Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/ec3106-e7bf-4299-ae12-dbd91b111844/1/SIOExQKKyBCGlMQGXDk2tBebMdY.roa
File: SIOExQKKyBCGlMQGXDk2tBebMdY.roa (raw, json)
Hash identifier: 2nrkMYL3ofeTTtaeRKClfvsjJBJ1iWVUFaHAAx2Azxo=
Subject key identifier: 48:83:84:C5:02:8A:C8:10:86:94:C4:06:5C:39:36:B4:17:9B:31:D6
Certificate issuer: /CN=d76d71d8845d2fe296a46d79176f590d8db4f16a
Certificate serial: 144ADF97
Authority key identifier: D7:6D:71:D8:84:5D:2F:E2:96:A4:6D:79:17:6F:59:0D:8D:B4:F1:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/121x2IRdL-KWpG15F29ZDY208Wo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/ec3106-e7bf-4299-ae12-dbd91b111844/1/SIOExQKKyBCGlMQGXDk2tBebMdY.roa
Signing time: Sat 01 Jan 2022 15:57:31 +0000
ROA not before: Sat 01 Jan 2022 15:57:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34143
IP address blocks: 83.142.208.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 340451223 (0x144adf97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76d71d8845d2fe296a46d79176f590d8db4f16a
Validity
Not Before: Jan 1 15:57:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=488384c5028ac8108694c4065c3936b4179b31d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:7f:4b:71:28:f0:27:d1:5d:16:63:c3:0a:81:
e3:01:92:d5:f8:9e:b8:49:ea:67:26:e6:71:dc:8c:
45:dc:39:b6:58:2a:ad:95:3c:61:76:af:05:8e:49:
db:7d:47:1e:43:fb:b9:54:77:f0:62:f7:ae:bb:b7:
66:ce:36:9d:f4:5a:36:f0:e9:a0:d7:74:f9:2c:db:
af:e3:be:66:1b:db:d8:5e:c0:53:c9:4a:be:c6:cb:
36:25:4d:f6:51:e8:1b:d2:68:e9:f7:b1:ed:0d:42:
67:2e:9a:a1:40:87:39:e3:e5:b7:6b:01:a6:01:c4:
c7:22:03:0f:fc:de:53:bf:4a:71:4a:95:a4:70:0d:
29:d2:fd:49:9e:9e:8d:97:f2:02:03:66:35:29:b8:
bc:a5:f7:c0:1c:c8:de:d0:f5:17:02:0c:e9:27:9e:
93:55:e5:31:48:a2:17:97:71:fc:8c:c9:05:ba:11:
4b:c1:e1:f3:c2:26:91:27:23:f8:a4:73:77:1b:ae:
da:99:8b:4d:43:cb:7e:e7:8f:0d:d8:78:0f:5c:9c:
62:e7:86:f7:1a:89:a4:58:ec:0e:f3:a5:68:8e:40:
31:84:89:12:e0:bf:e2:1c:62:6e:3e:0e:b7:33:0a:
8e:5c:e8:8a:47:fb:a5:fc:29:18:72:af:89:fb:d6:
9e:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:83:84:C5:02:8A:C8:10:86:94:C4:06:5C:39:36:B4:17:9B:31:D6
X509v3 Authority Key Identifier:
keyid:D7:6D:71:D8:84:5D:2F:E2:96:A4:6D:79:17:6F:59:0D:8D:B4:F1:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/121x2IRdL-KWpG15F29ZDY208Wo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/ec3106-e7bf-4299-ae12-dbd91b111844/1/SIOExQKKyBCGlMQGXDk2tBebMdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/ec3106-e7bf-4299-ae12-dbd91b111844/1/121x2IRdL-KWpG15F29ZDY208Wo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.142.208.0/21
Signature Algorithm: sha256WithRSAEncryption
84:34:cf:6e:fe:71:0e:eb:1b:75:f0:c4:26:30:75:65:cd:46:
9c:d0:d5:25:b5:91:8d:a6:e0:2a:1a:d1:96:1b:72:05:6c:2f:
7c:c5:c6:60:02:54:c1:e2:c8:75:e8:a0:9e:e4:eb:4f:c7:31:
63:71:b4:ba:f7:36:0b:83:a4:5d:98:f3:d3:8a:2a:9b:9b:85:
b2:ca:5c:46:11:7a:84:ae:cb:e8:b8:79:ae:91:1e:5c:fa:53:
a2:5a:06:fd:c0:a5:24:0a:8f:15:0c:4c:b8:db:8f:c3:83:b8:
ab:2b:23:ec:a6:55:ca:88:97:b1:b7:dd:ab:00:bc:aa:67:77:
49:e1:68:df:46:73:7b:67:f6:5c:57:eb:66:78:16:ee:fc:84:
80:d2:d3:87:c5:d1:40:08:41:59:1c:dd:40:ac:ce:3e:8c:69:
06:c9:00:67:0a:a2:21:18:72:4b:88:31:cd:08:ab:e7:56:c1:
61:9a:87:c3:e0:e4:6d:7c:ff:8e:74:59:d5:f9:08:42:0a:a9:
0b:1d:2d:4c:c2:0b:f1:5d:52:45:f9:08:43:b4:54:68:37:75:
69:f8:46:7a:11:68:04:56:07:c9:3c:31:b8:76:73:4c:0b:2f:
cd:ea:55:be:bf:09:c6:c3:f6:06:57:b7:a8:da:39:24:9d:7a:
a6:21:60:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:48 2023 by rpki-client on console-ams.rpki-client.org