Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/aMOse0l5K4PelJ3Z2rwMP2nXpEA.roa
File: aMOse0l5K4PelJ3Z2rwMP2nXpEA.roa (raw, json)
Hash identifier: Ae1rvx5NrTNhHcY8MrvxulBcBaaGUD16yp7JlvxHUHQ=
Subject key identifier: 68:C3:AC:7B:49:79:2B:83:DE:94:9D:D9:DA:BC:0C:3F:69:D7:A4:40
Certificate issuer: /CN=89056fa9625b6c87404267c6dc219924ac160045
Certificate serial: 0183155DF9A2716BFEEF859FFB54A33DB33C
Authority key identifier: 89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/aMOse0l5K4PelJ3Z2rwMP2nXpEA.roa
Signing time: Wed 07 Sep 2022 00:33:43 +0000
ROA not before: Wed 07 Sep 2022 00:33:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35758
IP address blocks: 147.78.2.0/24 maxlen: 24
2a11:840:30::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:15:5d:f9:a2:71:6b:fe:ef:85:9f:fb:54:a3:3d:b3:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89056fa9625b6c87404267c6dc219924ac160045
Validity
Not Before: Sep 7 00:33:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=68c3ac7b49792b83de949dd9dabc0c3f69d7a440
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c4:99:12:df:9f:5f:a5:be:da:03:77:61:7f:
75:3d:38:10:c2:bf:e2:28:47:7f:35:77:da:5f:64:
f6:71:79:c8:ef:3b:02:82:ca:02:23:d0:6b:e5:c3:
93:47:61:67:1e:88:82:da:98:91:f5:2b:ff:be:fb:
46:63:ac:f5:95:71:4d:bc:b2:6e:8b:39:1c:05:12:
87:a9:73:d9:2b:55:48:c1:81:77:c4:7d:4f:7a:12:
a3:65:4a:59:95:a9:d8:80:51:4a:d7:14:9f:20:b3:
0d:1e:e9:e9:87:a8:6b:9e:c5:47:8b:d1:9b:ca:13:
6b:2c:39:7c:d0:58:7c:69:d7:bc:dd:6f:e3:a5:1e:
62:cf:2b:74:d6:9c:4b:6c:20:58:a7:24:1e:42:1e:
b7:4e:77:fd:2b:fe:d7:9f:01:50:43:46:74:5e:00:
29:2d:8b:c5:53:82:bc:a6:ad:bf:21:d4:8e:7f:8d:
f3:d9:d6:55:b8:eb:0c:8c:2e:e0:00:67:2e:9e:0d:
ee:35:6c:d5:6b:9f:a6:08:07:75:3a:15:94:6c:e4:
a4:52:44:2d:13:12:ab:31:dd:4d:f0:e2:d2:c4:25:
05:b8:b7:ec:87:05:72:7b:8b:eb:bd:4a:8d:d0:e9:
33:c7:e6:8d:cb:53:5b:57:ad:fb:e2:b9:d9:12:6d:
9d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:C3:AC:7B:49:79:2B:83:DE:94:9D:D9:DA:BC:0C:3F:69:D7:A4:40
X509v3 Authority Key Identifier:
keyid:89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/aMOse0l5K4PelJ3Z2rwMP2nXpEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.2.0/24
IPv6:
2a11:840:30::/48
Signature Algorithm: sha256WithRSAEncryption
34:b1:9b:13:d7:7b:c1:85:0e:64:00:e4:2b:7b:53:b9:38:07:
e0:f2:80:4e:04:c1:d8:f1:aa:11:0f:64:9f:d4:d5:15:df:fc:
4f:44:0f:ef:e0:cf:4d:01:39:85:13:a1:fe:64:b0:31:6f:6c:
04:17:07:af:a6:8d:24:21:1f:5e:1e:d9:19:d1:ec:24:b3:a9:
7e:84:9f:5d:1a:90:e9:a3:19:a6:20:96:7d:07:78:d7:cc:69:
a0:08:1a:9f:be:7b:f2:0e:c0:53:9e:6d:bf:8d:15:05:7a:b7:
e2:8b:d2:5e:f1:4c:22:d4:3d:9f:c4:12:c7:a1:9a:bb:eb:15:
b2:9b:07:32:25:9e:9a:90:41:a8:77:7a:4d:52:0d:8c:db:6b:
d4:b7:0c:c6:97:e8:5f:30:1e:c2:86:ca:c3:a3:4a:55:4e:30:
bf:ec:ca:93:f0:8c:d5:c1:1f:96:56:e6:ce:06:2a:45:2d:ad:
fb:fc:56:10:3c:ce:6e:b0:b7:df:16:04:2e:de:a8:eb:89:65:
9d:82:56:e1:75:c1:27:55:3e:95:3f:38:60:3f:2e:1e:fd:ea:
e4:9a:6f:84:bd:ca:bd:45:a0:02:59:6a:33:d4:8a:4c:8d:e7:
3b:fd:81:2a:b5:5d:83:d6:9c:8e:9c:70:45:e6:51:16:7f:79:
71:b9:d0:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:20 2024 by rpki-client on console-fra.rpki-client.org