e:80:a0:4f:33:d7:e6:56:65:d6:69:c8:87:c3:13:6b:
0b:9c:b5:e4:7c:aa:cf:92:84:71:f6:df:e1:78:ba:e2:56:c9:
a1:eb:41:b6:00:15:8f:bd:ed:aa:f6:52:63:26:09:78:16:21:
79:cb:97:58:50:b5:e5:11:f9:be:36:0b:33:f4:87:99:0d:ed:
95:62:8d:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:34 2023 by rpki-client on console-ams.rpki-client.org