Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/dJgaj0vPNKulubjD8V3wFl5L8rs.roa
File: dJgaj0vPNKulubjD8V3wFl5L8rs.roa (raw, json)
Hash identifier: DAwLYkbQ3FdPVjO8UsOBw4B/rrsElaGDbim4fGYMal0=
Subject key identifier: 74:98:1A:8F:4B:CF:34:AB:A5:B9:B8:C3:F1:5D:F0:16:5E:4B:F2:BB
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 03E3B8D8
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/dJgaj0vPNKulubjD8V3wFl5L8rs.roa
Signing time: Sun 27 Mar 2022 14:00:29 +0000
ROA not before: Sun 27 Mar 2022 14:00:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 83.147.48.0/22 maxlen: 24
45.156.58.0/23 maxlen: 24
83.147.4.0/22 maxlen: 24
83.147.22.0/23 maxlen: 24
83.147.24.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65255640 (0x3e3b8d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Mar 27 14:00:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74981a8f4bcf34aba5b9b8c3f15df0165e4bf2bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:89:da:64:ec:10:d4:64:fc:5e:8c:83:86:69:
d3:2d:1d:57:f3:49:8b:9a:1b:90:44:4d:ea:1e:51:
a7:27:9c:27:71:09:f0:31:b4:13:e1:7e:0c:aa:23:
03:9e:80:b1:86:66:41:e5:99:07:d7:10:89:26:31:
ff:38:a6:ef:e3:0d:f8:b6:99:5d:67:ae:75:d1:18:
2f:65:84:82:9e:8b:16:b5:04:9d:eb:f6:cb:82:2b:
ed:82:67:8e:b7:02:c6:b2:d1:c2:2e:ea:30:8a:9a:
82:a2:f1:05:cd:35:e6:17:da:47:4a:88:57:68:68:
46:f5:ca:b9:41:85:1a:a2:ee:50:57:15:8e:84:fe:
3c:47:bc:bc:d4:40:ad:df:ab:83:8f:92:ce:a7:77:
7d:21:9a:43:59:74:37:a8:a4:be:53:ea:db:8e:6c:
e3:16:d3:a9:a6:67:59:ee:bc:4e:a3:80:8a:22:de:
d5:ee:1c:93:1a:eb:24:52:e1:e6:f9:7f:be:07:68:
c2:a2:d2:6f:c4:86:4a:d9:46:41:7a:13:be:e1:f0:
19:98:37:66:fe:87:05:ae:24:3d:df:4a:3b:7e:89:
8d:a1:c8:83:23:6b:2b:41:0c:56:10:ee:5c:9f:9c:
58:8f:d8:06:60:32:4c:6e:d6:d9:88:df:2a:aa:f2:
0c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:98:1A:8F:4B:CF:34:AB:A5:B9:B8:C3:F1:5D:F0:16:5E:4B:F2:BB
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/dJgaj0vPNKulubjD8V3wFl5L8rs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.58.0/23
83.147.4.0/22
83.147.22.0-83.147.27.255
83.147.48.0/22
Signature Algorithm: sha256WithRSAEncryption
11:b9:b2:44:c6:1a:c1:c3:7d:e9:90:56:f4:0a:1b:fe:a5:9b:
1a:3f:a8:96:5c:5f:bc:6e:1c:a1:12:72:0a:bc:c4:91:90:54:
1a:36:9b:09:d1:d3:24:e2:e6:f0:40:7b:72:a4:b9:a3:22:b5:
59:ca:f2:bc:78:1d:50:bc:1f:fb:e8:91:bd:3e:78:3b:19:25:
cc:f2:7f:dc:51:3c:3d:c6:91:c9:af:b1:7b:6b:c9:3c:a2:d7:
f0:bf:3d:27:42:33:8a:09:75:a6:c5:2d:7a:85:4c:3c:2c:1c:
4c:0d:86:72:85:ea:a0:30:1f:f7:f3:fe:a2:83:5c:00:b7:e0:
7f:3a:f6:3c:cb:9a:93:73:a2:15:ee:dc:a1:12:2f:9c:d1:3c:
eb:44:40:a9:82:8b:85:68:bb:8e:4b:50:25:cd:59:77:73:18:
f8:00:e3:57:13:be:0b:7d:82:80:fc:bb:66:23:dc:36:df:40:
2f:7a:38:63:e3:62:5f:9a:44:bd:aa:6e:86:26:6b:75:ff:a6:
55:95:36:bd:7a:57:71:b0:75:d9:50:aa:24:f4:8f:14:1b:35:
92:c4:e4:3c:b7:c7:10:e3:0f:8b:c9:12:b6:91:f0:e8:b0:99:
b5:b1:ff:22:82:43:cd:c6:9d:88:66:24:56:1a:4d:26:c2:fd:
7a:54:7b:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:50 2024 by rpki-client on console-fra.rpki-client.org