Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/yFJTK3-pSPMY9Ue6LUzLPJFCix8.roa
File: yFJTK3-pSPMY9Ue6LUzLPJFCix8.roa (raw, json)
Hash identifier: GyheVRM3mvA79xUabylyUZSTGoO0u3zKseGpoMuaIVw=
Subject key identifier: C8:52:53:2B:7F:A9:48:F3:18:F5:47:BA:2D:4C:CB:3C:91:42:8B:1F
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0184A58DF9DC0789FBE99B3824DFD804C222
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/yFJTK3-pSPMY9Ue6LUzLPJFCix8.roa
Signing time: Wed 23 Nov 2022 17:34:15 +0000
ROA not before: Wed 23 Nov 2022 17:34:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 83.147.240.0/22 maxlen: 24
83.147.244.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a5:8d:f9:dc:07:89:fb:e9:9b:38:24:df:d8:04:c2:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Nov 23 17:34:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c852532b7fa948f318f547ba2d4ccb3c91428b1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:a3:b1:63:43:45:22:1f:3f:a7:bf:6d:c5:0e:
c0:37:9a:8f:b2:40:0b:45:56:25:89:9f:84:09:e7:
61:34:19:63:18:75:0a:87:89:26:17:31:8e:5b:25:
64:ab:d4:de:f6:ad:bc:88:19:28:32:31:1c:6d:35:
c4:a5:d8:2c:70:bd:37:eb:a3:27:a2:17:a9:41:47:
09:2f:0c:c4:45:0c:da:19:81:bd:c3:aa:74:97:90:
f1:84:a7:7c:58:a8:05:73:30:ac:b1:11:e6:7f:9e:
cb:75:70:8f:c9:ac:75:b6:a8:3b:6a:6a:27:a7:1e:
28:d5:4d:bc:8b:6d:a5:a8:cd:87:43:b4:d0:a4:14:
04:3c:f4:7c:db:5e:51:f3:6a:0a:19:ac:18:b7:b5:
6a:8e:9d:18:7e:ca:a2:84:bc:3c:de:5a:88:05:21:
eb:3a:0f:47:d7:b6:62:a8:71:d0:25:ab:76:df:03:
51:e3:bc:21:c6:bf:7a:d1:86:bd:83:26:76:4c:25:
cb:69:1b:76:f5:68:02:16:77:13:bb:25:78:22:8a:
17:77:6c:fd:55:28:22:2c:94:6a:a5:1a:ba:a0:cc:
2c:a4:de:8c:3d:7a:4b:7e:fa:33:da:4e:6b:8f:5e:
a9:43:21:be:7c:a3:28:39:84:a3:80:a4:73:8e:12:
a1:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:52:53:2B:7F:A9:48:F3:18:F5:47:BA:2D:4C:CB:3C:91:42:8B:1F
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/yFJTK3-pSPMY9Ue6LUzLPJFCix8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.240.0/21
Signature Algorithm: sha256WithRSAEncryption
11:c4:90:26:9c:64:dc:a3:ab:db:d8:9f:19:cb:a7:4a:42:63:
79:e7:99:cf:47:81:d9:31:73:fa:ca:af:9c:ea:03:0f:8c:c6:
10:e6:69:be:52:1e:4a:4a:1f:db:97:a5:f6:86:1d:a2:3a:4b:
81:fe:ef:66:72:b7:6f:0d:9e:68:78:a3:16:db:1b:8e:bc:76:
a4:f4:c6:7a:21:7c:c3:bb:72:93:4f:8b:c1:af:2c:68:e9:49:
ab:40:96:85:ad:1d:48:ce:f3:e7:0a:65:2a:d2:19:dd:5e:ee:
d9:68:d1:e3:73:41:2c:84:e3:18:5f:9c:53:7f:79:6e:f1:c7:
d9:77:c2:73:ce:20:ac:cf:11:2e:7c:ef:e2:db:02:5f:b9:7c:
98:da:8b:7d:d8:a2:84:3d:4b:2a:b8:0b:5f:79:6c:58:62:85:
01:e4:a7:a0:02:fb:9d:5e:94:66:ee:ec:83:c4:ca:30:f1:3f:
b1:e3:7b:e8:f2:04:96:39:b6:f2:9e:2d:d5:59:ec:e9:81:bf:
26:f1:93:b5:82:e9:90:47:e8:2c:61:d0:b4:40:c0:d0:92:ab:
84:7e:2f:98:c8:16:0e:cd:24:12:d0:bb:94:ff:7e:90:09:7c:
4d:c3:85:e0:78:e1:08:a9:78:37:ee:ff:3c:b6:8d:34:54:62:
c2:ff:a1:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:45 2023 by rpki-client on console-fra.rpki-client.org