Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/n3BgodL38V2mmYTBR-ChGUiPvEY.roa
File: n3BgodL38V2mmYTBR-ChGUiPvEY.roa (raw, json)
Hash identifier: 3uo8kBSK9rVFDIy3TJTpBBBZl5TdTwrWu44Fi+isUQ8=
Subject key identifier: 9F:70:60:A1:D2:F7:F1:5D:A6:99:84:C1:47:E0:A1:19:48:8F:BC:46
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 018487E295C9894E5FF43F82E588C041EDD1
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/n3BgodL38V2mmYTBR-ChGUiPvEY.roa
Signing time: Thu 17 Nov 2022 23:18:04 +0000
ROA not before: Thu 17 Nov 2022 23:18:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 83.147.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:87:e2:95:c9:89:4e:5f:f4:3f:82:e5:88:c0:41:ed:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Nov 17 23:18:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f7060a1d2f7f15da69984c147e0a119488fbc46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:5f:87:46:7c:b6:f5:f6:26:44:34:2c:37:dc:
49:8e:39:ea:f3:87:00:fd:51:f1:a9:e5:85:cc:68:
93:d9:6a:32:ff:5f:1e:79:f9:5c:cc:cf:bf:87:e7:
b3:16:bf:4a:72:f7:9d:11:db:05:64:d1:e5:20:0b:
d4:8f:81:db:3e:57:7a:4a:65:10:38:c8:98:0a:9b:
ec:ce:65:cc:63:2a:e8:6d:ab:16:4f:5d:dc:ca:84:
6a:a3:1a:d2:7f:69:f8:66:e9:c1:ae:32:c5:c5:57:
e3:87:8c:5c:3b:60:a1:42:8f:ef:13:01:32:58:ff:
ca:8a:e9:42:5a:34:05:bd:fc:91:b7:51:97:0d:e7:
ae:0c:a9:76:c5:8c:da:a2:1e:7f:e7:30:75:fe:50:
96:74:cf:fe:1f:82:f7:42:88:bc:12:6a:fc:a2:cf:
92:9f:50:7d:d2:26:23:4b:1f:bc:e2:b1:58:ea:59:
cd:80:87:c9:3c:8c:68:b4:28:42:90:ba:3a:38:aa:
c7:c6:02:f7:90:0b:13:69:78:64:dc:82:72:96:f3:
61:00:2c:69:c6:90:c1:b4:47:2f:bf:55:4e:24:be:
22:06:59:58:51:ee:5d:d1:66:82:4e:6a:49:c0:78:
25:6b:b1:2b:ef:e8:4c:65:cc:bf:bd:29:b8:01:07:
10:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:70:60:A1:D2:F7:F1:5D:A6:99:84:C1:47:E0:A1:19:48:8F:BC:46
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/n3BgodL38V2mmYTBR-ChGUiPvEY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.8.0/24
Signature Algorithm: sha256WithRSAEncryption
66:5b:c0:ae:28:b0:f8:24:6e:71:6b:82:25:eb:b2:5b:52:33:
ef:a7:54:13:a7:8a:ad:02:bf:3d:60:18:6c:0a:fa:1d:d4:fe:
be:61:69:01:3c:0c:c7:80:16:61:38:d9:40:fe:74:81:0a:4f:
a3:78:ce:1a:33:25:5f:65:ef:fb:62:79:6f:8f:5e:56:24:e7:
6d:34:43:2d:4e:72:5a:d6:72:15:c8:8f:6d:a1:7b:a9:32:44:
5d:f7:f6:c0:41:ae:69:d2:7f:84:1f:48:df:e3:bd:bb:21:e8:
01:83:72:1d:a1:e3:b4:01:a0:b3:c8:c4:71:43:96:d1:f5:60:
6d:8e:d0:83:4a:b6:ca:c2:f3:ec:54:f8:96:aa:7d:1b:e2:48:
73:01:ba:a6:b0:03:bc:9a:c7:a8:7b:85:96:1d:26:d9:96:e7:
6f:c8:23:37:d5:b2:f0:60:e5:e1:56:cd:58:95:70:ee:ab:cd:
7e:ff:4c:16:6f:75:04:74:0a:9b:f6:ea:59:7c:e9:7b:97:0a:
e4:0b:01:30:e0:7f:b3:46:07:47:b5:07:a6:da:ad:8d:c8:fd:
28:ed:13:03:68:c5:15:80:30:a1:6f:c4:bf:6c:76:bc:b3:bb:
0a:c8:9e:fa:d0:26:de:58:53:2c:2f:28:fa:20:db:63:e3:40:
ea:6f:ef:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:01 2024 by rpki-client on console-ams.rpki-client.org