Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/ouXjazcaxwL8B-li-n4irK2kkVk.roa
File: ouXjazcaxwL8B-li-n4irK2kkVk.roa (raw, json)
Hash identifier: 1T0I60MIZMebi6DOB00QLEnFvKvjl4z0xQ27Hvzsucg=
Subject key identifier: A2:E5:E3:6B:37:1A:C7:02:FC:07:E9:62:FA:7E:22:AC:AD:A4:91:59
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 0327909C
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/ouXjazcaxwL8B-li-n4irK2kkVk.roa
Signing time: Tue 11 Jan 2022 14:37:17 +0000
ROA not before: Tue 11 Jan 2022 14:37:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 83.147.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52924572 (0x327909c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Jan 11 14:37:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2e5e36b371ac702fc07e962fa7e22acada49159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:53:bb:cf:55:24:20:08:6e:df:8f:58:54:21:
34:88:54:ce:2f:69:3a:38:83:5c:32:f7:19:de:92:
56:51:85:0b:1a:7d:46:fb:7b:91:17:8a:da:22:1c:
56:10:9a:11:e8:4a:40:89:84:78:ac:cb:5f:9f:85:
a8:1a:f8:7a:94:b2:d9:76:a7:2e:91:f4:67:50:86:
b7:4e:32:6e:48:5e:6a:4d:e9:e6:e6:16:d7:65:66:
fa:a9:79:d0:18:c1:60:1c:4c:6f:4d:8c:eb:54:3f:
71:19:09:fa:2d:33:21:29:4b:6b:48:f8:57:56:da:
7d:64:45:a5:e8:1c:5a:1e:ec:e0:24:9e:f6:87:70:
f3:8b:ef:37:1d:7c:42:64:ea:7d:a3:f3:fc:29:27:
b8:19:7e:d2:67:1d:71:6e:d3:0e:4b:be:6b:77:b9:
a6:e4:65:49:a5:47:5f:06:82:39:61:c9:c1:99:88:
3a:91:bc:36:ee:b0:3f:65:97:11:f5:69:7e:9a:33:
10:35:d9:a0:6c:94:ea:7a:10:d9:58:fa:24:c7:d1:
91:9f:b0:bf:bd:89:85:4c:ad:81:72:49:f4:83:ec:
8f:aa:21:6b:0c:e5:c0:45:82:de:80:6d:fe:11:a5:
92:d1:20:25:31:49:47:6e:2d:56:c8:59:46:c1:a3:
30:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:E5:E3:6B:37:1A:C7:02:FC:07:E9:62:FA:7E:22:AC:AD:A4:91:59
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/ouXjazcaxwL8B-li-n4irK2kkVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.32.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:c3:bc:1e:38:28:d3:55:b2:75:56:51:46:82:e1:59:38:87:
a0:62:2d:85:d9:54:73:44:bc:35:72:a1:24:30:87:0d:0e:a3:
a2:e9:ad:4f:74:0c:e4:a3:53:85:81:2a:d6:a9:57:4a:c9:92:
de:9c:c0:38:c3:ae:49:e5:3e:e8:d4:fb:0d:90:ea:ac:e4:3d:
5b:7d:ee:c6:d5:51:5b:f1:0d:13:27:cc:50:bc:88:16:9b:4c:
dc:dd:84:14:28:4e:ef:f9:2f:ff:1d:21:a7:7e:45:ce:bf:ab:
2d:e9:d3:b2:f9:39:59:fc:15:52:18:35:b9:87:00:b8:74:59:
c9:f8:70:b4:55:ec:73:db:0f:9c:a4:9d:5c:0c:1d:a1:88:92:
0a:fe:c7:26:9d:7a:8f:78:7a:13:c0:99:0e:a8:f8:b5:b8:98:
88:ae:35:8b:bb:d8:cd:f5:92:12:7d:78:57:eb:e3:6e:4a:7e:
10:3a:4c:52:5c:50:a4:67:a0:29:8e:22:e3:84:a1:a3:3d:70:
98:34:59:04:b8:f8:79:00:ac:c7:3f:98:9d:35:2f:ac:e9:b1:
63:4c:34:96:70:11:2a:14:10:06:3d:c7:ad:58:ae:68:9e:86:
34:64:7a:df:eb:e4:54:78:d2:a5:85:17:f9:a4:25:76:62:75:
c1:4d:71:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:42 2023 by rpki-client on console-fra.rpki-client.org