Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/PCYAsNv_FYmHFu2CWSXhq83frn8.roa
File: PCYAsNv_FYmHFu2CWSXhq83frn8.roa (raw, json)
Hash identifier: dsaJIR1txq0FEc0Dj5w99hVAw0+OmD/qtcdEzL1Jod0=
Subject key identifier: 3C:26:00:B0:DB:FF:15:89:87:16:ED:82:59:25:E1:AB:CD:DF:AE:7F
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 07C91D80
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/PCYAsNv_FYmHFu2CWSXhq83frn8.roa
Signing time: Thu 03 Mar 2022 16:12:16 +0000
ROA not before: Thu 03 Mar 2022 16:12:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34450
IP address blocks: 5.181.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130620800 (0x7c91d80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Mar 3 16:12:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c2600b0dbff15898716ed825925e1abcddfae7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4b:9f:11:0b:0e:d8:1f:74:3e:bc:a0:c0:f2:
b9:00:5f:ec:dd:e3:c2:9e:3a:bd:69:b2:4f:ff:0c:
5d:3f:58:e8:fa:81:63:70:4d:1a:32:4b:14:96:c3:
1e:26:d8:5b:fa:57:97:63:83:12:fe:5c:63:52:f4:
94:79:88:86:82:d3:34:f3:f2:08:04:6c:49:a6:83:
6f:0c:1f:71:14:be:99:e3:10:9c:cd:7d:7e:6f:6d:
2c:c4:ac:aa:e3:94:ac:d4:1b:f5:6b:b2:13:bd:16:
a3:1e:a1:a0:97:f0:f9:23:4f:b7:c3:0b:3f:3f:00:
f2:b3:93:b3:b6:a4:e0:85:9c:3c:b3:a2:53:8d:86:
87:0e:8a:54:77:8d:2b:31:1f:56:7b:2c:1f:4c:50:
d6:ce:33:1e:7a:8e:d3:cb:70:cd:e0:5f:46:a7:70:
72:a1:50:66:38:23:22:8f:0a:a7:f4:e8:b8:2d:0b:
56:16:d6:06:3a:22:8e:8a:c0:d3:e6:d0:e3:50:9f:
f3:01:75:22:ae:aa:14:83:75:43:ab:84:e0:74:4d:
8a:0f:84:f2:c3:28:ca:e9:1b:05:1d:43:f8:55:f8:
ff:65:06:39:7f:be:8e:0f:f4:84:60:a7:79:71:2d:
51:98:25:73:3f:a3:34:44:9b:91:3c:27:24:d9:95:
0a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:26:00:B0:DB:FF:15:89:87:16:ED:82:59:25:E1:AB:CD:DF:AE:7F
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/PCYAsNv_FYmHFu2CWSXhq83frn8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.87.0/24
Signature Algorithm: sha256WithRSAEncryption
25:83:b2:a6:95:ed:76:72:d3:0a:d8:4c:ae:29:40:56:8e:96:
e7:8d:b5:c8:09:78:0e:89:ff:bb:5b:20:da:5e:ba:40:cd:9d:
f1:bc:9d:75:e4:25:bd:75:5c:3e:c9:cb:bd:de:49:04:ad:be:
c5:3b:0d:4f:30:9f:8d:46:3d:c0:8f:e0:f2:a4:d3:fa:a8:d6:
a8:f6:77:3f:e8:cb:73:8f:02:14:45:9f:9e:f1:e0:a8:e9:3c:
1d:b3:26:83:ff:26:4c:80:a4:9f:57:69:af:86:04:bb:2f:fc:
cc:bf:50:cb:f6:4a:db:d2:01:89:a1:a8:ce:56:54:80:50:65:
bd:68:bd:dd:1d:99:1f:3c:86:07:e6:2a:38:73:c4:f7:62:b9:
54:18:58:fe:2a:0a:6d:51:d5:c7:9a:57:ef:b2:05:d6:04:c8:
a5:3f:58:11:79:84:3a:dc:53:50:0d:69:ca:d8:c9:e3:64:fb:
22:b1:0a:e8:ae:04:3b:d2:81:01:cc:ba:36:89:be:00:46:e9:
00:ce:b8:f7:cb:6b:be:89:5c:56:c6:d9:31:5e:18:52:c5:5a:
4d:22:12:47:66:9d:8c:6e:8f:15:40:42:06:46:98:7f:79:c2:
4a:7b:a0:ac:5b:16:4e:ae:ba:cd:d9:b3:10:72:98:4b:9d:ff:
dc:c0:16:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:31 2024 by rpki-client on console-fra.rpki-client.org