Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/18e5a9-123f-48ad-91c5-f6007482fa93/1/PgTu6uZaoYZX-XNpUqnJ696G8LM.roa
File: PgTu6uZaoYZX-XNpUqnJ696G8LM.roa (raw, json)
Hash identifier: HZ8For+rfpYYqAfD3CYJPaD97arMbganF0coix71t/c=
Subject key identifier: 3E:04:EE:EA:E6:5A:A1:86:57:F9:73:69:52:A9:C9:EB:DE:86:F0:B3
Certificate issuer: /CN=14da869ba03374a192c8e3bdce950a90027adcaf
Certificate serial: 0532A8
Authority key identifier: 14:DA:86:9B:A0:33:74:A1:92:C8:E3:BD:CE:95:0A:90:02:7A:DC:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FNqGm6AzdKGSyOO9zpUKkAJ63K8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/18e5a9-123f-48ad-91c5-f6007482fa93/1/PgTu6uZaoYZX-XNpUqnJ696G8LM.roa
Signing time: Wed 16 Mar 2022 10:04:52 +0000
ROA not before: Wed 16 Mar 2022 10:04:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12903
IP address blocks: 193.218.113.0/24 maxlen: 24
194.29.208.0/21 maxlen: 24
91.188.192.0/22 maxlen: 24
217.68.208.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 340648 (0x532a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14da869ba03374a192c8e3bdce950a90027adcaf
Validity
Not Before: Mar 16 10:04:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e04eeeae65aa18657f9736952a9c9ebde86f0b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:ff:6c:ed:d8:35:f9:b8:e1:5a:4c:55:37:cb:
94:74:df:ee:28:7f:07:e1:11:1b:7e:f0:63:c2:ba:
5a:49:7c:28:c7:fe:10:ec:a4:43:d4:d0:6f:1e:1f:
a2:c9:c7:48:1e:60:09:be:38:4f:1f:e1:7f:87:eb:
8d:c9:5e:19:1b:c4:06:b5:86:21:5f:6c:66:3c:8c:
ca:d4:2f:17:74:bd:f4:6f:7c:19:83:61:a7:7c:5c:
3d:46:1d:c8:30:05:31:d9:78:3d:11:26:86:f9:df:
32:0c:60:d9:5e:73:a8:40:5e:01:0d:60:fd:e6:0e:
47:4c:51:70:77:06:47:6d:b7:9e:62:44:2c:2c:b5:
07:77:33:cd:c3:eb:f6:95:8e:67:e2:33:04:eb:69:
b8:f1:45:22:eb:dc:cf:9b:0a:21:3b:07:68:1b:82:
e6:62:44:cd:d9:ea:13:d9:5f:60:85:e7:9f:5c:86:
cb:6a:12:92:6b:4e:fe:13:a0:63:d5:fb:ad:85:7e:
15:e9:36:3f:a1:44:b5:42:bc:55:96:56:7d:79:d0:
a1:55:33:20:7c:2d:0f:77:45:63:f8:c5:25:11:10:
8f:cc:9f:3d:0e:97:82:84:2e:80:a9:c1:83:0c:74:
20:db:9e:0f:82:26:01:0b:30:1f:7b:0c:da:33:84:
b8:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:04:EE:EA:E6:5A:A1:86:57:F9:73:69:52:A9:C9:EB:DE:86:F0:B3
X509v3 Authority Key Identifier:
keyid:14:DA:86:9B:A0:33:74:A1:92:C8:E3:BD:CE:95:0A:90:02:7A:DC:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FNqGm6AzdKGSyOO9zpUKkAJ63K8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/18e5a9-123f-48ad-91c5-f6007482fa93/1/PgTu6uZaoYZX-XNpUqnJ696G8LM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/18e5a9-123f-48ad-91c5-f6007482fa93/1/FNqGm6AzdKGSyOO9zpUKkAJ63K8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.188.192.0/22
193.218.113.0/24
194.29.208.0/21
217.68.208.0/20
Signature Algorithm: sha256WithRSAEncryption
28:b4:6e:14:4a:e8:44:aa:2c:95:dc:23:6e:b7:30:ab:1f:a7:
1e:08:f3:10:3e:a6:a7:18:f8:5a:6f:d9:0c:f4:c9:a4:25:d5:
67:02:de:37:3e:b6:49:27:8d:b4:b0:7b:81:64:f3:ca:25:d4:
da:1b:9d:41:75:3b:db:79:91:fb:b4:71:73:b1:bb:d9:bc:3b:
72:b9:20:84:fc:fc:e7:99:14:88:91:ca:5a:57:55:5e:1c:54:
21:e0:f8:cb:f5:93:98:01:c4:d4:0c:f4:15:e0:22:e8:08:ff:
eb:35:5c:36:16:d3:1d:02:4c:65:6d:a9:1d:18:f9:87:ce:64:
2b:96:d8:08:fa:d6:74:b9:82:7d:a0:19:ae:91:7b:42:91:9c:
be:5a:5f:33:8e:14:33:62:0b:5b:5f:82:99:48:b9:b2:f1:2b:
ab:e5:c7:08:75:ae:ba:82:8f:d2:3e:8f:17:c7:3e:e3:03:c8:
61:4e:ce:b6:0a:22:c1:0b:9b:86:f3:64:31:e7:2f:eb:e5:d6:
93:07:12:b7:5a:e9:d2:58:cd:2e:7f:c9:7d:5b:ff:00:97:a0:
a1:5b:30:bf:f7:75:40:86:bb:f0:5e:3f:63:f6:ab:7c:87:33:
9c:45:b2:e7:77:9b:1b:db:60:ee:30:a5:61:22:61:bb:09:31:
ac:09:18:a7
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIDBTKoMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDE0
ZGE4NjliYTAzMzc0YTE5MmM4ZTNiZGNlOTUwYTkwMDI3YWRjYWYwHhcNMjIwMzE2
MTAwNDUyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygzZTA0ZWVlYWU2NWFh
MTg2NTdmOTczNjk1MmE5YzllYmRlODZmMGIzMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA6/9s7dg1+bjhWkxVN8uUdN/uKH8H4REbfvBjwrpaSXwox/4Q
7KRD1NBvHh+iycdIHmAJvjhPH+F/h+uNyV4ZG8QGtYYhX2xmPIzK1C8XdL30b3wZ
g2GnfFw9Rh3IMAUx2Xg9ESaG+d8yDGDZXnOoQF4BDWD95g5HTFFwdwZHbbeeYkQs
LLUHdzPNw+v2lY5n4jME62m48UUi69zPmwohOwdoG4LmYkTN2eoT2V9gheefXIbL
ahKSa07+E6Bj1futhX4V6TY/oUS1QrxVllZ9edChVTMgfC0Pd0Vj+MUlERCPzJ89
DpeChC6AqcGDDHQg254PgiYBCzAfewzaM4S4PwIDAQABo4ICGzCCAhcwHQYDVR0O
BBYEFD4E7urmWqGGV/lzaVKpyevehvCzMB8GA1UdIwQYMBaAFBTahpugM3Shksjj
vc6VCpACetyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
Rk5xR202QXpkS0dTeU9POXpwVUtrQUo2M0s4LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8xOC8xOGU1YTktMTIzZi00OGFkLTkxYzUtZjYwMDc0ODJmYTkzLzEv
UGdUdTZ1WmFvWVpYLVhOcFVxbko2OTZHOExNLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC8x
OGU1YTktMTIzZi00OGFkLTkxYzUtZjYwMDc0ODJmYTkzLzEvRk5xR202QXpkS0dT
eU9POXpwVUtrQUo2M0s4LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDEG
CCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQCW7zAAwQAwdpxAwQDwh3QAwQE2UTQ
MA0GCSqGSIb3DQEBCwUAA4IBAQAotG4USuhEqiyV3CNutzCrH6ceCPMQPqanGPha
b9kM9MmkJdVnAt43PrZJJ420sHuBZPPKJdTaG51BdTvbeZH7tHFzsbvZvDtyuSCE
/PznmRSIkcpaV1VeHFQh4PjL9ZOYAcTUDPQV4CLoCP/rNVw2FtMdAkxlbakdGPmH
zmQrltgI+tZ0uYJ9oBmukXtCkZy+Wl8zjhQzYgtbX4KZSLmy8Sur5ccIda66go/S
Po8Xxz7jA8hhTs62CiLBC5uG82Qx5y/r5daTBxK3WunSWM0uf8l9W/8Al6ChWzC/
93VAhrvwXj9j9qt8hzOcRbLnd5sb22DuMKVhImG7CTGsCRin
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:51 2024 by rpki-client on console-fra.rpki-client.org