Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/u9PsfzUBJa4Fvf5mRLl_qtSTPhI.roa
File: u9PsfzUBJa4Fvf5mRLl_qtSTPhI.roa (raw, json)
Hash identifier: DowSwFkIYis24MgDWK88FSjZAG1Z2AIR0R1icYeO+NQ=
Subject key identifier: BB:D3:EC:7F:35:01:25:AE:05:BD:FE:66:44:B9:7F:AA:D4:93:3E:12
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 04B97861
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/u9PsfzUBJa4Fvf5mRLl_qtSTPhI.roa
Signing time: Tue 14 Jun 2022 06:44:47 +0000
ROA not before: Tue 14 Jun 2022 06:44:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398465
IP address blocks: 83.147.0.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79263841 (0x4b97861)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Jun 14 06:44:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bbd3ec7f350125ae05bdfe6644b97faad4933e12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:52:22:58:04:b5:f6:97:4c:99:73:1c:e2:28:
23:25:5e:f6:9f:20:3c:c2:30:97:43:e3:13:91:e9:
80:5a:64:33:c1:05:ca:95:9b:67:cc:c1:05:e1:06:
0a:e1:37:42:43:07:ee:51:3d:29:95:7e:67:d5:47:
76:e3:fe:00:6f:8e:bb:89:c6:6b:cc:a6:43:14:ac:
83:2d:8c:9a:37:18:62:24:35:ce:e8:da:f9:ae:83:
db:ea:8b:79:d9:6b:90:c8:36:7c:e5:e4:fa:bb:f7:
79:73:28:23:fe:db:54:65:2b:74:78:e2:b3:4d:ac:
be:6e:25:eb:26:d1:cb:b3:d3:8c:7e:f3:25:e4:67:
2a:2f:c2:93:00:b5:b5:2b:b9:f2:30:69:7d:42:b9:
b6:de:db:fb:65:a0:8d:5c:69:b7:e1:87:e3:62:f8:
77:34:95:42:19:69:4e:f7:4b:1c:c3:68:8b:04:1a:
12:61:75:e0:fa:1d:7f:48:2c:7b:2b:dd:f0:c1:71:
16:4b:18:fd:b7:ac:66:fd:83:30:4b:08:4e:be:23:
7c:6f:7f:d6:2f:09:0b:c7:17:cf:5e:e1:8f:ac:b7:
c7:21:91:3a:e0:bd:9a:ab:04:23:cb:5a:37:20:88:
37:0a:6b:fa:8f:a6:f6:8e:0f:e1:68:ea:85:10:d4:
eb:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:D3:EC:7F:35:01:25:AE:05:BD:FE:66:44:B9:7F:AA:D4:93:3E:12
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/u9PsfzUBJa4Fvf5mRLl_qtSTPhI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.0.0/22
Signature Algorithm: sha256WithRSAEncryption
56:5a:4c:f1:3a:68:b3:56:6c:2f:56:89:a4:1b:2b:a0:28:ad:
2f:ac:c9:e0:c4:1f:be:55:57:ea:64:a8:2a:f8:6d:4f:6b:71:
67:d2:19:1e:9c:3d:6b:c9:4c:50:df:ec:1d:e7:74:64:2e:08:
15:01:9d:4e:39:47:8b:60:6e:8c:cd:e0:0a:84:21:e7:79:9c:
8c:2c:e1:51:4b:ce:8e:c5:d0:be:50:70:b4:87:f9:b4:35:23:
46:24:e7:f7:6b:c8:47:20:e6:51:52:aa:d1:d7:6f:3c:3f:92:
82:3e:48:2c:30:29:ce:78:ba:d7:29:a1:c4:f5:fa:68:a8:c3:
97:03:93:bf:16:f8:55:a3:26:91:5c:aa:e5:fc:08:20:71:50:
bd:ce:42:55:dc:93:f9:3c:18:42:cc:5d:42:2b:4e:65:5a:16:
31:70:21:de:70:4e:f0:44:07:2b:37:62:3d:39:30:a0:ef:d2:
ff:ac:8c:4a:16:3d:04:a8:e1:a5:e1:bc:59:d8:c5:cf:8d:bc:
cd:4c:50:39:ee:8f:47:a8:c5:88:f1:34:07:78:06:01:b4:36:
7a:a8:4c:b3:a6:1e:70:69:21:cb:c4:a1:46:d8:a6:e9:e0:4b:
46:c5:08:a8:be:e8:33:1c:00:f4:2a:f2:dd:78:db:b0:5c:10:
d6:af:85:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:42 2023 by rpki-client on console-fra.rpki-client.org