Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/192c67-9353-49c3-8a2f-365e13da62ea/1/PanAymrCxiWE1CZ8pJjFSUUqJdY.roa
File: PanAymrCxiWE1CZ8pJjFSUUqJdY.roa (raw, json)
Hash identifier: lQdLBInRa9F3x30NXlaVCbdCdAq86EU6l4bK/IMnwRA=
Subject key identifier: 3D:A9:C0:CA:6A:C2:C6:25:84:D4:26:7C:A4:98:C5:49:45:2A:25:D6
Certificate issuer: /CN=941f20add212c0e0e68e3f1ae8ea2a79649f4f4c
Certificate serial: 102DABD3
Authority key identifier: 94:1F:20:AD:D2:12:C0:E0:E6:8E:3F:1A:E8:EA:2A:79:64:9F:4F:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lB8grdISwODmjj8a6OoqeWSfT0w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/192c67-9353-49c3-8a2f-365e13da62ea/1/PanAymrCxiWE1CZ8pJjFSUUqJdY.roa
Signing time: Sat 01 Jan 2022 04:03:44 +0000
ROA not before: Sat 01 Jan 2022 04:03:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1930
IP address blocks: 192.67.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 271428563 (0x102dabd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=941f20add212c0e0e68e3f1ae8ea2a79649f4f4c
Validity
Not Before: Jan 1 04:03:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3da9c0ca6ac2c62584d4267ca498c549452a25d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e2:21:3f:92:11:e4:43:61:18:41:5b:03:b9:
4a:4d:54:42:47:a8:bb:56:91:c9:76:99:e3:05:23:
93:b1:ca:84:22:c8:ad:e6:e8:40:29:bb:76:f5:a8:
6b:7f:29:35:fb:48:20:3c:8b:80:07:0c:37:3c:38:
6f:12:f2:d4:64:3c:8e:9f:aa:93:ee:62:2a:82:28:
9d:9c:c9:fa:66:7c:20:12:b1:42:0d:3f:e0:4a:e3:
53:e8:62:39:ed:9e:50:27:f3:10:6b:0c:1a:a4:2f:
b3:e6:6d:be:48:0c:dd:21:a6:18:05:e7:7b:e3:e8:
2f:15:2c:6d:76:ef:aa:e6:ed:0c:90:86:5a:6a:69:
81:e3:68:f0:68:bf:5d:0a:78:20:76:5b:72:5c:64:
0c:46:0d:53:9c:88:3a:94:a7:60:7d:11:a7:e2:1c:
e1:15:ce:34:4f:97:29:f8:04:c7:37:b0:ae:3f:97:
cf:bb:44:ad:a0:4f:f8:18:e0:b9:21:6f:2e:82:a6:
cc:33:a7:f0:70:84:e6:09:4e:50:f9:4a:8e:d9:75:
02:a0:f4:4c:a9:9a:30:6d:46:ea:62:2d:1f:23:bd:
00:81:3b:e5:64:21:c5:a3:97:09:f7:9c:87:96:45:
01:88:15:b4:b7:40:7c:0c:cb:4a:fc:b4:28:be:69:
29:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:A9:C0:CA:6A:C2:C6:25:84:D4:26:7C:A4:98:C5:49:45:2A:25:D6
X509v3 Authority Key Identifier:
keyid:94:1F:20:AD:D2:12:C0:E0:E6:8E:3F:1A:E8:EA:2A:79:64:9F:4F:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lB8grdISwODmjj8a6OoqeWSfT0w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/192c67-9353-49c3-8a2f-365e13da62ea/1/PanAymrCxiWE1CZ8pJjFSUUqJdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/192c67-9353-49c3-8a2f-365e13da62ea/1/lB8grdISwODmjj8a6OoqeWSfT0w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.67.76.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:94:3d:14:58:83:18:b8:13:e2:f6:5b:43:ce:ac:3d:5b:9c:
58:d4:1c:eb:ef:c8:02:08:72:66:27:ce:5a:4a:75:49:59:6b:
56:a6:a3:52:25:b0:86:21:4a:b5:d9:71:f1:bd:2f:ed:cf:85:
9f:03:81:6f:6f:82:58:76:e9:de:ff:ed:5c:bd:0a:51:5b:19:
53:68:35:5d:08:7f:18:f1:12:65:2a:2c:1c:3e:7a:c3:d5:bf:
06:99:d7:55:7d:40:f4:f7:89:95:da:8a:4e:39:75:24:f4:9f:
8d:73:8d:63:6c:14:f1:31:a4:6c:71:7b:83:3f:b4:22:b9:d9:
5d:a3:50:11:34:d3:7f:4b:51:27:9f:ab:76:0d:6b:00:dd:5b:
84:b7:72:4c:61:07:a5:f4:b2:53:10:b7:ad:3a:fe:ad:6a:cd:
e4:7e:a4:00:7b:1c:6f:0c:b3:1f:20:27:92:b3:13:71:59:60:
e1:6e:4b:7e:da:36:04:08:58:8f:80:e5:35:b5:8e:92:75:70:
00:78:7c:af:e2:2a:30:cf:c2:77:75:e5:fe:89:44:f3:5d:8f:
6b:39:f8:f8:a8:22:af:a9:b4:db:4a:93:7d:60:b9:61:4d:95:
39:ab:9e:a5:9f:86:d3:1d:ca:00:9a:e3:df:74:18:5b:19:5f:
3f:df:a8:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:37 2024 by rpki-client on console-fra.rpki-client.org