Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/QvcG_5NBGKWRguErIB3dJaIgKfg.roa
File: QvcG_5NBGKWRguErIB3dJaIgKfg.roa (raw, json)
Hash identifier: bjLbTiL5g7kQVFc3hCFcxu1ax4LB5iOe/HjOPDUO2R8=
Subject key identifier: 42:F7:06:FF:93:41:18:A5:91:82:E1:2B:20:1D:DD:25:A2:20:29:F8
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 07FCEB7F
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/QvcG_5NBGKWRguErIB3dJaIgKfg.roa
Signing time: Sat 01 Jan 2022 03:02:08 +0000
ROA not before: Sat 01 Jan 2022 03:02:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205544
IP address blocks: 83.147.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134015871 (0x7fceb7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 1 03:02:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42f706ff934118a59182e12b201ddd25a22029f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ff:9b:63:54:96:7a:80:99:c2:a9:fa:77:b9:eb:
fa:fb:f5:1d:fc:0e:c6:43:71:99:4f:96:e0:d8:05:
75:4c:bf:9f:63:4a:15:e4:e3:42:05:12:fa:15:66:
45:55:ec:ae:b9:7e:35:1d:81:1f:d2:70:f3:80:9f:
e9:92:6d:bb:ca:41:9c:32:f1:4d:1a:d6:be:cc:77:
aa:f0:89:a7:43:e0:6f:83:09:fd:e3:7a:21:13:05:
13:c8:8b:7d:de:4c:d7:e7:e0:6c:20:00:e2:93:a0:
73:8a:6b:09:b8:73:f7:ab:26:e4:65:ce:60:a9:67:
a1:39:d3:d1:3c:d7:10:a1:1e:88:16:f0:5d:8f:09:
f4:99:e7:43:c3:05:9a:38:52:3a:a1:01:4a:a1:0c:
c6:ca:01:79:f1:34:54:4d:e5:16:a3:09:5c:d2:5a:
60:85:56:c3:01:79:47:9b:68:e5:96:df:02:34:ea:
46:30:a8:43:75:20:73:23:b7:01:f7:5d:19:e6:9e:
86:20:36:f6:92:00:27:50:79:b3:36:79:30:c3:71:
c6:e0:99:17:ff:3d:a2:25:15:27:d5:98:71:de:51:
6f:4d:a2:aa:29:61:fe:3b:c8:d3:5e:9e:34:23:a8:
63:31:08:22:89:c8:fb:de:7d:18:e3:8c:f8:43:30:
30:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:F7:06:FF:93:41:18:A5:91:82:E1:2B:20:1D:DD:25:A2:20:29:F8
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/QvcG_5NBGKWRguErIB3dJaIgKfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.216.0/24
Signature Algorithm: sha256WithRSAEncryption
63:68:53:f6:0e:39:dd:a6:25:77:33:0e:a6:1f:b7:7e:b3:ed:
1c:99:65:7f:10:4d:14:d1:de:c8:d6:17:b1:01:5c:b6:3f:bb:
ba:b3:6a:aa:2a:90:c7:3a:d1:d6:65:7e:c9:7d:2f:94:73:a5:
af:69:9b:f5:55:d0:fb:f3:98:0a:5a:2e:b0:0b:3f:61:81:32:
17:60:ee:69:22:38:52:3a:19:c0:57:95:ac:a2:f2:67:03:a4:
93:f8:33:a2:57:40:9a:db:28:fc:b2:58:df:9a:6b:82:27:5c:
13:20:9e:53:d4:a1:98:84:86:79:ad:7c:c9:28:5f:a4:0c:1c:
d9:8e:f7:5b:86:4c:56:e2:4f:54:29:bb:44:13:fd:ec:a6:dc:
b6:a2:ef:30:38:49:18:66:50:d5:27:5b:e8:75:39:d2:c2:b7:
a7:55:c0:73:6e:c5:bc:91:80:8c:17:20:d9:d5:aa:8f:0b:84:
a7:a9:78:73:9b:32:0f:87:aa:7d:cb:6e:c0:00:d0:7b:0c:ee:
d6:90:cd:ef:50:53:de:2d:b0:08:a4:49:db:7a:2c:2c:f0:04:
4f:9e:d8:74:80:19:1a:43:a0:20:03:00:09:32:70:57:e6:64:
98:97:f2:b1:37:b5:bc:f9:0a:8b:41:47:be:f3:3a:6d:04:aa:
c4:ba:b4:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:44 2023 by rpki-client on console-fra.rpki-client.org