Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/kWn9_LmjBjXQTmGeumTggkG1_-c.roa
File: kWn9_LmjBjXQTmGeumTggkG1_-c.roa (raw, json)
Hash identifier: oMp+1k5unCz1OaO7C7zzRxfjKnPZ/wpxFcx53Dh3NlQ=
Subject key identifier: 91:69:FD:FC:B9:A3:06:35:D0:4E:61:9E:BA:64:E0:82:41:B5:FF:E7
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 03039610
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/kWn9_LmjBjXQTmGeumTggkG1_-c.roa
Signing time: Sat 01 Jan 2022 13:57:05 +0000
ROA not before: Sat 01 Jan 2022 13:57:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 83.147.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50566672 (0x3039610)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Jan 1 13:57:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9169fdfcb9a30635d04e619eba64e08241b5ffe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:31:af:22:a4:c3:f8:2b:da:42:87:51:1f:9a:
b9:63:8e:d7:9c:20:a3:a2:55:c8:1f:a9:4e:40:1a:
5b:52:e4:93:84:b6:68:db:72:77:bf:40:33:29:6b:
02:0d:b4:ff:aa:de:27:6f:35:a9:f8:ad:45:79:15:
32:34:39:71:fd:fb:52:8e:d9:b8:f5:06:10:36:2b:
0a:1c:eb:30:82:93:b8:ae:cd:72:3b:85:17:15:24:
55:da:94:30:37:fc:66:f9:f5:91:13:f8:25:18:b9:
10:93:3e:73:57:a9:80:83:b7:f3:98:a0:ff:21:0e:
37:f3:53:3a:44:bb:cd:09:d1:2d:30:69:12:7a:a5:
00:90:71:3e:2a:44:7c:92:a9:a4:75:7e:39:a8:de:
5a:08:33:ee:3c:60:ec:35:bb:39:01:7b:f5:1f:32:
2e:6b:97:37:60:b3:58:f1:f5:ea:99:de:c8:db:f5:
d8:0f:9f:45:01:eb:0f:d6:7b:7d:a0:1c:96:f3:3d:
58:64:64:07:1e:72:e0:40:27:be:ea:04:0e:4b:a3:
49:ec:97:f6:8c:d3:01:6c:7c:96:cb:58:d1:49:59:
1b:71:e4:4b:4c:73:f9:01:3b:76:2c:be:ab:23:eb:
cc:63:c2:ca:ca:39:da:83:a0:dc:7e:08:3d:70:71:
d9:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:69:FD:FC:B9:A3:06:35:D0:4E:61:9E:BA:64:E0:82:41:B5:FF:E7
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/kWn9_LmjBjXQTmGeumTggkG1_-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.40.0/22
Signature Algorithm: sha256WithRSAEncryption
44:c0:b8:f1:2c:be:44:da:f2:02:b7:ae:e1:2f:d7:1e:f7:53:
ea:d0:27:21:d0:48:25:cf:c4:69:68:7d:bf:6a:dd:34:54:57:
9c:1a:db:b8:50:eb:e6:7f:aa:4e:a4:e9:e5:ec:8e:3a:f6:26:
e0:e7:4a:99:3b:e7:ac:fb:78:51:f0:9e:86:4f:3c:ed:1f:6a:
62:ff:b4:8b:2b:69:ea:4e:34:ad:08:b8:85:9e:11:48:97:a8:
7f:de:ac:69:ba:5a:f9:26:41:80:e6:3e:e3:68:03:74:55:c6:
66:6e:9a:b6:45:b5:9d:f5:d8:81:5f:67:86:24:57:6e:eb:42:
e7:d7:90:94:d0:35:13:70:01:c5:eb:12:26:4c:39:4c:93:f5:
3d:0a:4a:cc:58:57:4a:6f:9c:c4:50:ee:58:5a:8f:49:c5:45:
e5:bc:4b:5b:4c:ba:ed:d9:5f:7c:4a:1b:2c:22:e0:ca:6a:55:
51:71:0d:d9:a2:ea:84:6c:ec:79:e7:ed:99:6b:3f:85:29:0c:
d8:c8:71:24:2f:9f:2e:da:f1:6f:67:0c:45:4a:71:d9:8c:bc:
64:aa:62:53:36:29:e6:99:4e:d0:36:cc:ed:f9:c8:fa:5a:3a:
2f:bf:59:fc:3e:cc:48:61:6e:ff:3f:64:b7:74:33:6a:fd:a1:
57:30:11:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:01 2024 by rpki-client on console-ams.rpki-client.org