Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/crl34wvuRoGPH9sP5Eum1IU859w.roa
File: crl34wvuRoGPH9sP5Eum1IU859w.roa (raw, json)
Hash identifier: VhpHbNl6APgRFfVrhE4Hw61bG3V0cpSrVbgWvQm/Dfo=
Subject key identifier: 72:B9:77:E3:0B:EE:46:81:8F:1F:DB:0F:E4:4B:A6:D4:85:3C:E7:DC
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 040820B8
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/crl34wvuRoGPH9sP5Eum1IU859w.roa
Signing time: Thu 07 Apr 2022 05:17:44 +0000
ROA not before: Thu 07 Apr 2022 05:17:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 83.147.62.0/24 maxlen: 24
83.147.20.0/24 maxlen: 24
83.147.21.0/24 maxlen: 24
83.147.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67641528 (0x40820b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Apr 7 05:17:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72b977e30bee46818f1fdb0fe44ba6d4853ce7dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:bf:07:c4:b0:61:c7:91:ec:e9:70:de:20:30:
00:ef:01:71:86:bd:61:9e:43:0d:08:41:50:ef:b1:
26:6b:1c:02:80:01:f7:f8:cb:d8:d6:44:92:cc:c1:
24:55:c3:ed:0f:99:ff:2b:ed:4b:cd:bc:20:d8:d5:
20:65:4b:5c:d2:c8:56:1e:29:d7:06:7b:79:c3:8e:
67:75:0e:89:97:4d:79:20:f8:cc:30:de:67:13:4b:
69:49:fa:a4:a7:7c:81:b3:b8:f2:86:9a:03:84:64:
00:e1:de:6d:e7:d9:2f:a0:a0:05:59:78:e9:1d:75:
7a:f5:dc:9e:01:c7:55:f0:c4:00:0e:b5:38:b0:4d:
61:5d:f6:51:24:68:62:6e:a3:91:cc:ba:a2:87:df:
30:9a:4c:ae:37:cd:34:26:1d:bf:32:12:ee:55:be:
87:4f:a3:eb:ac:3c:8f:5d:40:8d:04:a1:b4:7b:6f:
fd:6b:80:d6:da:6b:0d:6d:55:8e:b7:8b:cd:9f:aa:
5c:08:87:14:6e:41:98:42:c5:d1:77:96:5d:5a:75:
9b:d7:c9:81:50:47:84:d1:27:09:99:66:0b:4a:5d:
b5:78:2f:49:30:a9:f3:c7:f3:db:ca:c2:da:e2:16:
72:cb:32:c2:30:1e:f2:42:58:9d:24:c9:e5:ed:c8:
98:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:B9:77:E3:0B:EE:46:81:8F:1F:DB:0F:E4:4B:A6:D4:85:3C:E7:DC
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/crl34wvuRoGPH9sP5Eum1IU859w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.20.0/23
83.147.31.0/24
83.147.62.0/24
Signature Algorithm: sha256WithRSAEncryption
79:b5:3f:96:b8:03:b6:0b:56:e7:d8:83:5f:43:5e:df:62:18:
a3:67:de:8b:be:a7:e0:f8:1f:0f:4b:5b:8a:eb:ed:13:ec:69:
90:5d:1a:1b:0d:19:25:39:7e:7a:59:ca:8e:93:f9:b8:75:0d:
f1:8e:09:22:87:71:75:b3:b6:22:0e:fa:fe:d5:6a:ee:74:45:
57:78:da:00:9c:f3:e2:26:b5:46:f4:14:84:fa:76:b7:cc:80:
01:2d:8e:33:7d:60:b8:54:5f:10:eb:2c:da:d8:44:0f:75:28:
f5:64:bb:be:a0:53:e6:ef:95:41:95:5c:dd:80:98:e1:fc:f3:
4a:65:66:e4:73:f1:be:c9:11:4d:60:3a:9d:76:6b:87:68:80:
ea:50:ef:c0:aa:37:78:ae:64:f8:01:ec:46:b3:24:38:65:72:
9e:a8:c6:0b:fc:5b:14:8a:c8:55:80:da:b4:6d:23:aa:21:36:
ec:67:ab:b8:7a:cd:44:9e:23:b3:99:13:8c:0e:4d:89:fa:18:
c1:ac:6b:76:31:39:ab:99:bf:db:d4:ac:1e:b0:02:8b:21:c8:
b4:99:96:a8:88:20:94:45:6e:43:88:6c:f4:6d:3f:23:11:b7:
41:26:8e:8f:2f:94:6b:25:49:98:43:46:8d:50:81:46:1e:fa:
e0:0e:99:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:50 2024 by rpki-client on console-fra.rpki-client.org