Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/Hu3kKnyaYTmRZT_KEW3KBwVW8FE.roa
File: Hu3kKnyaYTmRZT_KEW3KBwVW8FE.roa (raw, json)
Hash identifier: JSXxlTQLhHf2AVFCjNz4AY25CuxUgTx7pgwjaIdAm8M=
Subject key identifier: 1E:ED:E4:2A:7C:9A:61:39:91:65:3F:CA:11:6D:CA:07:05:56:F0:51
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018487E37F99B59B8E36DBCFBC6DB4F1D532
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/Hu3kKnyaYTmRZT_KEW3KBwVW8FE.roa
Signing time: Thu 17 Nov 2022 23:19:04 +0000
ROA not before: Thu 17 Nov 2022 23:19:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205320
IP address blocks: 83.147.0.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:87:e3:7f:99:b5:9b:8e:36:db:cf:bc:6d:b4:f1:d5:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Nov 17 23:19:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1eede42a7c9a613991653fca116dca070556f051
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:de:c3:1d:6e:54:fb:8c:34:0d:75:43:47:09:
7e:d9:a5:94:22:3d:1d:11:25:7f:81:dc:ee:d8:7d:
b7:80:42:a4:ce:58:5d:d5:7f:11:b3:42:93:8a:65:
f3:b1:42:31:81:c2:a6:5b:d9:f8:02:38:27:8a:ee:
bb:af:66:84:ce:cf:a1:f4:83:a5:fb:8c:dc:89:18:
c4:b8:9a:90:53:e2:61:95:0f:23:d2:f0:54:9b:9c:
64:1e:fe:3a:79:1a:0d:bf:41:2c:fa:b2:3a:21:6c:
76:dc:31:a5:1d:94:6f:cc:a8:d9:c0:d4:f6:00:43:
c4:2f:aa:de:4b:9b:a1:4d:da:9b:59:04:b7:f7:d3:
6e:06:a2:9f:ea:5e:d5:17:61:45:af:5e:fa:09:36:
3e:e6:b5:05:83:77:f7:87:65:85:48:cc:72:b5:f9:
07:af:78:62:df:bb:89:6d:5f:6f:e8:a6:98:fe:8b:
2d:63:7c:ba:94:f4:db:a8:eb:88:36:51:09:75:18:
75:ff:da:39:0d:8e:2d:2e:90:1a:a3:6c:a2:8d:87:
ba:57:40:74:9b:91:1b:80:9d:33:8d:46:aa:89:28:
f0:ff:c9:ec:a5:ea:ae:36:d6:b1:68:99:44:ce:53:
e6:0d:99:7e:33:e3:d8:a3:8e:a6:eb:58:7a:1d:a9:
a4:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:ED:E4:2A:7C:9A:61:39:91:65:3F:CA:11:6D:CA:07:05:56:F0:51
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/Hu3kKnyaYTmRZT_KEW3KBwVW8FE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.0.0/22
Signature Algorithm: sha256WithRSAEncryption
bf:21:b8:10:25:30:a5:89:dd:36:16:4a:92:e1:59:e6:e2:fd:
0a:5f:62:05:d3:6c:ec:ea:6a:05:ed:ab:18:e3:4f:d6:3b:af:
40:16:a8:95:39:3b:5a:f9:e5:c7:3c:6f:d2:7a:69:7e:99:2b:
67:01:6c:2c:cf:9f:a6:0e:ac:34:70:01:f0:8d:e8:ce:36:6b:
b3:c5:cf:d1:29:5c:ad:e2:f0:0b:a7:89:23:ed:cc:04:0e:a1:
45:04:12:d9:c3:3e:a2:d1:b5:82:5d:82:88:c7:96:59:35:be:
dd:00:ae:3c:d0:34:40:f2:b9:fc:91:55:d4:3d:a9:82:42:04:
fa:75:43:63:de:fe:c8:40:6f:c9:e1:4d:fc:c8:91:3d:c0:6d:
1f:f3:f5:f4:dd:19:c4:d5:db:a7:e4:6d:f5:0e:d7:bc:17:1a:
c7:8e:03:5a:72:32:c6:29:de:c1:e1:86:d4:35:79:56:10:e0:
d1:03:9f:a6:75:a4:5b:b4:64:fc:50:fc:65:0b:5d:f1:bf:f0:
9c:71:ee:23:84:ee:c7:b6:ab:17:33:fc:71:b7:7d:47:0a:6a:
09:a4:05:1c:33:ed:62:aa:8b:37:ce:51:d1:f6:25:b4:aa:d4:
75:51:a2:d9:b3:03:be:3e:62:d6:cb:be:63:1d:de:c3:94:a8:
43:82:f8:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:01 2024 by rpki-client on console-ams.rpki-client.org