Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/c_iGeTxMLY6HFxbLiM4TgruGLhI.roa
File: c_iGeTxMLY6HFxbLiM4TgruGLhI.roa (raw, json)
Hash identifier: pm4xGJ9UlKF4JpkzRSriyzg0eb7a4gTIBAUrWcT0unE=
Subject key identifier: 73:F8:86:79:3C:4C:2D:8E:87:17:16:CB:88:CE:13:82:BB:86:2E:12
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0183C3854EA188EE235DF887A2CE0C426019
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/c_iGeTxMLY6HFxbLiM4TgruGLhI.roa
Signing time: Mon 10 Oct 2022 20:10:36 +0000
ROA not before: Mon 10 Oct 2022 20:10:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 83.147.232.0/22 maxlen: 24
83.147.240.0/22 maxlen: 24
83.147.252.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c3:85:4e:a1:88:ee:23:5d:f8:87:a2:ce:0c:42:60:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Oct 10 20:10:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=73f886793c4c2d8e871716cb88ce1382bb862e12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c6:75:a0:a5:4d:e4:d2:d8:d2:4e:5f:53:8f:
f4:e8:d0:69:fe:46:63:6e:0e:0f:7b:79:19:8a:1e:
9d:4e:dd:3a:55:f6:f5:4d:88:4b:b4:cc:97:02:11:
c5:8e:82:a1:21:69:ab:ae:6a:05:aa:3f:e7:cf:60:
fb:62:cb:7b:c6:70:00:b0:2b:c1:0b:8e:84:2f:4e:
ce:78:70:21:d1:73:78:a3:98:8f:50:a9:37:de:a8:
40:3a:10:59:e4:d4:91:98:a6:58:0c:d3:aa:a2:59:
c8:19:83:56:13:7f:21:16:9c:e7:d7:45:69:89:9b:
45:e3:f5:84:4e:42:1a:05:39:b8:ec:58:62:f7:e8:
ea:01:65:cc:40:9b:24:ae:29:65:bb:2a:b0:c3:f4:
42:7d:a2:c2:f7:77:de:00:64:1a:68:89:54:75:c7:
86:94:cd:d6:ac:1f:a3:3b:46:43:1c:97:c7:b1:04:
59:b0:4d:51:50:5e:40:f3:41:76:b5:cd:01:4c:d6:
a4:53:a8:c9:20:fd:43:db:a4:be:86:d5:7f:57:d5:
de:60:cf:8e:5f:3b:96:9a:98:fa:86:3c:f5:b3:45:
9b:b4:1e:7d:15:8d:da:7c:40:9c:d9:e7:ab:e9:9b:
1d:e5:f6:e7:b0:b4:57:0b:6f:c0:98:c6:11:4b:05:
00:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:F8:86:79:3C:4C:2D:8E:87:17:16:CB:88:CE:13:82:BB:86:2E:12
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/c_iGeTxMLY6HFxbLiM4TgruGLhI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.232.0/22
83.147.240.0/22
83.147.252.0/22
Signature Algorithm: sha256WithRSAEncryption
24:9a:94:7c:b7:cd:c2:1b:6d:5c:cf:14:b9:c8:17:23:89:76:
35:e8:a1:d7:93:04:dd:75:8c:9e:a5:7e:3c:3d:6d:b7:b7:09:
2f:5d:14:de:ef:e4:5e:e6:e0:ee:ef:f9:64:5f:33:cb:7b:e5:
6e:6b:ab:57:f3:70:33:0e:9e:73:cd:b4:a5:f0:72:a2:36:09:
ef:86:e7:32:2a:4d:37:99:2e:71:b4:22:91:ae:94:cb:61:04:
d2:10:6b:13:ec:0d:dc:b0:ff:b7:4e:69:cf:2b:a4:31:e9:fd:
a7:33:09:a5:7d:10:34:0e:23:96:6d:f4:1e:b4:5b:7a:6b:47:
98:35:a5:13:9b:4f:35:0f:89:1e:2a:f2:bd:f5:3e:18:c6:0c:
27:b0:c1:a0:81:3d:05:4f:60:5a:e3:fb:c7:92:b0:46:eb:73:
5d:06:85:78:51:12:f9:a3:ec:7e:32:1c:ac:a7:45:89:48:45:
d7:8f:d6:d9:b4:01:91:75:3e:de:71:87:2e:4c:66:b6:9c:62:
db:db:1c:c1:3a:59:0d:e0:bd:6b:33:37:b9:63:e0:c5:a3:20:
0e:79:d7:49:7a:91:7f:3a:28:66:f4:94:91:c5:b2:2f:63:d3:
65:b4:dd:94:2b:1e:bd:a7:7a:95:03:c4:4b:50:db:11:ea:0c:
c7:1c:0d:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:09 2024 by rpki-client on console-fra.rpki-client.org