Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/heCD_Qqn2mSGS0j1JnxMcR8xwfI.roa
File: heCD_Qqn2mSGS0j1JnxMcR8xwfI.roa (raw, json)
Hash identifier: EPeIbceSlqJ1SYnxsc9LWGusk8vvbAdwGntgkY/vO7g=
Subject key identifier: 85:E0:83:FD:0A:A7:DA:64:86:4B:48:F5:26:7C:4C:71:1F:31:C1:F2
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 03D4AEC4
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/heCD_Qqn2mSGS0j1JnxMcR8xwfI.roa
Signing time: Mon 21 Mar 2022 18:25:58 +0000
ROA not before: Mon 21 Mar 2022 18:25:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 83.147.61.0/24 maxlen: 24
83.147.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64270020 (0x3d4aec4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Mar 21 18:25:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85e083fd0aa7da64864b48f5267c4c711f31c1f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:04:02:fb:32:fa:52:d6:b4:0c:4b:57:e0:52:
5e:fd:e3:c5:57:57:d7:3a:4e:bb:37:69:9e:5c:a4:
bb:9d:bd:75:71:57:c3:5d:22:a2:42:f3:85:88:a8:
34:20:78:44:36:64:45:b7:c8:20:82:c8:3e:97:10:
94:b1:41:04:db:92:0d:17:fe:14:8d:4a:84:d5:d8:
a1:bf:58:97:9d:04:97:90:2f:85:38:2a:91:e5:5a:
01:33:52:87:13:1a:d6:70:f3:ac:00:bb:43:95:a4:
9d:c7:3f:bc:a1:d0:bf:68:fb:29:b4:6f:57:8b:c3:
e5:d5:ce:1f:fb:b7:e6:49:03:80:d5:62:85:2c:cb:
e1:84:dd:44:ee:1e:3d:47:d2:41:b8:1f:c2:85:35:
d7:45:ff:db:5f:40:8f:44:cb:2b:bc:e0:9c:c2:f6:
b1:8d:d0:40:ea:61:68:8b:9b:69:f4:89:e6:78:22:
28:c2:56:f5:4c:1f:11:dd:2c:79:23:dc:9a:aa:44:
da:cf:7d:49:d4:54:1a:13:75:3e:32:65:85:e2:d4:
b5:67:91:1c:54:e9:fc:5e:dd:e3:de:2f:de:12:d0:
9f:c0:6a:b9:b3:61:fa:06:d1:2b:7d:32:12:77:73:
25:6f:fe:a4:c4:77:c7:eb:52:54:2b:15:41:09:73:
17:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:E0:83:FD:0A:A7:DA:64:86:4B:48:F5:26:7C:4C:71:1F:31:C1:F2
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/heCD_Qqn2mSGS0j1JnxMcR8xwfI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.29.0/24
83.147.61.0/24
Signature Algorithm: sha256WithRSAEncryption
12:a0:29:06:39:89:08:4b:46:59:46:2c:2d:e1:07:01:ed:e7:
42:b8:d1:a0:af:ec:58:51:e1:db:54:bb:77:75:9d:d9:5b:a1:
bd:e0:28:58:2c:04:84:53:26:55:66:03:3a:64:f0:15:c9:f7:
17:a2:ff:9c:a0:23:64:54:65:62:10:c3:f0:53:71:2f:0d:60:
a9:da:3d:47:f6:1d:23:fc:0a:c7:cd:f5:ac:ac:55:af:3b:43:
03:f3:aa:35:51:8b:e7:74:bb:84:2f:4e:17:fc:ee:da:9e:7c:
50:44:6d:39:37:4d:ef:a1:92:91:bf:4f:67:4f:ae:4a:03:08:
4b:a6:b9:68:48:5c:77:77:e4:35:73:26:a8:7f:76:35:01:80:
ae:3d:09:e9:cb:8e:a8:ea:40:d3:f7:b3:fd:f4:eb:a7:ed:8d:
00:70:f7:03:69:e6:ff:21:03:57:0b:2d:07:6e:5b:d3:c6:33:
59:05:3e:c7:e3:a6:cc:4f:b8:9b:8c:6b:17:06:75:76:42:2f:
3c:9f:ba:e5:65:eb:97:f6:4a:69:7b:f6:d1:94:27:66:bf:54:
ba:7a:48:02:1c:2d:de:dd:52:6e:ef:fb:da:4a:0d:7a:9a:13:
b9:dd:73:9d:15:b5:e7:d1:cf:a8:47:d4:35:3d:50:b1:da:92:
eb:66:2c:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:50 2024 by rpki-client on console-fra.rpki-client.org