Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/W8hMXExMb2vzx8-H8IbrbL0xH40.roa
File: W8hMXExMb2vzx8-H8IbrbL0xH40.roa (raw, json)
Hash identifier: 3rQWtrdIS9yaYPrdj/KxOA7stzYgSXCfamIWDqk3cQ0=
Subject key identifier: 5B:C8:4C:5C:4C:4C:6F:6B:F3:C7:CF:87:F0:86:EB:6C:BD:31:1F:8D
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018481C41DE5DD84B5CD7D7B674150E10D4B
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/W8hMXExMb2vzx8-H8IbrbL0xH40.roa
Signing time: Wed 16 Nov 2022 18:47:04 +0000
ROA not before: Wed 16 Nov 2022 18:47:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 83.147.232.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:81:c4:1d:e5:dd:84:b5:cd:7d:7b:67:41:50:e1:0d:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Nov 16 18:47:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5bc84c5c4c4c6f6bf3c7cf87f086eb6cbd311f8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:83:3f:86:60:b1:4b:e2:34:cb:33:29:d2:09:
b6:e6:10:a8:5b:e2:e4:49:14:33:a1:c9:8e:07:40:
38:04:47:6b:67:04:89:20:a2:89:11:d4:59:37:f0:
59:d7:4f:95:df:ee:2f:8e:51:ab:d9:fa:7e:93:41:
a3:13:b9:65:70:57:18:ae:91:b8:c4:06:90:64:e7:
0b:3a:dd:ae:34:5a:32:be:b5:85:54:a1:c6:63:e4:
6f:6d:87:62:2b:ad:6b:b6:ea:86:57:24:a9:49:1b:
58:fa:10:ab:be:a2:6f:8a:e6:68:e0:40:64:67:6a:
07:32:4b:90:65:48:49:cd:fe:fa:d8:79:62:b6:6c:
e6:99:99:7f:c8:1d:90:34:91:2e:8b:a6:45:57:55:
a9:5b:e6:1c:64:fb:a4:a8:43:f4:08:da:4a:23:96:
90:ef:89:1d:3a:72:f8:fc:7d:77:64:ea:19:2f:61:
23:4c:da:39:7d:22:0d:15:c9:db:72:24:54:a9:b9:
57:8c:00:c3:32:95:ba:61:5c:0c:df:7a:48:31:8a:
70:e4:1d:3b:2d:43:59:f2:7b:40:7a:31:e2:f6:d0:
5f:ad:ac:fe:38:f3:15:73:66:bb:15:67:f5:d4:b0:
cc:0f:22:52:ab:82:70:e7:7e:2d:b5:72:89:93:11:
53:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:C8:4C:5C:4C:4C:6F:6B:F3:C7:CF:87:F0:86:EB:6C:BD:31:1F:8D
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/W8hMXExMb2vzx8-H8IbrbL0xH40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.232.0/22
Signature Algorithm: sha256WithRSAEncryption
75:f3:6b:5f:97:65:58:27:d5:13:31:ca:00:49:9e:16:eb:70:
91:30:ff:c9:db:80:64:e8:61:79:e1:87:f4:84:4b:a5:36:ea:
1c:2a:f1:25:bb:9b:b9:cb:c6:e0:7e:69:3d:42:3c:1c:0a:6d:
af:07:c6:00:18:60:d8:2b:72:dc:ff:bc:c8:17:a8:2e:e6:d6:
5b:39:ea:e7:0c:21:d6:51:19:b8:23:3c:26:6f:81:6f:ac:cd:
f5:1a:9a:a6:9b:6b:2e:9d:27:de:82:a1:dc:5f:3b:28:3b:0c:
df:70:70:35:76:d0:57:54:40:f8:91:74:8a:f8:e3:6e:a8:92:
4c:09:33:64:30:13:40:fe:2a:0e:f5:42:35:68:35:d9:57:f7:
5c:36:3e:29:6c:82:71:75:e7:3c:8c:98:1c:eb:28:f5:f7:97:
63:15:e9:b6:cd:b8:05:1e:b3:b1:71:b1:bf:0a:9a:94:d8:06:
56:6c:a1:1c:1e:e4:90:a2:73:51:7c:ce:81:ab:00:87:0f:dc:
46:1b:45:95:41:eb:13:34:ac:b1:a9:8b:34:d9:78:ba:ad:54:
c6:03:c0:b8:b4:8e:76:6e:dc:09:30:28:15:52:4d:1b:4b:65:
7d:8b:c4:cf:ee:4c:18:16:89:3e:d9:a5:05:f4:d7:e2:58:74:
8f:4f:a8:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:38 2023 by rpki-client on console-ams.rpki-client.org