Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/3UrngH2X50nLzYzWJ7uoHFuNtNI.roa
File: 3UrngH2X50nLzYzWJ7uoHFuNtNI.roa (raw, json)
Hash identifier: fWMwVjpUsGHLa1ljM+jmuXhTZmBa3Kor1Mk2ibLI/74=
Subject key identifier: DD:4A:E7:80:7D:97:E7:49:CB:CD:8C:D6:27:BB:A8:1C:5B:8D:B4:D2
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 044D4A4E
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/3UrngH2X50nLzYzWJ7uoHFuNtNI.roa
Signing time: Wed 04 May 2022 04:16:18 +0000
ROA not before: Wed 04 May 2022 04:16:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210443
IP address blocks: 83.147.52.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72174158 (0x44d4a4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: May 4 04:16:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dd4ae7807d97e749cbcd8cd627bba81c5b8db4d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:51:30:ff:c8:d0:48:04:c5:11:d2:5d:66:5a:
2f:b2:75:89:c2:ed:a3:c4:a5:6c:e3:25:8a:59:13:
33:95:1a:41:d0:38:a0:5e:24:d0:ef:bf:e0:c5:8b:
83:bf:67:f6:18:b1:0e:16:36:30:c7:31:5b:4f:9d:
c8:34:97:a6:ac:9b:b8:69:8b:33:8c:ab:d3:64:ee:
a4:fc:df:80:11:06:79:4b:b8:78:f1:bb:ee:4b:81:
75:72:0c:77:7a:97:c9:83:57:6a:9e:83:9a:66:44:
f7:91:92:88:1e:51:74:e7:1c:4d:bb:26:a7:ed:9b:
74:12:59:55:25:20:d7:da:61:05:a0:7b:78:ea:b1:
59:bd:9d:9c:2a:55:1a:7a:fb:df:18:33:ad:c9:7f:
25:56:4a:53:ea:22:b9:c2:9c:cf:c8:38:a1:9b:f2:
41:b9:17:20:6b:3d:fb:b1:44:53:3d:38:55:28:6e:
b3:79:fb:24:03:3a:89:b9:4c:69:ce:b2:43:0a:5a:
19:c6:b9:2e:0a:62:25:a5:f3:3b:77:0c:60:69:c6:
1a:77:5d:d8:51:02:34:43:8b:ae:ec:1b:b5:0a:dd:
83:63:99:2a:61:2c:ce:be:86:44:d2:69:6a:92:37:
14:5e:7d:c8:a9:bf:ca:e7:66:51:68:bf:d7:42:00:
c6:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:4A:E7:80:7D:97:E7:49:CB:CD:8C:D6:27:BB:A8:1C:5B:8D:B4:D2
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/3UrngH2X50nLzYzWJ7uoHFuNtNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.52.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:ab:73:93:09:c8:bd:ce:56:ff:e7:e0:7d:de:ac:f9:c5:87:
0e:16:6a:d0:93:eb:47:9b:f3:3e:88:2c:e3:84:57:22:1f:ec:
df:07:85:3b:91:0c:92:3f:1e:71:58:f0:0a:26:99:54:8c:f0:
a7:0d:7f:8d:f3:75:2b:7d:79:86:21:d6:33:09:c2:6a:e4:01:
93:d2:b2:af:8b:1c:d7:7b:8d:d9:49:05:5e:1b:4b:a5:4f:b3:
91:4e:66:51:e4:9e:99:e6:62:3a:ef:90:fe:fb:01:1e:61:19:
30:41:93:c7:e1:4b:0e:71:2c:a5:71:cf:bb:b7:c2:88:22:30:
e7:11:cb:a7:a4:1b:f9:5f:72:7f:65:ff:7d:4f:9f:12:c6:d1:
41:91:02:89:48:5e:6d:d0:65:a7:3a:80:57:56:3e:6f:38:1a:
7d:c0:88:a8:8a:56:d9:f0:20:51:c7:33:1f:da:38:ed:01:d5:
13:17:c3:c6:63:c7:a5:74:89:93:40:50:f5:9b:14:80:68:19:
9d:96:b0:49:fb:d5:9b:54:ed:d6:32:3b:52:3a:ac:54:20:35:
30:b1:19:b4:f2:b3:48:d5:f8:cd:cf:ee:3a:35:5f:e9:de:42:
25:48:9c:bf:fa:54:c8:0b:cc:bb:ba:f6:a5:d8:57:a3:47:2c:
45:c2:0a:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:01 2024 by rpki-client on console-ams.rpki-client.org