Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/e64398-9601-4b7c-b783-079ba0570f75/1/PEnkiCxctwjBaKcHOlfKv2Ac2OA.roa
File: PEnkiCxctwjBaKcHOlfKv2Ac2OA.roa (raw, json)
Hash identifier: 8Gtqa7aR29wrNiJ1aAk3rJuoyTq3Gj300ytXLLhJnx0=
Subject key identifier: 3C:49:E4:88:2C:5C:B7:08:C1:68:A7:07:3A:57:CA:BF:60:1C:D8:E0
Certificate issuer: /CN=a29d9751f3675f51332734da68ea960260045b12
Certificate serial: 018335EFC6D5A6D2E7DC58E10C1FA31A9025
Authority key identifier: A2:9D:97:51:F3:67:5F:51:33:27:34:DA:68:EA:96:02:60:04:5B:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/op2XUfNnX1EzJzTaaOqWAmAEWxI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/e64398-9601-4b7c-b783-079ba0570f75/1/PEnkiCxctwjBaKcHOlfKv2Ac2OA.roa
Signing time: Tue 13 Sep 2022 08:20:49 +0000
ROA not before: Tue 13 Sep 2022 08:20:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 996
IP address blocks: 93.185.152.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:35:ef:c6:d5:a6:d2:e7:dc:58:e1:0c:1f:a3:1a:90:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a29d9751f3675f51332734da68ea960260045b12
Validity
Not Before: Sep 13 08:20:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c49e4882c5cb708c168a7073a57cabf601cd8e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:ff:7f:40:ff:49:2c:1a:e6:52:f2:32:42:7d:
da:1f:bd:2a:ce:04:17:69:15:39:e0:59:ab:37:5c:
6e:73:dd:09:b7:cb:67:0b:9f:3f:e7:33:5c:9a:1f:
c5:ab:12:ca:49:cf:20:c6:61:3c:97:3e:55:ee:64:
f8:07:37:84:35:00:5a:90:3c:0e:84:3d:12:d3:ca:
23:29:8b:d3:5d:51:6f:7c:bc:dd:6f:77:55:ac:f6:
61:dd:41:60:0e:25:e1:c3:08:67:aa:a4:cc:63:5e:
03:ab:18:70:d7:35:dc:92:e1:d7:cb:b7:39:8e:40:
e0:0e:11:39:02:cd:26:74:eb:c1:5e:91:40:88:e7:
64:fd:93:d5:5f:4d:a8:d0:e5:d1:e3:42:92:b5:f6:
68:1a:ba:b4:e9:88:d2:16:ab:e9:21:29:09:04:04:
80:43:67:5c:87:65:24:52:ee:c0:72:66:53:07:2f:
06:29:c1:d5:c0:3e:62:74:f7:5c:71:37:31:ca:d2:
42:b6:73:90:00:13:52:92:50:82:35:e1:ed:ee:ea:
2e:2b:f2:7b:74:a5:0b:7b:32:ce:c2:52:d3:40:38:
54:2d:c1:66:23:0e:23:4d:c4:50:0d:0f:83:4b:a4:
b0:fd:f9:c6:1b:02:d8:ca:d2:60:b9:68:84:b3:65:
56:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:49:E4:88:2C:5C:B7:08:C1:68:A7:07:3A:57:CA:BF:60:1C:D8:E0
X509v3 Authority Key Identifier:
keyid:A2:9D:97:51:F3:67:5F:51:33:27:34:DA:68:EA:96:02:60:04:5B:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/op2XUfNnX1EzJzTaaOqWAmAEWxI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/e64398-9601-4b7c-b783-079ba0570f75/1/PEnkiCxctwjBaKcHOlfKv2Ac2OA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/e64398-9601-4b7c-b783-079ba0570f75/1/op2XUfNnX1EzJzTaaOqWAmAEWxI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.185.152.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:5b:98:8e:a8:4b:d5:c3:dc:81:f4:2c:09:55:9d:17:f3:a8:
fc:14:6b:08:a5:cf:e3:12:8b:cf:be:72:5b:22:f2:d9:d9:89:
d8:bf:2d:e0:46:4e:7d:01:12:ee:b5:70:bb:8f:8b:f1:00:07:
7c:5d:ec:4b:c0:d8:04:8e:81:6d:8c:1c:13:c0:92:60:91:93:
db:75:33:f8:f5:51:98:fb:8a:90:5d:74:06:cd:fe:d2:d7:36:
34:0a:02:2f:ea:72:2c:13:81:dc:89:24:3c:1b:db:a2:ff:c7:
58:a2:87:d5:f9:11:82:04:c5:9f:f3:3f:b8:ab:15:55:0a:e0:
5c:09:69:58:f8:d8:7a:1a:92:4e:2f:63:fd:71:d2:72:4f:73:
8f:41:d6:e4:5f:e3:93:35:e5:cf:09:8e:69:79:d9:fe:0b:3b:
27:d3:fe:cc:f1:5e:1e:a3:d7:27:7e:23:df:e8:11:15:cc:ba:
07:44:71:be:b9:f5:6f:40:c8:e5:d7:68:81:98:55:76:44:1d:
e9:e2:22:13:96:9f:4f:59:7b:27:84:da:ce:97:ff:4c:ce:1e:
b6:e9:5a:5b:87:70:8e:f9:2f:38:b4:cc:ee:22:fc:1b:bd:bf:
29:1f:42:1f:e6:04:d3:24:3f:14:a9:d9:a4:03:0a:f1:e9:37:
1b:7f:75:92
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYM178bVptLn3FjhDB+jGpAlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyOWQ5NzUxZjM2NzVmNTEzMzI3MzRkYTY4ZWE5NjAyNjAw
NDViMTIwHhcNMjIwOTEzMDgyMDQ5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYzQ5ZTQ4ODJjNWNiNzA4YzE2OGE3MDczYTU3Y2FiZjYwMWNkOGUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh/9/QP9JLBrmUvIyQn3aH70qzgQX
aRU54FmrN1xuc90Jt8tnC58/5zNcmh/FqxLKSc8gxmE8lz5V7mT4BzeENQBakDwO
hD0S08ojKYvTXVFvfLzdb3dVrPZh3UFgDiXhwwhnqqTMY14Dqxhw1zXckuHXy7c5
jkDgDhE5As0mdOvBXpFAiOdk/ZPVX02o0OXR40KStfZoGrq06YjSFqvpISkJBASA
Q2dch2UkUu7AcmZTBy8GKcHVwD5idPdccTcxytJCtnOQABNSklCCNeHt7uouK/J7
dKULezLOwlLTQDhULcFmIw4jTcRQDQ+DS6Sw/fnGGwLYytJguWiEs2VWYQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDxJ5IgsXLcIwWinBzpXyr9gHNjgMB8GA1UdIwQY
MBaAFKKdl1HzZ19RMyc02mjqlgJgBFsSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb3AyWFVmTm5YMUV6SnpUYWFPcVdBbUFFV3hJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi9lNjQzOTgtOTYwMS00YjdjLWI3ODMt
MDc5YmEwNTcwZjc1LzEvUEVua2lDeGN0d2pCYUtjSE9sZkt2MkFjMk9BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Zi9lNjQzOTgtOTYwMS00YjdjLWI3ODMtMDc5YmEwNTcwZjc1
LzEvb3AyWFVmTm5YMUV6SnpUYWFPcVdBbUFFV3hJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCXbmYMA0G
CSqGSIb3DQEBCwUAA4IBAQAfW5iOqEvVw9yB9CwJVZ0X86j8FGsIpc/jEovPvnJb
IvLZ2YnYvy3gRk59ARLutXC7j4vxAAd8XexLwNgEjoFtjBwTwJJgkZPbdTP49VGY
+4qQXXQGzf7S1zY0CgIv6nIsE4HciSQ8G9ui/8dYoofV+RGCBMWf8z+4qxVVCuBc
CWlY+Nh6GpJOL2P9cdJyT3OPQdbkX+OTNeXPCY5pedn+Czsn0/7M8V4eo9cnfiPf
6BEVzLoHRHG+ufVvQMjl12iBmFV2RB3p4iITlp9PWXsnhNrOl/9Mzh626Vpbh3CO
+S84tMzuIvwbvb8pH0If5gTTJD8UqdmkAwrx6Tcbf3WS
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:05 2024 by rpki-client on console-fra.rpki-client.org