Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/81719d-467c-4af7-a824-46a0df774fe1/1/8HrX8fKcLLKwUdPio8AIoLdgPZw.roa
File: 8HrX8fKcLLKwUdPio8AIoLdgPZw.roa (raw, json)
Hash identifier: jzL35g7aLsSP6xgW3K3Yj0HBgwtabfJJX3k3bTc0hFc=
Subject key identifier: F0:7A:D7:F1:F2:9C:2C:B2:B0:51:D3:E2:A3:C0:08:A0:B7:60:3D:9C
Certificate issuer: /CN=89b332d57ce14fab1ebd746817dd701062c74a88
Certificate serial: 0EB0C324
Authority key identifier: 89:B3:32:D5:7C:E1:4F:AB:1E:BD:74:68:17:DD:70:10:62:C7:4A:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ibMy1XzhT6sevXRoF91wEGLHSog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/81719d-467c-4af7-a824-46a0df774fe1/1/8HrX8fKcLLKwUdPio8AIoLdgPZw.roa
Signing time: Tue 24 May 2022 13:21:13 +0000
ROA not before: Tue 24 May 2022 13:21:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39830
IP address blocks: 83.173.124.0/23 maxlen: 24
83.173.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 246465316 (0xeb0c324)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89b332d57ce14fab1ebd746817dd701062c74a88
Validity
Not Before: May 24 13:21:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f07ad7f1f29c2cb2b051d3e2a3c008a0b7603d9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:15:f3:c6:ae:b3:12:d0:ba:3c:e8:f4:a3:b0:
de:2c:b1:80:95:30:f6:8e:94:0c:f3:2b:71:f6:b1:
f1:85:ea:ac:38:41:8e:2d:09:0e:5d:70:71:6e:9d:
ca:d4:6f:41:c2:17:fb:a4:a6:7b:17:77:03:20:8a:
50:10:98:27:60:8b:7b:5c:20:ad:be:39:4a:9b:27:
b3:27:0e:57:23:46:31:18:65:a0:fe:c4:7c:d3:00:
29:8d:4a:8a:b7:61:a6:09:0f:91:27:74:23:e9:63:
9a:22:c0:f9:08:2c:54:bb:1f:49:f5:98:d7:47:8c:
6c:3c:60:d4:de:d7:9e:5a:70:e0:64:db:76:a1:b2:
ff:3a:fe:86:10:0c:89:ba:a6:c6:4f:81:b6:2f:f0:
63:63:2c:7a:aa:eb:10:55:3a:95:8a:16:a4:c6:30:
5b:2b:2a:bd:77:0c:99:60:b4:34:55:da:c3:4c:b8:
f0:4d:e9:d6:9b:4a:cf:38:f6:a5:35:96:56:4f:28:
5d:f8:60:d9:75:25:3b:d9:e0:3a:63:ba:d3:64:4e:
b6:01:c7:ff:81:61:9b:68:81:fa:55:14:4a:aa:00:
ee:66:a8:13:f7:15:48:59:ac:53:a7:b8:65:b3:17:
47:7b:28:d7:f0:10:42:1d:20:44:2f:dc:a4:be:01:
9e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:7A:D7:F1:F2:9C:2C:B2:B0:51:D3:E2:A3:C0:08:A0:B7:60:3D:9C
X509v3 Authority Key Identifier:
keyid:89:B3:32:D5:7C:E1:4F:AB:1E:BD:74:68:17:DD:70:10:62:C7:4A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ibMy1XzhT6sevXRoF91wEGLHSog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/81719d-467c-4af7-a824-46a0df774fe1/1/8HrX8fKcLLKwUdPio8AIoLdgPZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/81719d-467c-4af7-a824-46a0df774fe1/1/ibMy1XzhT6sevXRoF91wEGLHSog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.173.124.0-83.173.126.255
Signature Algorithm: sha256WithRSAEncryption
3e:ef:65:79:98:e8:74:ca:5a:d6:43:9d:c2:84:ce:6e:a8:77:
e9:3e:4c:5e:eb:4f:db:93:00:1e:2a:d2:bb:23:1f:96:9b:a6:
0b:63:4a:64:55:f1:23:5f:8d:47:c7:0e:59:39:60:b8:c4:c7:
3f:5a:be:58:b0:2f:12:27:53:59:6b:f7:57:6b:aa:22:7e:ba:
3f:a0:db:f0:b2:d1:47:0e:5e:42:f3:c8:c9:15:71:47:4a:87:
d5:9b:75:be:a0:e1:58:dc:ab:2c:85:62:46:2a:a8:3c:72:45:
c7:6c:ee:75:b4:59:fc:0d:7a:72:f3:b0:66:4b:43:66:6b:a5:
24:b1:a7:45:52:67:9b:1a:1a:19:03:b7:df:81:2e:72:ed:76:
59:7d:9e:00:e0:1c:db:c7:62:f9:80:74:69:e5:43:68:ed:56:
fb:cf:55:68:2f:7f:49:f7:3c:4f:9f:11:a9:af:75:a5:fe:f1:
40:71:12:68:e2:50:6b:87:21:1f:0f:64:8a:af:11:07:c2:40:
e5:25:42:b3:c7:0e:b7:65:7d:9e:41:46:58:5f:ad:cd:a6:83:
b6:69:cb:4e:d2:2d:98:e9:ae:09:74:5e:b7:58:20:88:f2:c4:
99:c6:28:c2:7b:28:9a:d9:21:bd:47:88:25:71:73:f7:84:bd:
95:3a:f9:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:41 2024 by rpki-client on console-ams.rpki-client.org