Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/8944f4-f342-4254-b5a7-9d7e5af4dfc5/1/PJdRPolNHfeyEOoMstD1oA-kchQ.roa
File: PJdRPolNHfeyEOoMstD1oA-kchQ.roa (raw, json)
Hash identifier: LnqT7U6P3CvXElM8rcrtERumnyIQDzsXfIT69OBHplc=
Subject key identifier: 3C:97:51:3E:89:4D:1D:F7:B2:10:EA:0C:B2:D0:F5:A0:0F:A4:72:14
Certificate issuer: /CN=9bbc03f6c5a284fa00dbb5aa609c515b7c589969
Certificate serial: 045ACE
Authority key identifier: 9B:BC:03:F6:C5:A2:84:FA:00:DB:B5:AA:60:9C:51:5B:7C:58:99:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m7wD9sWihPoA27WqYJxRW3xYmWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/8944f4-f342-4254-b5a7-9d7e5af4dfc5/1/PJdRPolNHfeyEOoMstD1oA-kchQ.roa
Signing time: Sat 15 Jan 2022 15:50:46 +0000
ROA not before: Sat 15 Jan 2022 15:50:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.122.214.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 285390 (0x45ace)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bbc03f6c5a284fa00dbb5aa609c515b7c589969
Validity
Not Before: Jan 15 15:50:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c97513e894d1df7b210ea0cb2d0f5a00fa47214
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:68:9f:8b:52:75:4f:85:8f:2e:58:74:40:05:
14:df:f7:b6:7d:03:70:7f:05:8a:9e:ac:fe:d4:ac:
44:55:c6:dc:e8:68:db:84:f5:e1:c9:91:ec:3f:26:
07:1a:27:01:0e:8f:52:bb:c9:a0:6a:a8:eb:39:3b:
71:69:9f:ab:dd:eb:72:d3:f2:1d:ae:d8:fb:55:1b:
d6:6e:29:9e:2f:b0:60:4b:8f:87:54:4f:74:93:0a:
66:6f:11:1a:87:f3:19:d1:41:d3:4c:91:e6:53:b6:
35:4f:8d:c7:6e:f2:e7:8e:22:9b:b6:7c:b5:0b:ae:
52:be:84:3c:60:3d:24:af:a8:fc:81:bc:13:f9:ac:
04:cd:20:07:48:b4:1a:0f:3b:2d:0b:34:c2:fe:d5:
90:79:12:b8:ba:5b:96:e3:c3:74:77:c4:9f:9a:bc:
f1:41:1d:3b:11:e5:96:6f:8c:07:ae:14:c2:d7:18:
f1:57:6f:7b:70:d1:43:c3:6a:ac:72:a4:8f:d1:63:
2c:78:ba:fa:ee:6e:b5:f3:4e:f5:13:85:e1:70:72:
6c:ea:25:e1:c8:5d:cf:9e:1f:b8:3e:a7:7a:f1:9d:
04:62:b6:6f:9d:d5:f9:5d:9b:b9:cb:a0:f3:67:69:
cc:a9:76:7f:ad:35:b3:76:0d:d7:c1:ed:66:e9:da:
a5:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:97:51:3E:89:4D:1D:F7:B2:10:EA:0C:B2:D0:F5:A0:0F:A4:72:14
X509v3 Authority Key Identifier:
keyid:9B:BC:03:F6:C5:A2:84:FA:00:DB:B5:AA:60:9C:51:5B:7C:58:99:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m7wD9sWihPoA27WqYJxRW3xYmWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/8944f4-f342-4254-b5a7-9d7e5af4dfc5/1/PJdRPolNHfeyEOoMstD1oA-kchQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/8944f4-f342-4254-b5a7-9d7e5af4dfc5/1/m7wD9sWihPoA27WqYJxRW3xYmWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.122.214.0/24
Signature Algorithm: sha256WithRSAEncryption
10:a9:90:cd:e6:e9:1d:e4:5b:90:ee:8e:5a:f8:4c:4e:e9:1d:
ef:ba:0d:99:ac:74:53:5c:d6:4e:11:5f:73:b9:6a:30:bf:71:
92:6e:f1:91:2c:e3:92:f2:55:98:7b:50:08:d3:7c:24:8a:16:
34:2e:ad:8f:51:8c:43:86:d3:65:23:40:48:68:dc:fb:98:26:
7b:9d:61:6b:1e:c3:4b:47:aa:18:1b:8e:b4:d0:ce:a7:33:a6:
fb:68:c1:72:d3:7a:52:96:c4:1c:33:0d:22:17:c1:4e:a6:e3:
4f:2f:ff:ef:17:c3:cc:33:d0:42:7c:ff:49:66:c4:92:7c:fd:
d0:a3:d6:f6:71:8d:c1:2f:d2:88:3f:82:8c:de:7f:54:ec:48:
46:ce:d3:d8:73:ab:c8:16:6d:48:55:73:36:cf:42:67:4e:4c:
77:20:4b:fb:97:07:a2:3c:98:ac:ad:6c:9c:d6:b9:dd:34:9f:
5c:9f:41:87:ac:5d:10:4e:90:eb:38:0f:55:35:60:37:90:8e:
aa:fe:2a:f7:37:27:69:0f:a0:88:f6:f7:62:22:a4:f7:34:ed:
ac:c4:08:a3:21:cf:1a:0d:34:74:be:6e:24:99:fd:9a:a2:18:
dd:2d:c0:f7:41:c3:09:65:8c:8b:ab:0c:3d:f2:65:73:55:e9:
34:ab:8e:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:21 2024 by rpki-client on console-ams.rpki-client.org