Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/BGPXXrnZ9AscrHgbJAicRD4U6ys.roa
File: BGPXXrnZ9AscrHgbJAicRD4U6ys.roa (raw, json)
Hash identifier: x38SI1KiZhoHV5WFrv80K0yU/guPpTXSIyhOWwiBkTg=
Subject key identifier: 04:63:D7:5E:B9:D9:F4:0B:1C:AC:78:1B:24:08:9C:44:3E:14:EB:2B
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018487E296B43A01B3DF167B1217BC552C4A
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/BGPXXrnZ9AscrHgbJAicRD4U6ys.roa
Signing time: Thu 17 Nov 2022 23:18:04 +0000
ROA not before: Thu 17 Nov 2022 23:18:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 83.147.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:87:e2:96:b4:3a:01:b3:df:16:7b:12:17:bc:55:2c:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Nov 17 23:18:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0463d75eb9d9f40b1cac781b24089c443e14eb2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:20:41:fd:2f:8b:33:14:dd:20:9c:f7:27:66:
e4:a4:05:34:98:8f:b8:bd:0d:b0:be:e3:cf:77:9b:
40:ea:9d:5f:22:14:8c:96:27:ae:c2:8d:a4:cc:37:
e5:eb:8f:1b:61:10:28:cd:70:26:ed:d2:79:cb:a1:
cf:3b:92:ee:4f:dd:7d:5c:38:a9:be:27:75:2d:5c:
78:58:43:d1:2a:ee:88:87:26:03:3c:ba:25:94:6c:
19:88:05:a2:ec:86:72:26:a9:07:3e:cf:ef:7c:84:
41:2e:b9:63:c9:e4:80:9c:92:6a:8d:45:f7:21:4a:
d2:68:33:2a:a9:25:bb:4b:6c:d7:b3:2e:b1:67:ca:
23:f3:0f:b2:0f:86:92:b4:c4:46:e3:25:53:c4:db:
ee:1b:13:eb:76:ac:ca:06:b9:b3:87:6a:13:ef:a0:
ee:8d:5f:a6:6c:a2:92:9d:07:d3:c1:01:42:be:a4:
ad:8e:bb:ac:57:8b:67:30:d3:54:ea:2c:40:ad:92:
3e:52:ba:df:1a:4b:2f:cf:05:9c:be:10:f8:47:79:
d9:95:41:58:1f:9d:a1:eb:da:92:7a:6a:b9:ff:b4:
6a:07:99:38:ae:df:93:e2:8e:f4:ea:a7:67:48:f2:
dc:44:bc:19:33:79:9b:63:ba:78:11:53:1c:b1:bf:
ff:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:63:D7:5E:B9:D9:F4:0B:1C:AC:78:1B:24:08:9C:44:3E:14:EB:2B
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/BGPXXrnZ9AscrHgbJAicRD4U6ys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.32.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:e2:c5:d3:be:75:61:15:a8:82:b9:a0:36:1c:b2:b5:4b:99:
92:62:55:66:5d:c8:80:ff:f0:61:e1:6b:8c:d9:ad:26:51:20:
fb:a0:02:bf:44:9e:d6:c8:88:e2:ec:a9:21:12:ec:ad:08:8d:
ce:41:91:ba:f6:4f:73:8d:55:fe:41:28:9c:42:11:3c:22:b5:
d8:4e:5b:e8:66:a8:d9:3e:99:d2:99:f9:98:ea:7e:45:4b:0e:
7a:6d:29:a6:bc:4f:20:e8:45:1e:10:c9:90:b4:7e:f8:77:c0:
04:52:ab:b7:a9:5a:cd:a6:ef:86:29:c3:5a:c2:a7:87:b7:00:
fa:8b:9c:58:f0:32:fb:5c:f8:91:27:51:3b:0c:cf:aa:91:f4:
9c:3d:6c:6c:db:17:88:ae:4e:78:44:f9:ae:05:87:f1:2a:49:
74:70:7f:b9:27:c7:ad:88:99:07:13:77:0b:f2:5d:94:e8:fb:
15:1c:82:9a:0e:ea:fd:dc:50:93:7a:8f:3f:99:37:b0:dc:2e:
7b:a4:3d:6d:57:b1:bb:51:70:84:3a:99:be:8c:7f:d8:80:f0:
6e:9c:da:fc:1a:e1:db:f9:71:d1:e7:7c:0a:eb:7f:30:7e:ec:
b8:a3:92:3d:4d:45:c2:26:be:91:f7:b3:62:e8:bb:8b:b0:70:
b6:ab:b3:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:32 2023 by rpki-client on console-ams.rpki-client.org