Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/sj0zTJrDPPi2GtYF0wxWCtZpsZU.roa
File: sj0zTJrDPPi2GtYF0wxWCtZpsZU.roa (raw, json)
Hash identifier: VE43E4nHmRfPU1+0F8uf+BiFsP9Ursz1V65vI2WOG4Q=
Subject key identifier: B2:3D:33:4C:9A:C3:3C:F8:B6:1A:D6:05:D3:0C:56:0A:D6:69:B1:95
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 0423831D
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/sj0zTJrDPPi2GtYF0wxWCtZpsZU.roa
Signing time: Sun 17 Apr 2022 05:02:16 +0000
ROA not before: Sun 17 Apr 2022 05:02:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 83.147.14.0/24 maxlen: 24
83.147.13.0/24 maxlen: 24
83.147.23.0/24 maxlen: 24
83.147.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69436189 (0x423831d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Apr 17 05:02:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b23d334c9ac33cf8b61ad605d30c560ad669b195
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c3:83:0f:49:18:5d:de:b6:11:e1:62:1a:3d:
8f:58:ba:34:6d:34:43:3c:e5:ca:d9:df:d2:0b:61:
1f:1f:8c:ef:5c:06:54:d9:77:cd:e1:52:8a:fc:0f:
9c:59:69:ac:96:78:d0:4d:3d:0e:91:b9:ae:0d:2e:
23:03:c1:e0:82:37:42:34:14:ad:f3:5c:0e:a7:73:
a9:f6:b5:1f:54:58:f8:69:7a:60:cc:73:a1:20:14:
30:fb:06:97:75:37:f6:68:04:6d:a9:8a:d9:ca:05:
22:67:3f:12:76:89:72:60:38:7a:29:cf:1e:b1:37:
8e:51:17:55:63:d0:98:b9:74:81:82:92:c3:68:47:
5a:8b:e0:d3:86:f5:11:65:42:df:3b:a7:cd:81:77:
4b:fc:8b:d0:5d:8d:70:fd:0f:b5:14:16:c8:ba:5c:
6d:ef:f8:20:49:9f:da:90:a1:d9:c3:e0:bb:31:7d:
f8:ef:26:15:d9:81:92:68:10:75:c4:d6:1b:8d:e1:
17:53:ee:32:9d:f4:68:fe:e5:bf:bd:21:de:51:9c:
7e:11:65:b8:8f:87:3f:78:a3:3a:d8:6b:52:07:f6:
45:2c:3e:3a:a8:7e:97:07:d4:62:f8:3f:0a:d6:be:
be:1c:11:fa:4c:5a:63:97:8b:8c:db:c3:21:51:97:
92:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:3D:33:4C:9A:C3:3C:F8:B6:1A:D6:05:D3:0C:56:0A:D6:69:B1:95
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/sj0zTJrDPPi2GtYF0wxWCtZpsZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.13.0-83.147.14.255
83.147.22.0/23
Signature Algorithm: sha256WithRSAEncryption
01:e6:35:60:bf:d5:1e:f6:51:66:87:95:69:db:03:c8:10:94:
b7:d9:0b:fc:f3:90:87:8e:d8:39:11:1b:ae:1a:5e:83:64:08:
ce:9e:b3:e9:76:4e:90:46:e9:1f:3e:60:35:61:a8:eb:cf:a8:
c3:83:bf:2e:12:d2:11:d8:7f:15:a7:74:97:ba:a6:b6:92:c4:
8d:f2:d9:5f:6b:58:bc:e1:6d:93:0d:89:99:0e:f1:cb:35:91:
e4:93:55:99:52:c9:09:80:d0:7c:ee:71:f0:ff:c8:48:a9:c1:
47:19:14:c2:ac:1f:f7:38:11:b0:2b:6a:ec:a5:8d:f0:49:f6:
34:16:d1:e1:56:20:85:11:6e:12:86:df:a1:d3:ff:0c:c1:d6:
83:56:1a:ee:c4:77:ac:cd:31:cc:36:d1:a5:20:a8:85:ff:92:
b8:70:8a:3a:3a:7f:2f:84:93:90:a6:e5:f7:84:95:a0:f0:81:
6f:f8:8f:3f:60:39:c7:5c:c3:2d:63:ab:8f:89:ae:be:62:f3:
1a:f5:6a:fc:a4:61:63:25:cf:86:21:1c:cf:d9:78:a8:82:34:
2a:be:de:71:da:39:5a:69:99:ed:e3:29:34:33:ff:57:8c:80:
e7:f6:0f:c2:53:28:31:dc:02:59:df:24:1d:cb:2c:f5:9b:5a:
da:88:f7:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:01 2024 by rpki-client on console-ams.rpki-client.org