Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/lgW_VU8emRLJlZvslWDMKL4Vyp8.roa
File: lgW_VU8emRLJlZvslWDMKL4Vyp8.roa (raw, json)
Hash identifier: fVPA7vS7VSExTtraOPFkKGMUBLd2Q2FbemqWKo0qq/I=
Subject key identifier: 96:05:BF:55:4F:1E:99:12:C9:95:9B:EC:95:60:CC:28:BE:15:CA:9F
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 03065097
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/lgW_VU8emRLJlZvslWDMKL4Vyp8.roa
Signing time: Sat 01 Jan 2022 13:57:06 +0000
ROA not before: Sat 01 Jan 2022 13:57:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 83.147.8.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50745495 (0x3065097)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Jan 1 13:57:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9605bf554f1e9912c9959bec9560cc28be15ca9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e8:d7:4c:63:e4:25:dc:73:83:b0:ad:7e:92:
a9:6d:73:16:29:6e:20:4a:fd:b4:c5:95:d2:a3:cd:
6b:c1:e0:d7:78:a9:f0:e4:06:78:cb:66:b7:e7:8c:
5a:6d:de:29:7d:d0:0b:ef:63:84:15:c3:e5:31:71:
6d:f0:67:2e:1e:e1:ba:76:5f:11:84:a1:eb:28:67:
8e:08:ef:74:05:3e:87:ec:79:b3:d8:f1:69:21:4a:
73:da:a5:2b:d6:a3:b7:1b:20:81:2c:99:2b:bb:ba:
b1:e1:69:ae:38:cc:22:76:56:42:f5:4f:86:2b:79:
fc:21:a3:2f:7c:e6:78:23:59:42:81:21:a3:ec:3a:
cd:c2:7a:ae:d1:69:97:6a:65:34:4b:37:2e:71:14:
8c:bb:20:a6:c5:e0:91:e6:27:a2:cf:70:2b:64:37:
cb:28:bc:96:03:16:de:ad:04:3e:e2:cc:3e:bf:31:
2d:88:44:09:d0:4f:e4:7a:a0:a9:ef:ca:5c:17:90:
46:ec:52:72:da:26:bf:93:09:64:40:30:9b:55:a0:
ae:b9:f2:51:b8:33:68:c0:ce:e1:97:87:7f:a4:49:
95:a7:35:8d:da:f9:94:32:c4:6d:90:f3:08:eb:04:
f2:f0:22:ff:f4:12:c1:27:f2:62:a2:5a:47:c8:9e:
10:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:05:BF:55:4F:1E:99:12:C9:95:9B:EC:95:60:CC:28:BE:15:CA:9F
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/lgW_VU8emRLJlZvslWDMKL4Vyp8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.8.0/22
Signature Algorithm: sha256WithRSAEncryption
91:23:62:2d:db:a0:cb:3e:26:c8:97:27:69:9f:76:ff:c8:a4:
36:8a:cb:3d:62:f9:b1:e9:98:d1:14:20:b2:37:14:f7:9d:31:
29:ed:fc:c5:0a:d3:2f:9c:3d:7f:b1:1e:cb:a3:a3:bf:09:6f:
ca:e1:d3:17:82:f9:c2:99:44:8a:ab:24:36:0e:17:e0:ea:91:
f1:0a:d4:e2:d7:6b:ed:94:88:c3:f1:25:7a:a9:ee:da:18:90:
e1:18:1e:49:41:79:6a:ee:24:34:bc:71:08:f9:0b:df:8d:46:
6a:1c:73:29:64:64:e9:49:8f:f1:e1:e6:2d:eb:dc:73:12:76:
16:e0:1e:cc:64:38:6c:be:c9:37:74:ac:59:23:68:84:17:55:
d9:28:03:ff:ec:70:57:89:90:2b:74:74:e3:38:47:d3:22:b6:
f7:5e:3a:ee:48:a9:77:3a:3a:2e:12:50:dc:5b:a3:59:95:8c:
e8:1e:6a:1d:0d:72:e5:47:fd:a6:14:82:51:a7:5c:fe:b2:bf:
69:f1:2d:40:cc:66:34:19:6e:fa:d4:17:4e:f4:5e:44:a8:f7:
1e:3d:aa:b8:47:67:99:76:5b:a2:76:87:0f:4b:8b:24:4f:1a:
de:39:30:df:a5:d3:d2:00:47:ee:c0:47:02:31:75:3f:5c:a9:
25:8b:7c:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:33 2023 by rpki-client on console-ams.rpki-client.org