Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/mjh2ei6UGu3-6QHYDZ6M_KSb3Tg.roa
File: mjh2ei6UGu3-6QHYDZ6M_KSb3Tg.roa (raw, json)
Hash identifier: 2i2WDOkIpxC/Di3NpD/LsrIBMCcAhGFDTNSw6Ke1KvI=
Subject key identifier: 9A:38:76:7A:2E:94:1A:ED:FE:E9:01:D8:0D:9E:8C:FC:A4:9B:DD:38
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 037A8D55
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/mjh2ei6UGu3-6QHYDZ6M_KSb3Tg.roa
Signing time: Mon 14 Feb 2022 16:19:45 +0000
ROA not before: Mon 14 Feb 2022 16:19:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 83.147.44.0/22 maxlen: 24
83.147.40.0/22 maxlen: 24
83.147.48.0/22 maxlen: 24
83.147.52.0/22 maxlen: 24
83.147.60.0/23 maxlen: 24
83.147.62.0/24 maxlen: 24
45.156.56.0/22 maxlen: 24
83.147.4.0/22 maxlen: 24
83.147.8.0/21 maxlen: 24
83.147.16.0/20 maxlen: 24
83.147.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58363221 (0x37a8d55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Feb 14 16:19:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a38767a2e941aedfee901d80d9e8cfca49bdd38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:48:d0:e5:eb:43:2a:5b:75:a0:35:27:e2:5b:
95:c0:aa:38:0f:ae:af:e0:0f:53:01:50:94:dd:84:
b8:fe:e1:e5:41:f7:fc:51:8f:e6:7f:20:1c:e6:27:
78:f9:a4:fb:e0:d1:02:16:75:79:e9:c5:74:0f:db:
69:8a:cb:5a:9e:03:b5:bf:3e:f0:a1:03:ac:b9:e4:
af:5a:13:a4:d8:84:b8:52:54:ae:0b:a3:11:ad:0e:
9e:f1:6a:ef:3d:5b:a4:e9:61:95:eb:51:2a:4d:b9:
34:be:b1:a7:c5:8d:41:1f:d8:4b:fe:b2:03:d5:32:
a6:c5:29:df:45:3e:1a:e7:4d:4f:08:1c:bc:b2:50:
7b:4c:b8:6b:56:f0:c5:40:a4:80:39:5b:a8:a2:03:
37:b8:cf:b3:ed:fc:7c:67:6e:ad:4d:79:f3:f4:75:
70:19:07:62:56:a2:d3:a7:70:61:34:7f:f0:3e:2d:
be:d5:dc:cd:8a:ce:3a:a9:33:1f:0e:ea:0c:7d:a8:
73:b6:d9:a1:c5:01:6f:fc:a8:21:23:e0:0b:79:6e:
80:44:8a:22:34:e9:2f:ef:6d:d1:5a:14:e2:35:8e:
54:0f:d1:06:a2:d5:47:33:fa:47:16:a2:1a:2c:00:
ae:3c:86:6e:3d:bb:0e:ca:a4:de:72:36:9b:45:41:
ac:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:38:76:7A:2E:94:1A:ED:FE:E9:01:D8:0D:9E:8C:FC:A4:9B:DD:38
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/mjh2ei6UGu3-6QHYDZ6M_KSb3Tg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.56.0/22
83.147.4.0-83.147.35.255
83.147.40.0-83.147.55.255
83.147.60.0-83.147.62.255
Signature Algorithm: sha256WithRSAEncryption
46:36:60:20:4c:9b:aa:5e:cf:9d:08:28:e4:3b:4f:2b:39:00:
01:7c:78:76:f8:c3:c1:ee:f3:65:22:92:71:30:13:07:b7:47:
55:ae:9a:30:8e:a6:d0:a1:0a:92:34:97:c2:90:fc:16:e5:af:
2c:09:42:22:05:bb:dc:35:05:0d:a4:c5:07:7a:8d:62:95:a6:
f1:7a:cc:59:37:4c:9f:54:4e:c4:68:3b:1a:32:ee:c9:e9:ae:
95:9d:73:f5:1f:e4:fa:04:c5:66:7d:1e:09:2c:7e:75:c4:ad:
ef:b7:be:54:3a:fc:84:f6:33:a2:dd:90:37:33:65:6b:9f:64:
83:3a:2e:d0:22:88:1f:95:97:03:42:85:4b:1c:21:a7:56:99:
e1:4d:62:27:7e:a5:a5:7f:03:93:2c:2e:f9:6c:a7:6c:b5:f9:
15:fc:74:9c:1c:1c:5f:36:61:f5:01:93:a9:bd:d0:26:14:d6:
c5:ee:b8:39:8a:a8:92:fd:0a:e5:90:96:f4:f2:d6:93:3f:24:
61:75:e8:b9:9e:54:73:8d:9e:df:d1:03:9f:21:29:ca:95:b7:
1a:1c:61:21:43:d2:99:c0:9d:ba:ce:3d:bd:80:f8:e4:67:a1:
88:e2:54:32:38:da:f9:27:ee:2b:aa:75:d3:0a:5b:29:97:3b:
ce:69:85:46
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgIEA3qNVTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MTkzZmZlOWRiMzc2MjZiMTNmODVkN2NjNDU3YWFkNWMxZjMwYzlmMB4XDTIyMDIx
NDE2MTk0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWEzODc2N2EyZTk0
MWFlZGZlZTkwMWQ4MGQ5ZThjZmNhNDliZGQzODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALtI0OXrQypbdaA1J+JblcCqOA+ur+APUwFQlN2EuP7h5UH3
/FGP5n8gHOYnePmk++DRAhZ1eenFdA/baYrLWp4Dtb8+8KEDrLnkr1oTpNiEuFJU
rgujEa0OnvFq7z1bpOlhletRKk25NL6xp8WNQR/YS/6yA9UypsUp30U+GudNTwgc
vLJQe0y4a1bwxUCkgDlbqKIDN7jPs+38fGdurU158/R1cBkHYlai06dwYTR/8D4t
vtXczYrOOqkzHw7qDH2oc7bZocUBb/yoISPgC3lugESKIjTpL+9t0VoU4jWOVA/R
BqLVRzP6RxaiGiwArjyGbj27Dsqk3nI2m0VBrGcCAwEAAaOCAjMwggIvMB0GA1Ud
DgQWBBSaOHZ6LpQa7f7pAdgNnoz8pJvdODAfBgNVHSMEGDAWgBSBk//p2zdiaxP4
XXzEV6rVwfMMnzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2daUF82ZHMzWW1zVC1GMTh4RmVxMWNIekRKOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTcvNzZiYzFlLWI2ZjQtNDA4YS1iYjg5LTA4ZDEyNzBjMmU3MS8x
L21qaDJlaTZVR3UzLTZRSFlEWjZNX0tTYjNUZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTcv
NzZiYzFlLWI2ZjQtNDA4YS1iYjg5LTA4ZDEyNzBjMmU3MS8xL2daUF82ZHMzWW1z
VC1GMTh4RmVxMWNIekRKOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBJ
BggrBgEFBQcBBwEB/wQ6MDgwNgQCAAEwMAMEAi2cODAMAwQCU5MEAwQCU5MgMAwD
BANTkygDBANTkzAwDAMEAlOTPAMEAFOTPjANBgkqhkiG9w0BAQsFAAOCAQEARjZg
IEybql7PnQgo5DtPKzkAAXx4dvjDwe7zZSKScTATB7dHVa6aMI6m0KEKkjSXwpD8
FuWvLAlCIgW73DUFDaTFB3qNYpWm8XrMWTdMn1ROxGg7GjLuyemulZ1z9R/k+gTF
Zn0eCSx+dcSt77e+VDr8hPYzot2QNzNla59kgzou0CKIH5WXA0KFSxwhp1aZ4U1i
J36lpX8Dkywu+WynbLX5Ffx0nBwcXzZh9QGTqb3QJhTWxe64OYqokv0K5ZCW9PLW
kz8kYXXouZ5Uc42e39EDnyEpypW3GhxhIUPSmcCdus49vYD45GehiOJUMjja+Sfu
K6p10wpbKZc7zmmFRg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:50 2024 by rpki-client on console-fra.rpki-client.org