Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/pv89mV6ZsyOP7Vcps1z8j3RJI6M.roa
File: pv89mV6ZsyOP7Vcps1z8j3RJI6M.roa (raw, json)
Hash identifier: f4dQdvP91d6efj2ttXoiiqXB/MctzZzchIdD7QtNyY0=
Subject key identifier: A6:FF:3D:99:5E:99:B3:23:8F:ED:57:29:B3:5C:FC:8F:74:49:23:A3
Certificate issuer: /CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Certificate serial: 03A577F6
Authority key identifier: 29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/pv89mV6ZsyOP7Vcps1z8j3RJI6M.roa
Signing time: Mon 21 Feb 2022 09:47:39 +0000
ROA not before: Mon 21 Feb 2022 09:47:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31138
IP address blocks: 83.217.0.0/22 maxlen: 22
2a00:d8c0::/48 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61175798 (0x3a577f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Validity
Not Before: Feb 21 09:47:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a6ff3d995e99b3238fed5729b35cfc8f744923a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:23:a5:ae:1d:d0:05:d2:9e:9f:77:af:3e:c6:
d4:65:a3:64:df:92:dd:e1:f5:34:75:99:25:46:85:
5a:e1:17:f4:b3:00:78:0d:d5:54:3e:47:ba:38:e0:
89:0c:59:fc:4e:ec:70:58:cd:a4:20:df:a5:1a:2d:
68:d5:52:7a:60:42:ec:25:a1:83:d4:93:8b:20:65:
b3:48:75:55:1c:fa:3f:0a:b0:4e:e0:4e:5c:17:9f:
65:be:a7:5e:b1:98:79:dd:2b:7f:10:4e:f8:fa:ac:
1b:fc:8f:8f:ea:48:ba:87:c1:0d:fa:e7:fb:82:dd:
66:33:ec:d2:fa:c8:eb:d6:45:18:cb:79:0c:a6:d7:
b8:48:02:3a:dc:2d:0e:da:fb:86:39:a9:31:3b:39:
c7:6a:ce:fe:2c:8f:7d:a2:47:a5:de:ba:5b:ab:3f:
e3:83:fa:af:96:25:a8:7a:d4:68:f8:a4:d9:24:7d:
61:74:ca:0b:85:2b:92:4a:9b:08:79:bf:96:1b:53:
d6:e1:55:44:c2:52:3f:b1:ef:a4:af:e1:05:1b:9d:
c8:89:f3:07:81:d4:74:ed:c6:73:00:5e:b0:62:cb:
dc:7c:fe:96:96:89:ed:bd:72:f1:09:61:76:5b:02:
c0:4c:45:ea:de:2f:c8:54:bf:6b:dc:fe:d6:d4:c0:
98:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:FF:3D:99:5E:99:B3:23:8F:ED:57:29:B3:5C:FC:8F:74:49:23:A3
X509v3 Authority Key Identifier:
keyid:29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/pv89mV6ZsyOP7Vcps1z8j3RJI6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/KUC2lLuglTROS9uZ9R4fECO-V84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.217.0.0/22
IPv6:
2a00:d8c0::/48
Signature Algorithm: sha256WithRSAEncryption
94:64:59:ef:07:27:c6:09:b5:0e:89:08:f2:56:95:5d:61:2f:
60:50:7e:86:bc:1e:35:45:2e:65:d1:56:ee:b6:1e:b0:e2:76:
68:e6:8d:de:83:f5:f9:83:ca:c9:4b:e3:0f:57:1c:2f:a9:fe:
3d:2e:80:ee:ad:1a:c8:5a:c7:dd:9c:ae:14:83:71:5d:75:b7:
fc:9c:74:1e:37:c1:58:f5:01:15:46:70:34:fc:fa:87:aa:8b:
a9:fa:9b:c5:6f:b2:20:f1:97:4c:19:11:e4:d5:46:81:d3:2c:
bd:bf:39:4d:2a:a1:28:c1:42:d8:0f:c3:6a:ac:5d:f9:25:fa:
c3:e3:37:ae:45:55:e1:d8:c4:16:af:41:dc:d8:21:94:a7:0a:
69:0d:da:52:7a:ea:01:94:10:d4:7d:ba:bc:24:f7:c2:07:92:
96:e4:00:c4:bb:72:57:43:f1:f2:5f:38:07:3b:61:6a:52:0a:
80:d5:dc:79:ac:93:66:ae:b8:3a:d9:93:9d:2c:34:ca:28:0d:
68:eb:a8:8f:1a:da:f8:22:14:d6:a6:3e:58:82:16:06:76:2d:
56:b6:01:86:d1:1f:83:22:d3:b5:39:3b:68:e2:87:75:60:01:
74:98:01:c7:20:22:bf:3d:cc:aa:64:18:31:9d:29:be:e9:0f:
4d:04:bc:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:00 2023 by rpki-client on console-ams.rpki-client.org