Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/Bijafknb-dfGEp428xq8uvZDZFc.roa
File: Bijafknb-dfGEp428xq8uvZDZFc.roa (raw, json)
Hash identifier: jQT2lGaTcFEUqmNIU0icr2cd9cx25wvaKnaXxAkZBHw=
Subject key identifier: 06:28:DA:7E:49:DB:F9:D7:C6:12:9E:36:F3:1A:BC:BA:F6:43:64:57
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 03C2A6C5
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/Bijafknb-dfGEp428xq8uvZDZFc.roa
Signing time: Mon 14 Mar 2022 16:04:12 +0000
ROA not before: Mon 14 Mar 2022 16:04:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210443
IP address blocks: 83.147.52.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63088325 (0x3c2a6c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Mar 14 16:04:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0628da7e49dbf9d7c6129e36f31abcbaf6436457
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:fb:6b:be:11:3d:1c:32:88:b0:99:1a:18:0a:
dd:19:0c:8c:04:49:f2:b9:f8:94:42:22:b1:64:82:
bb:00:c0:e8:44:af:8e:6b:ed:b1:f3:4a:7e:66:ab:
13:81:15:a6:e3:23:26:59:1e:d6:0a:ae:1c:d0:9d:
59:57:83:81:71:e5:bf:4d:ab:ed:53:c2:86:e3:24:
91:17:5f:67:a1:ef:0d:90:bf:05:22:5f:5e:04:22:
76:19:74:79:9e:fe:0b:35:11:ac:f9:96:47:e9:c6:
c0:d7:ab:9e:39:8a:7d:26:4f:6b:e6:cf:bf:65:48:
f7:25:2d:ec:06:2f:cf:46:4e:ba:82:64:45:96:1c:
33:5c:dc:50:e6:1c:a5:5a:61:b0:ea:37:26:89:11:
36:8e:55:cd:23:1f:fe:09:0c:6a:95:2c:73:ea:99:
da:b7:f2:09:32:f8:62:78:3f:10:00:c2:04:ee:db:
49:54:8e:80:f2:de:c1:db:40:ea:90:c8:84:a0:af:
da:4b:49:00:28:50:50:2f:ce:bc:4d:6b:38:a0:69:
97:9b:ca:a4:c8:15:7c:98:f9:13:5e:77:0a:bd:47:
01:27:d2:6a:8d:7c:48:97:93:30:aa:63:29:dd:be:
50:77:9b:55:42:cd:f0:15:f4:01:db:e9:57:a7:76:
64:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:28:DA:7E:49:DB:F9:D7:C6:12:9E:36:F3:1A:BC:BA:F6:43:64:57
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/Bijafknb-dfGEp428xq8uvZDZFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.52.0/22
Signature Algorithm: sha256WithRSAEncryption
77:76:b2:ea:ac:f2:29:03:90:78:58:b8:b5:20:82:7c:de:83:
63:df:28:97:03:84:68:bb:21:c2:83:95:92:38:34:1f:25:f8:
bd:7d:28:d5:0c:be:0d:1a:4b:3b:98:46:e8:da:06:55:14:9b:
45:5f:bb:de:94:40:d4:ee:67:19:b8:fd:58:71:09:d3:3c:81:
cb:12:41:ef:ca:a5:69:ce:08:58:e0:27:03:3a:b6:c6:c8:3d:
9c:2c:1f:05:2e:d5:84:a5:ce:b2:cc:16:ba:a5:f6:75:3f:3e:
8a:6a:0c:1f:f3:79:a6:ad:5e:9e:91:f7:de:f7:32:7c:ab:c6:
c5:74:f5:65:09:b0:1e:d1:cf:65:03:0b:89:a3:2b:19:d2:15:
b7:95:26:d6:43:73:be:6a:d3:4e:0f:2e:8f:b3:37:56:b1:b6:
5e:e2:1f:75:c0:2d:87:0c:5e:d3:ee:43:2a:30:ac:f5:63:99:
97:60:4c:1f:45:ac:82:88:14:a5:a0:70:22:41:d5:12:02:bd:
33:63:b6:10:67:1b:2f:33:01:fc:e0:29:66:98:d1:cf:8d:97:
4a:6b:c6:26:63:04:05:24:51:36:b7:35:1a:75:ce:f9:65:a5:
5a:f1:34:89:7e:26:e8:db:75:8f:eb:47:c0:12:29:12:1d:25:
cb:5b:32:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:01 2024 by rpki-client on console-ams.rpki-client.org