Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/vBoZ6V-TlAXz712rLQ5sr8zghWM.roa
File: vBoZ6V-TlAXz712rLQ5sr8zghWM.roa (raw, json)
Hash identifier: AC1aD/qb4U0laFkkJykUvccnfqvgT8wFb8S8RCdcKQ0=
Subject key identifier: BC:1A:19:E9:5F:93:94:05:F3:EF:5D:AB:2D:0E:6C:AF:CC:E0:85:63
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 049DA74F
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/vBoZ6V-TlAXz712rLQ5sr8zghWM.roa
Signing time: Thu 02 Jun 2022 11:21:20 +0000
ROA not before: Thu 02 Jun 2022 11:21:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 83.147.56.0/22 maxlen: 24
83.147.0.0/22 maxlen: 24
83.147.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77440847 (0x49da74f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Jun 2 11:21:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc1a19e95f939405f3ef5dab2d0e6cafcce08563
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:8e:f3:a0:e8:60:5e:a3:f3:87:3a:ad:4e:06:
eb:da:92:82:f4:e3:24:f3:b7:be:c2:72:86:66:9a:
b7:43:3f:c1:fc:44:9d:91:22:a9:92:7e:7e:7b:ce:
6d:82:cc:6f:66:dd:01:7d:9d:1e:0b:81:97:a0:6f:
ab:7c:b0:2b:d8:53:7a:73:d9:b6:85:67:dd:a8:ad:
2b:ac:f0:07:9d:25:05:aa:44:65:67:1f:e0:96:7b:
80:95:af:64:0e:4a:2e:ce:2f:94:de:61:f3:dd:1c:
61:09:8e:09:5e:53:1d:6e:bb:cf:e8:22:1f:5f:dc:
e0:a6:2d:f0:d2:b9:17:3b:90:f6:b7:75:e0:09:07:
05:93:94:2d:b9:4d:16:f4:36:84:b2:5e:1d:7f:99:
22:7e:8b:ff:85:b4:67:51:16:16:01:3f:d1:72:85:
0d:e7:03:e3:4f:3a:3d:28:a6:25:3f:7c:b1:49:fb:
37:e0:4e:5b:48:eb:ec:01:c5:ca:54:90:d7:50:9d:
60:40:2e:91:4c:5f:a4:09:7c:4d:43:0e:13:e1:14:
3b:46:ee:c8:a3:9d:d8:af:3c:c2:64:c4:55:da:0e:
ec:c6:ce:12:a0:19:71:d5:13:6b:0d:80:ec:e0:35:
66:93:9e:41:9e:f3:22:95:3e:cc:89:75:dc:fd:36:
a5:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:1A:19:E9:5F:93:94:05:F3:EF:5D:AB:2D:0E:6C:AF:CC:E0:85:63
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/vBoZ6V-TlAXz712rLQ5sr8zghWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.0.0/22
83.147.32.0/22
83.147.56.0/22
Signature Algorithm: sha256WithRSAEncryption
af:1f:e7:de:cb:9d:49:2d:21:27:c1:e7:b3:a9:56:76:43:4f:
7f:d9:a0:2f:51:6d:ed:36:f9:08:42:37:c1:d9:91:f4:2d:84:
fa:31:22:33:4e:ca:ea:e3:ce:ec:60:e2:ee:69:1c:2b:14:72:
d5:63:a7:41:4a:85:80:b1:a5:4f:55:f5:5b:be:81:56:23:c7:
5e:fd:93:d1:0d:0c:1a:5c:d7:cc:f7:f9:aa:02:0b:3b:61:51:
c1:f8:aa:e3:ba:df:d7:62:8e:a2:a1:86:59:06:6e:ea:f3:4e:
90:31:9c:50:80:1a:04:d8:b6:68:f5:8c:b1:fd:da:62:66:c2:
f3:eb:f1:1e:73:fe:2d:71:34:3b:79:53:cc:9e:e5:96:de:72:
bb:af:5c:b1:49:b1:4b:d0:ae:6a:df:ab:1f:d4:56:df:4f:e6:
64:ad:ed:3f:d7:ee:4e:18:d7:b4:fe:43:2a:b6:b2:dd:dd:7d:
4c:0a:eb:54:e2:9c:dc:ce:9b:5c:e7:d7:4b:94:d2:64:c1:06:
93:08:cd:de:bc:f9:eb:91:d7:5a:c9:20:96:2b:c9:08:fa:37:
13:66:73:03:a2:c8:72:11:d1:0f:ee:d3:90:6c:c5:83:35:53:
c2:e2:0b:7b:f8:b4:24:4a:b9:2d:c5:9c:6c:f8:53:cf:18:ed:
e0:75:81:9e
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEBJ2nTzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MTkzZmZlOWRiMzc2MjZiMTNmODVkN2NjNDU3YWFkNWMxZjMwYzlmMB4XDTIyMDYw
MjExMjEyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmMxYTE5ZTk1Zjkz
OTQwNWYzZWY1ZGFiMmQwZTZjYWZjY2UwODU2MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJiO86DoYF6j84c6rU4G69qSgvTjJPO3vsJyhmaat0M/wfxE
nZEiqZJ+fnvObYLMb2bdAX2dHguBl6Bvq3ywK9hTenPZtoVn3aitK6zwB50lBapE
ZWcf4JZ7gJWvZA5KLs4vlN5h890cYQmOCV5THW67z+giH1/c4KYt8NK5FzuQ9rd1
4AkHBZOULblNFvQ2hLJeHX+ZIn6L/4W0Z1EWFgE/0XKFDecD4086PSimJT98sUn7
N+BOW0jr7AHFylSQ11CdYEAukUxfpAl8TUMOE+EUO0buyKOd2K88wmTEVdoO7MbO
EqAZcdUTaw2A7OA1ZpOeQZ7zIpU+zIl13P02pfUCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBS8GhnpX5OUBfPvXastDmyvzOCFYzAfBgNVHSMEGDAWgBSBk//p2zdiaxP4
XXzEV6rVwfMMnzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2daUF82ZHMzWW1zVC1GMTh4RmVxMWNIekRKOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTcvNzZiYzFlLWI2ZjQtNDA4YS1iYjg5LTA4ZDEyNzBjMmU3MS8x
L3ZCb1o2Vi1UbEFYejcxMnJMUTVzcjh6Z2hXTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTcv
NzZiYzFlLWI2ZjQtNDA4YS1iYjg5LTA4ZDEyNzBjMmU3MS8xL2daUF82ZHMzWW1z
VC1GMTh4RmVxMWNIekRKOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAlOTAAMEAlOTIAMEAlOTODANBgkq
hkiG9w0BAQsFAAOCAQEArx/n3sudSS0hJ8Hns6lWdkNPf9mgL1Ft7Tb5CEI3wdmR
9C2E+jEiM07K6uPO7GDi7mkcKxRy1WOnQUqFgLGlT1X1W76BViPHXv2T0Q0MGlzX
zPf5qgILO2FRwfiq47rf12KOoqGGWQZu6vNOkDGcUIAaBNi2aPWMsf3aYmbC8+vx
HnP+LXE0O3lTzJ7llt5yu69csUmxS9Cuat+rH9RW30/mZK3tP9fuThjXtP5DKray
3d19TArrVOKc3M6bXOfXS5TSZMEGkwjN3rz565HXWskglivJCPo3E2ZzA6LIchHR
D+7TkGzFgzVTwuILe/i0JEq5LcWcbPhTzxjt4HWBng==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:01 2024 by rpki-client on console-ams.rpki-client.org