Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/CO9vi3IDDjFLh1BwHIfibgM1k9k.roa
File: CO9vi3IDDjFLh1BwHIfibgM1k9k.roa (raw, json)
Hash identifier: 6dOqtyE+Kob3JewndpQeijHV3xe3oeDcdBF86ufMbJI=
Subject key identifier: 08:EF:6F:8B:72:03:0E:31:4B:87:50:70:1C:87:E2:6E:03:35:93:D9
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 0309D531
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/CO9vi3IDDjFLh1BwHIfibgM1k9k.roa
Signing time: Sat 01 Jan 2022 13:57:08 +0000
ROA not before: Sat 01 Jan 2022 13:57:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 83.147.44.0/22 maxlen: 24
83.147.40.0/22 maxlen: 24
83.147.48.0/22 maxlen: 24
83.147.52.0/22 maxlen: 24
83.147.60.0/23 maxlen: 24
83.147.62.0/24 maxlen: 24
45.156.56.0/22 maxlen: 24
83.147.4.0/22 maxlen: 24
83.147.0.0/22 maxlen: 24
83.147.8.0/21 maxlen: 24
83.147.16.0/20 maxlen: 24
83.147.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50976049 (0x309d531)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Jan 1 13:57:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08ef6f8b72030e314b8750701c87e26e033593d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8a:3c:3d:40:b8:c2:14:e2:80:89:83:40:69:
9d:d4:3c:ac:08:5d:7d:b9:91:ea:2c:fc:37:e7:e8:
8f:83:aa:11:f0:b4:d3:0c:bc:1b:5f:e4:f3:7d:33:
a4:f0:e4:41:6a:8b:06:0e:2b:01:b5:ab:f7:95:eb:
47:e0:bf:c2:46:2e:31:21:bb:7b:31:28:c2:20:8f:
9c:a0:b3:14:2d:d4:e0:29:b7:20:74:0a:5e:c5:14:
bc:4b:c7:25:6d:f6:b0:0c:d9:1a:f9:5c:3c:2c:de:
f9:8b:79:07:77:4b:57:5f:bb:c3:e9:c1:50:35:eb:
bd:aa:eb:89:b7:6b:12:c2:4c:18:d1:3c:10:ed:15:
4a:1b:de:f9:c2:66:36:97:b9:fe:8a:d9:2c:de:bc:
da:d2:2a:68:13:74:56:e0:78:20:9f:89:e7:e5:8e:
35:8f:0b:05:ce:39:90:7b:53:c3:72:28:e6:81:2a:
65:0c:d6:32:8d:53:1a:99:14:88:00:48:e2:da:2a:
ea:58:6c:76:e8:50:03:f9:0d:6a:f4:d1:55:69:e9:
6e:56:70:d2:ab:12:f5:ed:5c:c3:f5:9f:ba:c5:3b:
94:6a:d3:14:9b:64:e2:e3:b1:af:78:03:83:12:e2:
34:7a:32:46:79:8e:c8:65:83:e4:16:f9:b2:65:37:
bc:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:EF:6F:8B:72:03:0E:31:4B:87:50:70:1C:87:E2:6E:03:35:93:D9
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/CO9vi3IDDjFLh1BwHIfibgM1k9k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.56.0/22
83.147.0.0-83.147.35.255
83.147.40.0-83.147.55.255
83.147.60.0-83.147.62.255
Signature Algorithm: sha256WithRSAEncryption
2e:20:1b:bf:1c:b4:d8:1d:ef:fe:6b:4f:6b:89:4b:1b:33:eb:
0a:67:b9:a0:5d:26:20:9d:60:60:27:50:24:63:77:b5:a7:d3:
80:69:06:d9:73:b9:3f:5c:42:2c:d9:b9:b6:f0:e1:9f:5e:42:
a5:df:fc:bb:ab:04:61:2f:0e:84:38:2f:60:74:80:fb:bf:b2:
10:0f:b0:ca:81:2c:d2:aa:89:64:1d:50:02:45:ae:0e:55:9f:
5e:1a:2e:51:3c:3a:34:a5:75:78:5e:0d:bb:c6:46:01:00:ab:
1e:43:b0:ad:67:06:8a:40:06:4d:1a:e0:82:c4:f7:b5:b6:05:
51:56:8e:ef:5d:44:2a:79:07:e6:15:e7:a3:94:78:f9:e4:f4:
02:f0:75:3b:f9:9f:f5:9d:2a:c0:f1:5b:f6:c3:42:28:88:bd:
14:67:c8:2a:69:4a:91:88:be:e7:fe:ad:56:21:85:54:51:6f:
4b:a5:d3:2d:b0:8e:f2:bd:f2:e1:e3:d2:d6:13:85:54:5e:f7:
55:95:5b:f8:82:90:c8:1e:d6:51:44:29:69:31:82:ef:04:ee:
4b:28:dd:21:7b:d9:18:bc:7e:4c:5e:89:76:92:a1:1c:b5:a6:
d8:ea:88:6e:e9:76:d5:e9:03:79:13:7c:e8:e2:b2:17:01:3d:
35:29:11:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:01 2024 by rpki-client on console-ams.rpki-client.org