Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/dJ29VhJ0XGCueDqZGnHBPjjUEGk.roa
File: dJ29VhJ0XGCueDqZGnHBPjjUEGk.roa (raw, json)
Hash identifier: KTwpzChbp8CgodiRFF1uFYeN38Ah5UqOayxXKgQ/SFM=
Subject key identifier: 74:9D:BD:56:12:74:5C:60:AE:78:3A:99:1A:71:C1:3E:38:D4:10:69
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0184D2E7F7F7FB6BBBF05B7F03701014D38D
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/dJ29VhJ0XGCueDqZGnHBPjjUEGk.roa
Signing time: Fri 02 Dec 2022 12:55:28 +0000
ROA not before: Fri 02 Dec 2022 12:55:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202492
IP address blocks: 83.147.196.0/22 maxlen: 22
83.147.195.0/24 maxlen: 24
94.241.188.0/22 maxlen: 22
83.147.200.0/22 maxlen: 22
83.147.204.0/22 maxlen: 22
83.147.208.0/24 maxlen: 24
83.147.210.0/24 maxlen: 24
83.147.211.0/24 maxlen: 24
83.147.208.0/22 maxlen: 24
83.147.209.0/24 maxlen: 24
83.147.218.0/23 maxlen: 23
83.147.220.0/23 maxlen: 23
83.147.224.0/22 maxlen: 22
83.147.228.0/22 maxlen: 22
83.147.236.0/22 maxlen: 22
178.253.0.0/21 maxlen: 21
94.241.144.0/21 maxlen: 21
178.253.14.0/23 maxlen: 23
178.253.17.0/24 maxlen: 24
178.253.20.0/23 maxlen: 23
178.253.24.0/23 maxlen: 23
178.253.28.0/23 maxlen: 24
178.253.30.0/24 maxlen: 24
178.253.36.0/23 maxlen: 23
178.253.34.0/23 maxlen: 23
178.253.46.0/23 maxlen: 23
178.253.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d2:e7:f7:f7:fb:6b:bb:f0:5b:7f:03:70:10:14:d3:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Dec 2 12:55:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=749dbd5612745c60ae783a991a71c13e38d41069
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:df:0a:71:c6:70:39:af:01:39:30:23:68:53:
2d:c9:d9:a1:8a:01:4d:a7:f0:ee:58:63:db:04:85:
7c:e7:18:30:5d:60:17:4e:f8:9a:b9:2c:85:54:99:
fc:d6:ee:49:de:83:53:7d:df:5c:46:f4:ec:86:98:
9f:01:e6:f4:cd:2e:f4:01:f0:4d:8b:8e:ed:fb:2e:
77:0e:2c:7c:9a:44:55:56:79:8d:5a:52:10:00:69:
4f:e5:ad:68:32:fb:39:e4:00:7c:27:48:f7:79:c0:
21:ce:4b:a5:b5:8f:4d:26:77:e1:60:47:08:5e:27:
df:df:f9:a1:79:a5:99:e0:e6:88:87:be:62:7d:4f:
89:13:2b:f2:f8:e2:21:f2:72:71:cb:77:0c:75:b4:
a1:28:1f:cc:59:37:1a:0a:b2:ac:43:fb:15:c7:38:
e8:94:61:0d:fc:7a:16:a9:e8:d7:67:24:4c:b7:15:
a6:1e:09:72:bd:8a:78:c4:39:9a:01:da:46:89:b6:
62:fc:a2:4b:16:84:0c:30:1d:31:3e:7d:1b:88:db:
ce:6c:40:01:82:8a:c2:94:a8:b1:0b:a3:9a:d2:2f:
81:e8:a3:cb:7a:e4:db:cd:bd:eb:4d:5d:fd:51:7e:
bf:ea:c6:85:e7:a6:60:d9:ef:f0:70:ce:63:a6:6b:
ba:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:9D:BD:56:12:74:5C:60:AE:78:3A:99:1A:71:C1:3E:38:D4:10:69
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/dJ29VhJ0XGCueDqZGnHBPjjUEGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.195.0-83.147.211.255
83.147.218.0-83.147.221.255
83.147.224.0/21
83.147.236.0/22
94.241.144.0/21
94.241.188.0/22
178.253.0.0/21
178.253.14.0/23
178.253.17.0/24
178.253.20.0/23
178.253.24.0/23
178.253.28.0-178.253.30.255
178.253.34.0-178.253.37.255
178.253.46.0/23
178.253.54.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:9c:67:99:d9:92:d7:e2:55:2a:05:cd:6c:76:1a:87:7c:e3:
63:43:fe:e7:48:f3:2b:04:c2:09:95:a4:66:7d:35:be:07:17:
eb:8f:40:40:db:ba:ac:ca:b9:ed:98:da:95:88:56:da:29:21:
0c:3f:4e:36:fd:73:4c:b2:3e:d0:f7:73:2e:ae:d3:7f:73:f7:
d2:00:87:64:9e:1d:ab:51:a8:ea:7e:50:77:79:f8:f9:a1:f2:
a9:4c:f0:fa:96:46:17:ae:e8:8e:87:8a:da:4f:65:0c:ca:40:
c7:4a:c1:25:e1:0f:12:68:5b:26:a3:eb:b6:94:ca:d8:39:96:
2d:52:d0:e4:09:ff:30:d4:5e:fb:9d:28:b5:e7:52:fc:f9:b0:
40:ac:9b:22:a9:08:72:d7:07:aa:9e:0d:30:7d:a9:95:30:0d:
9e:83:18:60:0c:66:bc:65:21:3f:bc:d8:a0:58:1c:76:28:16:
32:6f:09:52:ba:3b:18:cc:c6:47:2f:ab:d1:4f:42:32:ca:39:
a5:f6:69:49:6f:99:d5:de:cf:61:63:a9:56:21:78:72:c9:b6:
5b:17:53:2d:00:94:af:bd:98:cf:fb:79:71:98:7d:62:82:b0:
b6:3a:31:6d:7d:bd:97:e4:b0:eb:e1:3f:96:04:13:4a:1d:3b:
8c:83:3d:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:38 2023 by rpki-client on console-ams.rpki-client.org