Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/UR3Q-6ZgkVSZHLLHm4tPonjDX60.roa
File: UR3Q-6ZgkVSZHLLHm4tPonjDX60.roa (raw, json)
Hash identifier: 8Aa0VpyMj7eBnExjlEC+0G3gn0vYq2QxmOxulwKQLNg=
Subject key identifier: 51:1D:D0:FB:A6:60:91:54:99:1C:B2:C7:9B:8B:4F:A2:78:C3:5F:AD
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 09B8046A
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/UR3Q-6ZgkVSZHLLHm4tPonjDX60.roa
Signing time: Mon 20 Jun 2022 06:53:45 +0000
ROA not before: Mon 20 Jun 2022 06:53:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 178.253.32.0/24 maxlen: 24
178.253.33.0/24 maxlen: 24
83.147.240.0/22 maxlen: 24
83.147.252.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163054698 (0x9b8046a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jun 20 06:53:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=511dd0fba6609154991cb2c79b8b4fa278c35fad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:fc:81:01:0a:80:9b:ee:c9:ee:e0:0b:b1:f6:
fc:09:5c:3b:0d:66:6c:59:85:86:ab:f5:5b:fa:cb:
c1:c1:af:1c:7c:7c:c1:71:b5:db:55:3c:35:ba:77:
66:06:50:99:b9:21:6a:45:94:14:19:3d:6e:7e:5a:
44:f1:cf:75:1a:03:45:61:8c:bd:07:b0:6d:da:ca:
ce:25:d6:b1:02:44:59:ef:af:50:29:dd:85:21:c2:
9d:dd:15:f3:8a:8e:1e:2c:c7:4c:b0:5a:90:3c:57:
84:9e:ff:1d:9e:cf:ca:cd:70:7f:5c:92:0a:db:74:
0a:ba:8a:13:2d:8f:ff:d3:9d:05:68:57:35:33:5a:
37:42:76:dc:8f:e4:b4:fc:25:7f:5c:fa:fc:7a:73:
2f:dc:e8:c2:10:7e:74:cf:b8:ca:e1:ac:81:ce:22:
99:c3:d7:df:53:99:8e:cc:0b:02:56:6b:50:3f:f8:
64:7f:cc:ef:a6:7d:d2:29:05:c3:e7:0d:d1:38:9e:
34:06:e1:a9:2e:ee:40:bd:6b:2b:a5:e7:b4:6e:bc:
fa:57:e1:85:d5:62:be:52:82:34:e2:1f:0e:fe:31:
02:60:ef:72:4b:b3:0b:2d:4a:d6:4c:c0:26:ff:73:
da:91:eb:ce:d9:f0:93:f7:a9:d7:ea:97:d9:56:c3:
65:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:1D:D0:FB:A6:60:91:54:99:1C:B2:C7:9B:8B:4F:A2:78:C3:5F:AD
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/UR3Q-6ZgkVSZHLLHm4tPonjDX60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.240.0/22
83.147.252.0/22
178.253.32.0/23
Signature Algorithm: sha256WithRSAEncryption
9f:84:d7:be:de:68:44:cc:c5:7b:2f:ca:2c:5b:74:e3:97:88:
dc:82:3f:f8:7b:88:d3:73:7d:e8:fa:43:26:50:de:05:f1:b5:
b7:ea:cb:96:53:4d:18:ee:19:6f:cd:d0:16:b2:cd:8a:e2:98:
d6:d6:15:0f:56:bd:8e:8e:45:55:d6:a7:30:d4:e0:6a:07:6e:
a5:5f:1d:db:2a:3b:d5:91:28:0d:01:9b:86:96:c0:d0:1a:cf:
9b:7b:25:a6:d0:4d:8f:65:e5:3d:e3:4b:b3:9a:e6:e6:2b:a1:
23:0b:44:a2:d1:e5:df:2a:4f:e4:00:dd:76:46:9c:34:9a:8d:
15:4a:a1:f6:a9:a3:8f:29:56:b9:9f:cb:5c:93:e0:89:6a:9a:
e0:bb:44:de:ce:48:19:b9:4f:98:1b:36:60:c9:f8:48:1f:f3:
5f:8e:71:87:f0:b4:bb:75:25:66:1d:e3:c0:b8:f2:90:d4:d8:
16:ce:c0:b7:53:eb:66:48:de:84:1f:70:1c:5a:6a:36:c4:97:
95:da:c0:b1:33:8c:1b:37:a7:74:0f:55:e4:19:4e:53:c3:fc:
16:13:54:8f:19:7d:3f:19:76:74:b9:cd:b3:73:55:3d:c8:8b:
98:1b:49:ee:a0:24:00:79:88:1c:ea:d1:97:56:3c:12:c0:ca:
61:ae:07:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:44 2023 by rpki-client on console-fra.rpki-client.org