Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/hJlQ4Em_KQTm3mGGHSRcqkJzSLk.roa
File: hJlQ4Em_KQTm3mGGHSRcqkJzSLk.roa (raw, json)
Hash identifier: NTcYpyZpJqUWSwN110z4lEJVJ7Z6BPF/N5C4MdMnWJk=
Subject key identifier: 84:99:50:E0:49:BF:29:04:E6:DE:61:86:1D:24:5C:AA:42:73:48:B9
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 08B40D9F
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/hJlQ4Em_KQTm3mGGHSRcqkJzSLk.roa
Signing time: Sun 13 Mar 2022 05:33:57 +0000
ROA not before: Sun 13 Mar 2022 05:33:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30823
IP address blocks: 91.186.204.0/22 maxlen: 24
83.147.244.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146017695 (0x8b40d9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Mar 13 05:33:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=849950e049bf2904e6de61861d245caa427348b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:c9:57:d5:be:72:ec:4e:d8:1d:e7:35:6f:8b:
3c:7a:d9:99:69:1a:1f:c0:f6:f5:7d:58:2c:c4:7a:
81:de:bb:cb:25:5b:e2:36:ac:67:d7:5a:88:e7:5b:
8b:48:a6:f0:01:4d:10:02:41:76:e4:57:ea:28:49:
f1:c5:ac:92:1c:da:3b:80:2f:19:2a:44:d4:e3:05:
00:a4:d5:77:56:d4:96:52:84:fc:1f:bc:f0:f9:b1:
3e:60:5b:10:a1:33:70:86:26:0e:c8:00:b3:fe:e7:
17:f9:ce:9d:58:4a:43:88:ac:24:79:eb:69:62:26:
62:22:0d:c4:0f:ca:c0:db:fe:02:c6:de:82:a1:cd:
02:ac:47:aa:23:19:56:33:63:21:d4:a6:08:17:0f:
38:16:44:75:93:bd:d4:6b:10:19:cd:db:72:ac:7d:
75:dd:22:bf:d2:ea:1a:8a:5c:47:d8:f8:78:0d:2e:
ba:7a:75:23:59:e0:13:0f:6f:1f:0b:df:21:6b:10:
28:2f:3b:0c:07:fa:3e:0d:32:a6:ae:f5:12:fc:26:
af:53:b2:b6:85:7f:36:60:2f:1a:2c:58:1e:64:24:
74:24:88:76:62:76:6c:c5:24:a4:5a:86:94:76:f9:
5f:f4:73:85:24:48:d6:64:58:d3:bf:f8:9a:a0:a8:
b4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:99:50:E0:49:BF:29:04:E6:DE:61:86:1D:24:5C:AA:42:73:48:B9
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/hJlQ4Em_KQTm3mGGHSRcqkJzSLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.244.0/22
91.186.204.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:26:c7:71:17:7f:ec:bd:b5:af:74:e8:5a:23:a0:4d:d5:73:
ef:2b:7e:a1:64:14:af:f0:5e:8e:b4:5a:18:e6:43:d4:c3:73:
72:43:4e:fa:63:b9:2f:5c:28:1f:96:66:d7:21:93:8c:ee:bb:
90:ec:79:78:51:d9:4d:ca:37:1a:b1:3b:84:25:18:a6:81:f5:
33:9d:d3:41:a5:9b:bc:5c:43:80:d3:2a:71:01:26:a1:ae:d8:
8e:cd:97:f2:d4:0f:33:20:4c:c3:fe:4e:6b:9b:9b:99:11:d5:
b6:3d:7d:60:27:3f:a2:b1:2b:e5:34:42:5f:09:58:3a:de:15:
c4:21:a7:c9:1e:c1:f4:94:23:42:bd:90:08:c5:0d:11:b7:f8:
e1:72:11:49:bd:14:00:3e:d4:71:71:5c:b7:76:01:b0:18:41:
95:06:86:aa:f9:7c:69:da:b1:c0:71:fa:3d:b3:0d:d7:6e:d9:
0c:42:b0:d4:ce:14:04:c1:36:75:c3:49:e3:53:51:ed:62:f4:
9f:86:65:8a:4d:58:1f:75:c8:cf:04:6f:34:61:63:cf:2c:85:
74:e2:7d:cf:9d:90:e9:fe:ba:9e:7c:f1:67:8c:6c:53:02:63:
12:b5:a1:b4:1f:62:21:9b:bd:fc:50:04:45:0b:ef:9d:86:61:
40:8a:72:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:44 2023 by rpki-client on console-fra.rpki-client.org