Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/q4-QI06x_sR8qn8FbeOR9oDEZbU.roa
File: q4-QI06x_sR8qn8FbeOR9oDEZbU.roa (raw, json)
Hash identifier: 2na0PBcgTfSw6ZYu8tJq2hS+jD/pvC+x2WKOWaAvKDk=
Subject key identifier: AB:8F:90:23:4E:B1:FE:C4:7C:AA:7F:05:6D:E3:91:F6:80:C4:65:B5
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 0184F740FA5B90AB6A7A3723EFE71451ECAE
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/q4-QI06x_sR8qn8FbeOR9oDEZbU.roa
Signing time: Fri 09 Dec 2022 14:19:01 +0000
ROA not before: Fri 09 Dec 2022 14:19:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 83.147.52.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f7:40:fa:5b:90:ab:6a:7a:37:23:ef:e7:14:51:ec:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Dec 9 14:19:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab8f90234eb1fec47caa7f056de391f680c465b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:e3:bd:bf:04:af:af:b1:89:3a:e2:a4:80:a1:
35:68:e2:b5:20:33:18:dd:b1:48:c0:fe:d5:cc:62:
9e:f0:48:1d:4a:0d:31:4d:f5:d2:47:65:52:5b:2c:
da:66:86:45:f6:f1:7a:18:d8:c0:93:be:ea:d8:79:
15:7f:bb:68:c1:27:21:07:52:f4:1f:58:86:68:f4:
49:d4:57:f1:bf:27:f4:79:6c:b1:84:f4:70:d8:90:
1a:d1:8f:57:da:04:4c:29:23:e3:86:e6:03:fa:43:
f7:58:e8:07:d1:17:c3:b1:e4:1d:56:1e:02:df:4c:
e3:c6:b1:6b:1e:99:4c:86:9b:4e:e9:86:ff:32:23:
5b:61:ca:af:3e:63:0f:bc:b6:0a:6f:e5:2b:df:6e:
fe:13:9d:ea:9d:04:e7:39:6f:a7:c4:8a:2e:04:b1:
93:82:9a:8c:45:1c:2d:92:8a:71:a8:66:62:27:2c:
35:96:0b:a4:95:7f:fd:4c:3c:d5:42:5e:70:54:f3:
63:cb:e8:22:ac:39:dd:5a:d2:67:10:60:80:06:12:
30:87:cb:95:d2:4a:90:71:1b:9c:7c:e9:b1:01:7e:
59:b3:a0:76:1d:57:cb:1e:f4:ed:aa:82:0b:c0:0b:
15:df:d3:7e:d9:2b:d5:37:e8:1a:9c:d4:8b:52:07:
a8:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:8F:90:23:4E:B1:FE:C4:7C:AA:7F:05:6D:E3:91:F6:80:C4:65:B5
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/q4-QI06x_sR8qn8FbeOR9oDEZbU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.52.0/22
Signature Algorithm: sha256WithRSAEncryption
bd:4b:5e:40:f0:70:72:45:15:de:14:eb:df:c7:65:c7:06:f2:
62:1d:b5:35:49:52:3d:33:6d:a5:05:15:1b:56:46:dc:62:bb:
5e:8b:2b:33:a0:f7:f7:3c:38:9e:33:53:ed:95:52:27:84:89:
7e:73:da:bb:c5:45:88:61:01:86:24:9d:48:6e:4b:4b:ef:73:
47:8e:2a:66:cf:35:9b:2f:cd:74:1e:a2:fd:f1:f6:84:0a:8a:
64:d0:90:1c:da:36:a9:dd:c5:ce:78:58:10:1e:0a:15:5a:81:
fc:8b:65:52:2e:a8:7a:27:48:39:3e:6b:97:1f:54:15:5b:e1:
8e:1a:b4:60:6a:2e:ae:34:9e:69:b1:74:92:ef:82:f1:34:50:
54:5c:07:95:49:b0:0c:38:0e:39:28:b5:14:62:ae:93:ed:4f:
d5:bd:68:90:19:d1:a3:03:38:50:11:50:a8:61:e2:bd:7b:97:
e7:18:39:0d:84:8a:a8:aa:dc:5a:38:ea:e0:8c:b5:99:e4:56:
18:11:9b:21:56:06:27:3a:32:76:0c:84:57:75:02:b8:85:5d:
e1:d0:45:12:66:7d:bb:7c:58:88:19:7a:45:6e:b5:84:64:95:
31:f6:d8:ef:4b:80:d9:4a:d8:9c:80:80:bd:81:69:28:bd:c5:
03:01:35:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:42 2023 by rpki-client on console-fra.rpki-client.org