Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/FJcwIdJ6gKA8jVBbPLV0_H6SdD8.roa
File: FJcwIdJ6gKA8jVBbPLV0_H6SdD8.roa (raw, json)
Hash identifier: xeFnW8L4iOAheKiGOL4Va6gv7QtIkUu/tpXGsUJ6I9s=
Subject key identifier: 14:97:30:21:D2:7A:80:A0:3C:8D:50:5B:3C:B5:74:FC:7E:92:74:3F
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 01854F16F1BE9F0BFD26D3047EF3785EC348
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/FJcwIdJ6gKA8jVBbPLV0_H6SdD8.roa
Signing time: Mon 26 Dec 2022 15:39:41 +0000
ROA not before: Mon 26 Dec 2022 15:39:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204843
IP address blocks: 83.147.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:4f:16:f1:be:9f:0b:fd:26:d3:04:7e:f3:78:5e:c3:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Dec 26 15:39:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14973021d27a80a03c8d505b3cb574fc7e92743f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:c9:c3:52:2b:44:73:b6:ba:e7:93:fd:d9:d4:
37:d4:79:f6:73:3c:5c:c5:5b:fa:5a:ea:9f:97:34:
7d:aa:85:1a:ec:70:15:0a:fb:fd:98:ea:8a:2d:04:
c1:28:ca:b9:d8:50:d7:f9:20:6a:5d:04:2c:6a:dd:
11:24:cb:32:7d:27:68:13:0f:a7:99:0e:52:29:b9:
51:7f:0a:4f:98:6c:30:b1:6c:99:6b:74:34:60:e4:
63:72:d7:2a:fd:b5:75:b8:cf:af:22:4f:ba:26:c0:
48:24:01:e7:57:e1:2f:93:6e:17:f0:1b:17:7e:e0:
49:b3:1e:6d:a4:d4:1c:0f:bf:71:9e:7f:14:8a:2c:
f5:f9:8b:20:6e:9c:d7:b3:72:e9:b7:0c:d0:f1:68:
6d:f2:b1:e2:d5:1b:62:4d:4e:23:3b:05:73:9c:42:
94:e9:83:50:63:c4:88:cd:11:fc:8b:76:c3:e4:72:
40:88:f0:e8:93:69:70:06:a8:29:3b:57:38:76:c4:
c9:67:62:4d:fb:ad:50:5c:96:98:cd:35:07:f2:82:
ed:09:62:ff:31:d6:69:a5:37:9b:6d:a1:f0:e8:20:
c6:f8:75:3a:32:0b:3e:9c:c0:3c:77:90:bc:17:c2:
63:de:c6:fd:a3:53:e1:05:fb:c9:c8:5b:64:1b:6b:
0f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:97:30:21:D2:7A:80:A0:3C:8D:50:5B:3C:B5:74:FC:7E:92:74:3F
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/FJcwIdJ6gKA8jVBbPLV0_H6SdD8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.27.0/24
Signature Algorithm: sha256WithRSAEncryption
58:b6:35:4f:d8:b4:db:ff:c2:64:61:06:a0:fc:ca:68:d8:99:
5e:f1:36:5d:9f:ef:fe:75:97:df:95:3c:27:20:ed:3f:46:8f:
e6:ce:12:fd:ba:3c:8c:1f:2c:43:6a:60:a5:38:7e:5e:53:76:
47:05:fa:8a:7f:c4:b9:ce:09:5d:a6:be:aa:3d:0a:a0:01:0d:
ed:ae:f5:10:f7:f5:8c:f7:6a:e2:8a:0e:af:07:b3:52:91:18:
ae:a3:74:57:38:28:b2:2a:16:ec:27:13:09:77:ad:59:54:c4:
34:aa:5c:92:66:01:c5:ce:4c:4e:6b:aa:47:0a:68:1f:fa:da:
16:cc:78:3a:0c:7d:78:d3:4f:a4:69:47:34:31:d6:d8:7f:4c:
13:59:91:ba:b5:1d:78:6b:36:1a:b1:6e:45:99:cf:07:c6:28:
9e:e5:bd:b6:0b:2f:c5:95:55:79:bd:59:f1:ef:07:52:f8:d6:
cc:17:20:78:1a:9e:2d:09:58:9a:14:6d:8d:b5:f1:5f:3b:bb:
ae:9f:08:2e:6f:13:76:e4:b0:09:42:ee:3e:d1:de:a6:a4:fc:
db:59:ff:2f:31:f7:a7:23:f1:09:84:49:1f:69:51:af:05:3a:
2c:dd:a6:d0:44:ca:6d:16:1a:2f:2c:4b:75:b5:96:62:73:5d:
bb:5e:2d:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:01 2024 by rpki-client on console-ams.rpki-client.org