Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/tkSrB8lj7UqyC8zHG1ylYcwjo_g.roa
File: tkSrB8lj7UqyC8zHG1ylYcwjo_g.roa (raw, json)
Hash identifier: tW7FK9W8BoiwlvHWklIiFiarnHUSIWkLIbI3Hrsl6Gw=
Subject key identifier: B6:44:AB:07:C9:63:ED:4A:B2:0B:CC:C7:1B:5C:A5:61:CC:23:A3:F8
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 032FB313
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/tkSrB8lj7UqyC8zHG1ylYcwjo_g.roa
Signing time: Fri 14 Jan 2022 14:55:16 +0000
ROA not before: Fri 14 Jan 2022 14:55:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 83.147.48.0/22 maxlen: 24
83.147.4.0/22 maxlen: 24
83.147.22.0/23 maxlen: 24
83.147.24.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53457683 (0x32fb313)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Jan 14 14:55:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b644ab07c963ed4ab20bccc71b5ca561cc23a3f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:78:b5:2e:90:bd:fc:a3:02:28:fe:1b:79:c2:
fb:e5:33:90:82:9b:03:10:fd:f9:20:4c:52:db:64:
76:79:cd:ba:99:95:5e:75:0d:fd:8a:17:e5:40:bc:
2d:b6:85:2d:d0:80:0f:4d:2e:a9:23:0d:af:33:d0:
cf:8f:d5:0f:9b:87:68:0d:08:12:10:e9:3d:1c:b1:
3e:1a:2a:7b:cb:c1:82:7e:62:c3:c6:36:9e:57:ce:
ad:29:3b:d8:cd:7d:ef:57:d4:1d:b9:75:bd:01:4a:
dc:06:f2:ac:10:2d:12:8f:bd:b4:e3:c4:a3:6e:a2:
e7:57:63:58:e2:be:91:bd:4c:dc:d5:3f:51:8b:ae:
06:d2:1e:29:40:90:d3:c6:99:22:96:c1:0b:ca:7f:
19:62:f5:2b:7d:59:93:c5:38:85:05:da:c3:37:2c:
bb:8f:31:24:96:10:33:07:eb:16:d0:82:22:f6:0e:
0c:80:31:ba:a2:f0:1f:29:84:54:cb:cc:0e:53:ef:
7a:d4:ba:69:d6:36:ed:02:90:03:71:a9:b4:e3:1d:
8c:72:49:b4:15:7a:da:36:29:f4:cc:c9:dc:bb:57:
af:a4:02:6c:38:2a:92:29:2b:3e:96:25:63:e5:da:
c3:95:af:ed:27:77:e6:e2:5f:df:7c:e9:d1:1d:79:
36:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:44:AB:07:C9:63:ED:4A:B2:0B:CC:C7:1B:5C:A5:61:CC:23:A3:F8
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/tkSrB8lj7UqyC8zHG1ylYcwjo_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.4.0/22
83.147.22.0-83.147.27.255
83.147.48.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:37:7b:5d:f6:14:ae:39:d4:b1:e8:5d:23:32:59:54:3e:c8:
82:f3:51:df:1a:3f:d2:5d:3a:5f:63:30:b6:d5:95:21:1c:f8:
22:04:7c:d2:3a:58:ae:cd:28:92:f9:f6:e3:a9:3b:4a:c8:96:
83:13:3c:9c:d2:8e:73:26:00:24:ba:fa:4d:cc:89:f7:40:52:
1e:8f:c1:b3:bf:ed:8d:6d:65:e2:5e:43:53:a5:cf:46:84:2b:
85:e5:22:0d:76:bb:57:76:d4:81:4c:3f:ff:1c:c5:ca:d1:27:
a9:c2:dd:62:8a:87:ed:6e:4f:31:28:5a:ac:86:2c:10:de:85:
b8:81:2a:42:44:f3:58:bc:9d:b3:00:cd:79:07:8f:9c:6d:38:
bc:1a:8b:62:e8:ea:00:e1:44:b0:00:24:dc:6e:1a:be:18:f4:
6f:e6:12:6b:fa:a4:bb:eb:5e:23:62:05:f6:a5:7e:48:f3:c3:
7e:8b:13:f4:2c:40:e7:40:91:68:c2:d0:30:02:f5:75:e7:a8:
ba:f2:47:09:ee:69:9d:bf:0c:2d:c6:1a:45:72:49:0a:ad:d3:
33:c7:da:31:a2:24:64:ca:f8:06:23:3c:b4:11:3f:d9:c7:1c:
72:3b:fb:e9:4f:d3:28:d8:8f:c9:92:83:73:97:3f:0c:49:6c:
ee:35:01:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:01 2024 by rpki-client on console-ams.rpki-client.org