Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/baN7EjyNlxPf3XAUw2fT7lmtGzw.roa
File: baN7EjyNlxPf3XAUw2fT7lmtGzw.roa (raw, json)
Hash identifier: rMLXwjftlVasFVmelHL60Pzu02z4NysPwRJzoTKicCw=
Subject key identifier: 6D:A3:7B:12:3C:8D:97:13:DF:DD:70:14:C3:67:D3:EE:59:AD:1B:3C
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0184F977ACDB8D5BC7644D510023968F49AA
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/baN7EjyNlxPf3XAUw2fT7lmtGzw.roa
Signing time: Sat 10 Dec 2022 00:38:00 +0000
ROA not before: Sat 10 Dec 2022 00:38:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205220
IP address blocks: 91.186.220.0/22 maxlen: 24
83.147.252.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f9:77:ac:db:8d:5b:c7:64:4d:51:00:23:96:8f:49:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Dec 10 00:38:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6da37b123c8d9713dfdd7014c367d3ee59ad1b3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:09:42:c3:2a:ca:5e:4e:ac:2e:f7:73:e9:28:
93:61:dc:a5:31:12:f6:4c:b5:48:f7:7e:25:e6:c7:
f0:f7:57:7d:1d:37:f3:07:3f:75:cb:87:9e:8d:19:
23:70:aa:d3:44:13:5f:69:07:c4:34:d6:08:35:f2:
36:fe:90:58:84:7c:6a:2d:e1:19:2e:67:4b:09:df:
c8:53:5d:9b:e5:1c:e5:6e:90:75:0d:2a:fc:4b:d9:
b4:41:9f:3c:f5:55:c8:40:b6:c2:36:cf:c0:b0:9f:
a8:27:07:95:2d:3f:30:9f:51:54:14:a4:f2:92:8c:
f4:71:61:37:b8:b2:67:eb:5b:12:b5:ac:33:bf:47:
ec:67:18:00:17:59:c2:bf:c0:cd:62:b4:70:10:36:
31:70:9a:7a:79:81:21:b7:e2:33:39:21:ab:c6:c6:
62:02:20:5e:db:cb:8f:87:7c:87:78:f3:fc:a0:35:
9f:d8:3d:66:97:a7:00:30:fc:c6:eb:e4:81:45:cc:
94:44:4b:24:96:4a:e8:c2:b4:1d:31:b4:b6:30:2e:
92:ef:e7:d2:55:82:d3:ef:30:75:f3:b6:06:90:9c:
18:79:9f:9b:d8:f7:f3:db:69:e9:8a:97:3f:ef:7f:
a4:be:aa:9a:27:0f:1c:88:ea:95:4b:84:08:6c:32:
60:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:A3:7B:12:3C:8D:97:13:DF:DD:70:14:C3:67:D3:EE:59:AD:1B:3C
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/baN7EjyNlxPf3XAUw2fT7lmtGzw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.252.0/22
91.186.220.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:70:bf:34:63:72:1a:c9:d3:61:42:0f:bc:b0:82:46:20:8e:
8e:14:f7:29:0e:ba:d7:1f:e0:5e:d2:7b:35:dc:14:e6:24:c8:
28:e3:0c:52:b9:61:ab:ac:76:83:e5:fc:48:01:3d:d1:dd:37:
51:f7:b6:01:29:4a:38:4f:ab:6a:7a:24:83:c6:ab:6b:62:95:
21:b3:58:39:82:e8:23:48:f3:51:2f:d8:4e:6a:82:5f:c6:f4:
92:eb:47:bc:f1:e8:2f:bb:01:9e:64:51:07:7e:b5:24:a7:e0:
1e:f3:4b:5d:19:04:4f:89:c5:a1:cc:2b:bb:d6:37:1c:d6:9f:
24:65:ed:b1:b7:22:a0:3e:cb:8a:9a:52:3f:e1:13:92:b2:c7:
77:ca:2b:e5:77:17:d8:c3:07:3e:ab:1b:b4:ff:86:0b:2e:05:
96:f6:5a:59:54:10:d2:20:96:73:e0:46:1e:ae:cc:97:f9:63:
7e:39:7f:30:24:6c:2b:f3:c0:08:27:df:97:97:98:b7:1b:54:
21:15:ea:da:ef:47:fb:14:ce:ab:74:b6:82:60:54:90:06:fb:
ef:fa:5e:7e:f6:a2:ae:46:17:fc:ad:bf:2f:d3:47:63:27:e0:
6a:67:e2:86:3b:53:e8:96:c7:b6:b2:79:34:78:d0:50:73:c3:
8a:7d:64:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:44 2023 by rpki-client on console-fra.rpki-client.org