Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/1-rMnQ2scEgN7wF7jQNtlwUWaglE.roa
File: 1-rMnQ2scEgN7wF7jQNtlwUWaglE.roa (raw, json)
Hash identifier: wCRrNNrWBZUnAuBkqPo6GY/khyREx7z1Fypyohm8P9Q=
Subject key identifier: FA:B3:27:43:6B:1C:12:03:7B:C0:5E:E3:40:DB:65:C1:45:9A:82:51
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018439D7021F753E5E9465564E8764E1E4C5
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/1-rMnQ2scEgN7wF7jQNtlwUWaglE.roa
Signing time: Wed 02 Nov 2022 19:35:02 +0000
ROA not before: Wed 02 Nov 2022 19:35:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51765
IP address blocks: 83.147.223.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:39:d7:02:1f:75:3e:5e:94:65:56:4e:87:64:e1:e4:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Nov 2 19:35:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fab327436b1c12037bc05ee340db65c1459a8251
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d9:34:8c:54:3a:d3:4b:0d:1f:93:6c:a6:16:
82:07:ee:64:ff:83:83:36:59:9c:50:ca:0c:c7:83:
07:eb:b7:41:32:c7:7b:9b:e6:87:9c:02:7f:e0:74:
35:29:02:47:d6:21:fb:1f:ec:79:c7:d3:78:ff:b6:
d4:02:3c:49:e1:a0:37:06:e0:1c:a6:0b:36:89:56:
87:2f:5d:fe:2e:3a:84:72:3a:cc:e2:c0:21:83:fb:
3f:c7:18:0e:08:7c:a4:f3:57:c9:85:a1:09:3c:97:
8f:7f:67:3c:26:3b:2c:4e:53:77:8c:15:97:a7:b7:
11:98:ce:f4:7e:12:a7:e4:f6:f7:4b:d0:77:39:4a:
76:f6:89:45:33:5f:6b:fd:bb:72:45:ca:b4:b3:25:
6c:ad:85:30:fa:2d:c3:9f:81:2b:17:6b:c5:fe:16:
f8:de:f8:d0:1f:a3:1c:0c:f3:3b:94:c5:bf:35:5e:
af:46:f8:81:08:2d:85:23:9c:0d:c4:db:0f:09:dd:
f7:5e:73:5b:4a:a2:61:63:10:50:2c:75:dc:33:92:
2d:ee:70:75:b8:d1:cb:16:fc:7a:43:16:32:5f:65:
f8:03:33:af:ce:ee:47:fa:98:1b:8a:6f:96:27:41:
b0:68:4c:71:e8:16:0c:13:7a:1d:e8:58:86:4e:b1:
f7:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:B3:27:43:6B:1C:12:03:7B:C0:5E:E3:40:DB:65:C1:45:9A:82:51
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/1-rMnQ2scEgN7wF7jQNtlwUWaglE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.223.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:79:d4:bc:59:00:cc:19:98:d6:a5:91:10:24:97:e9:fd:01:
72:67:8a:cf:6d:d0:8b:5b:42:54:0f:5e:39:8a:61:18:5c:0a:
47:4e:ea:20:ac:7a:c8:27:4a:8a:5c:b3:9f:e9:8c:82:d8:9c:
20:ad:66:5a:9c:2b:f2:ef:09:4e:7a:96:3b:57:3f:e9:95:ef:
88:46:85:bf:9d:d8:bb:35:9f:6a:f6:c0:21:19:ff:9f:ad:53:
83:a3:71:b0:58:4e:a4:0a:5c:0a:fd:f3:97:c5:66:36:fe:03:
07:3a:c3:0b:cc:3c:77:d4:e4:a2:ee:ca:84:8b:74:72:4d:62:
9d:e5:2e:b1:c8:e4:fe:b3:24:3a:71:7a:2d:e0:53:75:70:03:
8d:a8:cc:88:f1:b5:26:00:cb:c1:8d:63:22:5d:f2:06:c9:cd:
ca:67:37:f5:da:00:03:d7:8e:0e:04:68:bb:fe:e7:1a:3d:a1:
dd:87:da:88:72:db:ac:83:0c:e1:f6:e7:59:00:a9:67:d5:46:
10:b5:52:bc:2d:01:da:b4:fa:4d:ec:02:8e:dc:3f:00:17:0c:
0e:dd:73:ad:9b:a0:1e:75:a2:b5:48:d3:5b:0a:a4:c7:66:70:
54:5a:ce:d8:5e:75:f4:a0:b4:93:e3:8c:95:e0:5c:10:48:7e:
65:b3:a1:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:18 2024 by rpki-client on console-ams.rpki-client.org