Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/ikes7Ft7wZRxMYKgbixHwaBgqME.roa
File: ikes7Ft7wZRxMYKgbixHwaBgqME.roa (raw, json)
Hash identifier: BKqQIzk3JE/Gt664HU93FDpEP1lyJAWvwoCY0geUbhg=
Subject key identifier: 8A:47:AC:EC:5B:7B:C1:94:71:31:82:A0:6E:2C:47:C1:A0:60:A8:C1
Certificate issuer: /CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Certificate serial: 0B6F1EEC
Authority key identifier: 92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/ikes7Ft7wZRxMYKgbixHwaBgqME.roa
Signing time: Tue 12 Apr 2022 14:31:31 +0000
ROA not before: Tue 12 Apr 2022 14:31:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 147.161.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 191831788 (0xb6f1eec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Validity
Not Before: Apr 12 14:31:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a47acec5b7bc194713182a06e2c47c1a060a8c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:51:63:5f:f4:35:f2:c7:d0:50:ac:18:c2:ad:
c9:30:90:b5:8a:a7:d8:a8:23:70:5e:a8:de:c0:a5:
5a:f5:32:5b:28:85:b5:d4:07:b6:3d:a2:fd:81:68:
77:06:73:2a:20:80:0f:74:eb:6f:b2:e6:f6:69:52:
fa:15:52:b8:0b:af:d2:20:f1:32:f2:66:6d:12:34:
c3:79:93:8b:43:2b:02:4f:ed:15:4a:e5:02:60:f3:
b8:f3:99:30:ca:c3:16:6d:b8:11:b6:02:bb:51:af:
67:2c:a6:32:4d:8f:a3:26:51:a7:b7:bc:30:4f:d0:
f0:12:17:80:65:b2:b7:15:56:a2:f9:95:4a:10:9d:
0b:bd:1b:e5:b9:b3:ce:e5:0e:3d:29:cf:e8:d0:46:
53:63:31:77:b5:0f:76:9b:c5:8e:a2:80:75:9b:12:
20:d4:b9:2c:6b:e4:0d:c7:f2:b1:37:e6:07:65:d5:
e4:9c:0c:3e:09:74:20:18:02:0a:e2:40:ba:9c:6e:
b9:9d:69:0f:6d:f8:5d:4e:4b:a4:2e:90:19:0c:e7:
10:59:c2:49:ae:76:db:26:18:ab:50:b8:67:69:26:
0f:ee:bf:a3:be:bc:a2:34:dc:30:68:25:8b:6f:6b:
fd:39:e3:47:c2:f0:a0:b3:ab:e6:89:6e:8a:6f:16:
de:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:47:AC:EC:5B:7B:C1:94:71:31:82:A0:6E:2C:47:C1:A0:60:A8:C1
X509v3 Authority Key Identifier:
keyid:92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/ikes7Ft7wZRxMYKgbixHwaBgqME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/kucgRlxc0NqcahO0T6DYb2SeUFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.161.2.0/24
Signature Algorithm: sha256WithRSAEncryption
77:ed:f6:d1:07:38:a9:e8:a7:fd:76:24:be:12:a0:3b:b2:0f:
74:33:ef:a1:97:eb:3f:f5:82:a2:92:e1:a5:49:74:29:d9:c3:
72:c4:e8:4b:73:6c:37:f7:9c:dc:7b:c4:88:0d:fb:ea:18:ee:
dc:35:f2:2f:9e:e0:81:d2:43:88:6f:fb:f7:25:e8:fc:7f:1e:
58:55:cd:37:1f:ad:7d:69:47:46:42:35:97:d6:f6:4d:2e:87:
d7:8d:b1:2b:93:16:e6:34:c9:6d:57:05:1c:ab:ba:6d:9d:b8:
17:70:c7:a7:c6:40:93:4b:92:8d:cb:5d:36:cd:1c:07:6a:2a:
8f:1e:04:d0:7c:1d:5c:91:fb:25:90:34:f1:95:d0:93:6f:1d:
35:f4:75:39:7d:5e:ea:57:3d:30:5a:ab:ea:5c:11:ae:83:08:
1f:39:99:7e:45:e3:9f:1c:c8:16:4d:25:c4:61:21:44:0b:b1:
a8:f1:e5:15:76:05:9c:27:a4:1d:55:a2:0f:50:3e:47:f6:03:
2c:36:d5:c8:40:d4:b7:51:8a:71:8f:08:45:ca:f5:b4:83:56:
38:d4:69:84:2b:6b:81:55:bf:33:05:31:6d:aa:9d:dc:f4:72:
9e:df:02:cf:9d:46:96:ef:2a:e8:e0:9c:3b:69:63:e1:11:86:
a5:c2:70:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:14 2024 by rpki-client on console-ams.rpki-client.org