Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/v4pu9FqOpInLLjcsjJwrj5GwjSw.roa
File: v4pu9FqOpInLLjcsjJwrj5GwjSw.roa (raw, json)
Hash identifier: KrOVlC6E51lGsLGuoI+vOcJRT1CAQkxFxJCgh3zMoeM=
Subject key identifier: BF:8A:6E:F4:5A:8E:A4:89:CB:2E:37:2C:8C:9C:2B:8F:91:B0:8D:2C
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 0308A968
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/v4pu9FqOpInLLjcsjJwrj5GwjSw.roa
Signing time: Sat 01 Jan 2022 13:57:08 +0000
ROA not before: Sat 01 Jan 2022 13:57:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 83.147.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50899304 (0x308a968)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Jan 1 13:57:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf8a6ef45a8ea489cb2e372c8c9c2b8f91b08d2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:40:7d:c7:ff:19:b5:f8:b2:35:a1:4e:85:52:
f1:ac:6a:40:27:83:11:be:b0:f4:48:66:5e:54:50:
60:0f:e2:01:23:41:07:fb:9a:64:00:a2:68:6b:d8:
59:92:c2:ab:99:a8:c7:3e:0b:fe:cb:05:1b:f2:e4:
4f:c3:73:66:94:7e:15:a4:ea:73:85:72:b0:cf:2b:
db:4c:9e:70:20:af:af:b2:79:17:c5:8a:d7:e4:81:
8c:bc:29:61:9d:02:9d:19:b9:4d:a8:53:8f:3e:fb:
1c:72:d1:13:82:45:16:ba:21:0e:a9:b1:18:02:ab:
1d:aa:5b:f8:35:23:a1:78:72:ac:2b:22:dc:8b:7d:
15:ec:01:c0:40:c8:9b:3d:7f:3a:33:cb:8a:ac:ca:
2c:af:0d:54:00:d8:ec:a6:92:22:2f:b9:a1:37:fd:
7c:e3:aa:d8:63:f8:b6:bd:e6:80:5a:e2:06:d1:81:
29:b9:22:1d:ab:02:82:20:68:88:c7:cc:65:13:ab:
4d:6e:1b:20:fc:87:47:a4:bc:96:ea:84:6b:d4:b7:
70:cb:7a:c5:36:fe:20:09:f5:5a:44:8a:86:82:02:
2e:36:9d:8c:ea:28:e5:a2:79:34:c9:37:4f:a5:77:
94:9f:6e:61:14:0e:54:c9:25:20:1f:b9:3e:c8:db:
3a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:8A:6E:F4:5A:8E:A4:89:CB:2E:37:2C:8C:9C:2B:8F:91:B0:8D:2C
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/v4pu9FqOpInLLjcsjJwrj5GwjSw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.28.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:f6:9c:4d:b8:ed:ce:97:8f:a7:1c:9a:3a:cf:50:fd:5f:2e:
1d:77:f9:7a:de:5f:59:86:09:c7:8b:66:4b:b7:69:e7:25:4c:
6f:71:81:ed:25:be:07:01:8d:2d:cc:36:e3:c9:6b:a3:32:cd:
bb:59:13:e1:1c:b1:1f:ac:b3:b3:e6:26:a6:5c:53:35:99:60:
35:48:b7:b4:80:76:a7:54:4d:65:42:4f:9a:ce:87:c4:9b:5f:
4c:4f:0d:4d:c2:0f:13:43:7a:a6:2e:77:50:e9:89:c5:57:f6:
c0:98:07:d1:6b:21:2f:43:7f:f2:09:fc:b2:4d:fb:0c:1d:b5:
f8:80:4b:45:92:88:24:c5:bc:06:2b:bf:da:c7:87:d3:aa:9d:
ea:91:e2:7d:69:9c:d0:1c:93:b8:40:0c:34:13:0c:83:f0:88:
57:c1:5d:b1:69:af:c0:1c:c3:98:15:33:d2:8b:ec:ab:ef:4d:
e7:58:c6:a3:3d:39:85:0b:ae:62:e6:8c:f8:55:e0:f1:f7:02:
56:de:b7:99:87:b7:db:c8:e0:89:ba:c5:88:83:47:e5:8d:1e:
be:37:36:f1:85:8e:d9:2f:8b:95:e6:f6:a3:a3:79:99:82:b7:
59:f3:95:c2:22:44:44:52:15:29:2e:89:01:68:4c:36:b7:2b:
7e:0a:30:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:42 2023 by rpki-client on console-fra.rpki-client.org