Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/ks-HUrLMyhSrIhm8ujduV6z6SEc.roa
File: ks-HUrLMyhSrIhm8ujduV6z6SEc.roa (raw, json)
Hash identifier: BsRGgtyQ4GTNpiRpfTJm2ADguk5tcSnABhIsfxUL2JY=
Subject key identifier: 92:CF:87:52:B2:CC:CA:14:AB:22:19:BC:BA:37:6E:57:AC:FA:48:47
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0184A58EE3BF0018F78D40F1EB4F14371DD2
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/ks-HUrLMyhSrIhm8ujduV6z6SEc.roa
Signing time: Wed 23 Nov 2022 17:35:15 +0000
ROA not before: Wed 23 Nov 2022 17:35:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 83.147.240.0/22 maxlen: 24
83.147.244.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a5:8e:e3:bf:00:18:f7:8d:40:f1:eb:4f:14:37:1d:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Nov 23 17:35:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=92cf8752b2ccca14ab2219bcba376e57acfa4847
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:80:ea:71:c2:8b:dd:26:85:19:8e:d0:8a:d3:
6f:e9:84:9f:b7:91:c4:4f:b1:46:a3:9a:27:f2:55:
3d:8b:fa:9a:a2:2e:b7:12:83:ab:20:67:5e:4c:3e:
d1:03:42:1f:6b:04:e2:f9:2c:10:71:09:40:3b:16:
3d:a6:1b:28:d3:ac:66:4e:44:d3:9c:89:55:32:5c:
11:3c:e1:e9:33:49:29:b2:c8:cc:e6:ca:d3:a1:eb:
1e:59:56:8f:87:61:c5:af:ad:38:4c:b9:64:06:1b:
a7:d2:f2:6c:3e:aa:61:50:b5:f6:e1:5a:10:a9:84:
03:e1:a3:60:82:95:fd:b7:1e:66:89:82:fe:9a:fa:
a7:31:6c:3a:18:76:1b:fa:bf:ba:3d:41:8a:37:cd:
a7:b8:a9:11:b5:11:cd:13:32:7a:2a:b7:0b:2a:07:
37:71:cb:46:26:42:de:3e:8b:2b:b1:4b:75:09:bc:
c6:c1:20:78:45:a5:8c:65:fd:59:55:d5:f3:f3:b9:
ac:ba:83:64:44:07:17:f8:4c:e4:ab:9f:56:fa:30:
7b:21:81:d4:54:a9:65:95:5e:e2:b1:e2:d7:23:0c:
df:d9:62:a2:9d:b9:cf:5f:55:80:24:c4:58:37:1d:
60:63:83:d1:26:d6:3c:1a:86:32:01:5a:58:50:72:
41:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:CF:87:52:B2:CC:CA:14:AB:22:19:BC:BA:37:6E:57:AC:FA:48:47
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/ks-HUrLMyhSrIhm8ujduV6z6SEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.240.0/21
Signature Algorithm: sha256WithRSAEncryption
4e:63:db:7e:bd:61:9a:c3:80:b5:60:9f:e2:30:6a:78:7d:16:
0b:67:2b:31:b7:1b:b2:2b:5d:a0:89:3a:7e:06:c8:6a:d8:15:
1d:46:c3:07:e0:04:10:60:d9:31:d3:00:3b:13:03:ed:ef:e6:
26:98:77:03:6a:70:8d:85:5f:ad:ce:64:b4:82:cf:a0:ba:7b:
ab:e6:72:12:fa:cd:8c:d0:bf:b0:ba:1d:54:8f:ff:4c:8a:cf:
73:11:dc:74:b9:85:f2:92:42:de:67:5e:a1:95:80:e5:c7:30:
c6:6f:9b:9b:b2:3f:b8:4d:4f:0a:8c:70:e3:a5:ad:bc:4c:84:
e3:3f:62:06:af:44:56:b4:91:e3:7d:f4:fb:4e:e8:00:f0:5b:
ef:4b:81:7e:cf:c4:b2:bd:96:cc:68:54:3a:66:fe:49:6d:ae:
c5:35:0f:6e:1d:92:11:fd:c3:59:73:9f:f7:76:5c:c5:c3:51:
54:6c:73:5b:a6:b8:27:2b:1d:c7:62:72:f4:34:68:f7:a3:43:
00:f3:b5:50:bc:86:2f:bb:be:cd:83:c2:0e:e2:a8:73:bb:4d:
e7:52:87:74:84:f3:f4:8c:20:06:0a:cf:72:1d:93:49:d1:db:
0f:7b:b4:dc:0d:c1:02:57:85:43:ff:d4:16:99:2a:04:16:5e:
78:ac:38:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:44 2023 by rpki-client on console-fra.rpki-client.org