Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/2fa86f-7f4e-4aab-9dfd-1b3d98bef1e9/1/XV8ePy8009ugvbLqc4OB41FsYt4.roa
File: XV8ePy8009ugvbLqc4OB41FsYt4.roa (raw, json)
Hash identifier: mWh9nv5qMvF/81iuGpgJpxQUUXXHn2Fd6qxV4TO/5VM=
Subject key identifier: 5D:5F:1E:3F:2F:34:D3:DB:A0:BD:B2:EA:73:83:81:E3:51:6C:62:DE
Certificate issuer: /CN=6d150b438cc68f62dc15d359593161f799de53af
Certificate serial: 327D6E86
Authority key identifier: 6D:15:0B:43:8C:C6:8F:62:DC:15:D3:59:59:31:61:F7:99:DE:53:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bRULQ4zGj2LcFdNZWTFh95neU68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/2fa86f-7f4e-4aab-9dfd-1b3d98bef1e9/1/XV8ePy8009ugvbLqc4OB41FsYt4.roa
Signing time: Sat 01 Jan 2022 10:54:02 +0000
ROA not before: Sat 01 Jan 2022 10:54:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 32787
IP address blocks: 83.143.208.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 847081094 (0x327d6e86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d150b438cc68f62dc15d359593161f799de53af
Validity
Not Before: Jan 1 10:54:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d5f1e3f2f34d3dba0bdb2ea738381e3516c62de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:dd:f4:b0:e2:f8:f7:aa:13:e2:24:c9:06:ba:
61:1b:63:97:d1:80:ee:24:db:dc:0a:5a:d5:4d:12:
7e:7f:c4:e5:a3:fc:95:69:f8:74:14:95:73:f5:27:
51:23:96:06:48:81:1a:57:1b:14:9b:1e:b3:35:cd:
b6:dc:8b:5a:7d:c7:b2:b7:ca:03:0a:d3:0e:6c:34:
bb:e8:40:28:17:bb:73:13:7a:29:de:a5:b7:33:a8:
5a:c3:fa:2c:95:71:d9:4c:1a:07:cf:e6:fd:65:45:
d3:1c:58:a0:3c:0e:e4:4c:46:9a:e1:70:6d:80:70:
f1:a1:aa:89:e5:a3:0d:8c:b3:d0:90:25:96:39:cd:
95:36:44:2c:5f:e3:d3:1c:96:ed:5c:d9:d2:d4:08:
bc:57:e8:6a:35:71:24:01:b3:a5:32:e3:73:b2:29:
64:42:8b:72:54:3f:b3:96:d7:72:8a:02:19:9f:33:
32:38:80:dd:ed:cf:cb:a7:ca:42:0a:36:e1:82:4f:
99:8f:20:85:fe:2c:2b:5e:31:96:f1:21:18:d9:66:
b4:26:6e:e7:56:a1:96:dc:f4:5b:f0:23:03:64:f4:
99:b2:ea:27:43:80:59:e3:a0:c6:da:ab:09:8c:35:
05:83:6e:df:2e:94:9f:14:38:66:1f:cf:41:f3:76:
b1:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:5F:1E:3F:2F:34:D3:DB:A0:BD:B2:EA:73:83:81:E3:51:6C:62:DE
X509v3 Authority Key Identifier:
keyid:6D:15:0B:43:8C:C6:8F:62:DC:15:D3:59:59:31:61:F7:99:DE:53:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bRULQ4zGj2LcFdNZWTFh95neU68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/2fa86f-7f4e-4aab-9dfd-1b3d98bef1e9/1/XV8ePy8009ugvbLqc4OB41FsYt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/2fa86f-7f4e-4aab-9dfd-1b3d98bef1e9/1/bRULQ4zGj2LcFdNZWTFh95neU68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.143.208.0/23
Signature Algorithm: sha256WithRSAEncryption
23:98:0a:f8:71:8f:ec:9e:6f:14:e6:b4:21:a6:f0:8a:96:0a:
da:ab:a4:9a:7c:4f:b9:f3:f1:d4:18:a3:b2:81:6c:ed:ac:cd:
23:d2:6c:f3:b0:a4:08:39:74:dc:ed:9c:53:20:d6:ca:cb:d3:
c4:eb:46:d2:32:d3:f4:f0:aa:e6:53:f7:5d:33:6e:ca:c5:76:
79:5f:59:31:71:d6:08:00:75:40:24:bc:87:90:13:06:2f:d3:
8f:28:8d:7e:32:29:76:19:25:56:e4:a3:3d:4c:0d:0a:70:f6:
38:5e:a9:fb:25:d8:77:ac:24:2d:45:f8:0e:08:75:09:16:7e:
3c:83:48:e6:22:c2:20:8a:9c:a6:14:2c:1d:be:76:02:ce:27:
43:85:f2:26:d5:5b:9d:a7:2c:12:6b:f6:f2:9c:b5:e1:f6:39:
16:f1:d9:9d:52:af:e9:21:65:63:bf:94:88:00:de:d4:87:02:
f5:0f:7d:28:e8:9e:12:29:06:07:f0:72:d2:2a:85:51:eb:09:
8c:23:fd:f9:51:25:b1:aa:51:0e:40:a9:28:0e:85:d7:d7:41:
fe:45:5d:1a:51:13:00:08:42:11:04:94:fa:0c:69:a0:79:ee:
37:d7:0e:6f:3d:9d:2e:e3:d5:83:d0:e1:ed:e2:48:0b:f0:59:
2d:e3:4b:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:17 2024 by rpki-client on console-fra.rpki-client.org