Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/S7Q4YIFJcpEpRbfeCv5o3LVJx0o.roa
File: S7Q4YIFJcpEpRbfeCv5o3LVJx0o.roa (raw, json)
Hash identifier: 57Wi+2qBuKShAA/Ufb4cbHvtY5o5HQbPMkd9jRmhTfk=
Subject key identifier: 4B:B4:38:60:81:49:72:91:29:45:B7:DE:0A:FE:68:DC:B5:49:C7:4A
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 03CF7E06
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/S7Q4YIFJcpEpRbfeCv5o3LVJx0o.roa
Signing time: Sun 20 Mar 2022 05:54:44 +0000
ROA not before: Sun 20 Mar 2022 05:54:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207152
IP address blocks: 83.147.52.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63929862 (0x3cf7e06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Mar 20 05:54:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bb43860814972912945b7de0afe68dcb549c74a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:96:d8:fe:56:92:d8:8c:a5:20:6a:a0:d9:16:
4d:ba:8d:f5:1c:de:c1:ad:e4:b8:5f:fb:5a:08:78:
8a:71:17:ad:b7:f2:fb:f8:32:89:b3:7e:58:41:72:
1b:bc:1f:6e:22:aa:ca:cc:fa:2c:b8:cf:4f:ce:c0:
86:e6:8a:c7:8a:f8:4f:d6:db:1a:03:29:0f:2c:ea:
2d:7c:5e:c3:14:36:a2:cd:c2:76:7b:46:3c:23:d3:
ef:09:9d:9b:55:da:a8:7b:a1:a8:01:d6:18:b0:bd:
fb:41:e2:a1:d0:fa:28:aa:5c:ad:53:1d:12:bc:20:
e7:4d:c9:50:99:ee:fe:cf:03:5a:60:14:04:9f:9c:
b5:30:5b:c0:b2:6c:6b:bc:cc:9c:7c:5e:68:53:73:
3e:e9:77:f5:9d:6e:22:a5:d1:32:91:07:61:12:0a:
f5:7f:82:2c:da:a2:4b:5e:ec:ef:a7:79:f4:69:02:
79:d7:45:ee:3d:11:c5:42:4f:06:04:d6:d3:21:23:
04:19:22:c5:2d:aa:2c:d8:a1:04:0f:55:c7:79:2e:
ff:e5:66:b0:91:a7:34:fa:86:22:af:72:b3:84:90:
9a:08:12:24:65:17:d0:9b:58:b2:95:b5:fc:bf:fd:
89:8f:1d:84:78:3a:1d:18:ae:4a:91:4d:72:1b:1a:
56:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:B4:38:60:81:49:72:91:29:45:B7:DE:0A:FE:68:DC:B5:49:C7:4A
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/S7Q4YIFJcpEpRbfeCv5o3LVJx0o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.52.0/22
Signature Algorithm: sha256WithRSAEncryption
61:fc:c0:1a:58:34:90:b8:04:d6:ba:d5:00:fc:a1:6e:08:5d:
a3:32:35:dd:7c:c2:69:12:a8:39:8d:df:b4:8e:fa:ef:82:38:
80:c4:2c:4b:8c:14:51:0b:f2:3a:ef:95:db:db:da:b3:25:76:
07:ab:6c:ba:ef:d0:d1:ab:42:71:af:1f:c0:03:d9:ce:35:d6:
02:e7:41:06:87:ab:3f:33:27:a4:b5:d5:1a:c9:26:f2:74:b7:
df:d8:24:52:86:57:91:d4:26:61:43:76:5d:87:cf:2b:63:93:
b8:08:be:00:5a:7e:b8:17:22:3f:4d:43:79:e3:d7:09:6b:af:
70:ce:21:ba:c7:23:7a:41:b2:57:57:d8:a0:72:73:6f:81:1e:
be:9c:9a:60:39:39:b5:b1:ce:09:98:37:e4:92:98:18:6e:20:
d9:92:f0:cd:0f:ed:f1:f3:55:22:1b:38:d9:98:e4:47:6c:1d:
25:04:a8:8a:d1:0e:a3:97:6c:a3:c4:60:98:bf:f0:f5:10:8c:
22:76:e2:97:86:e0:92:4c:98:2c:ea:c1:9b:03:3c:d4:17:8b:
bc:35:aa:42:51:7b:69:88:17:c3:75:fb:66:f4:c2:74:ec:82:
1f:4a:8f:45:0f:c7:c0:25:f6:3c:0c:81:da:3d:ef:40:5e:ae:
7f:78:db:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:42 2023 by rpki-client on console-fra.rpki-client.org