Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/ab62e7-7367-4bde-934a-b42522d05895/1/PjgmAFXt6QgR_3LcaqfYplhltiU.roa
File: PjgmAFXt6QgR_3LcaqfYplhltiU.roa (raw, json)
Hash identifier: 9wVTcSBndSQL1vjDTlTnja6YhJUMFm/FgGk1clVQxyw=
Subject key identifier: 3E:38:26:00:55:ED:E9:08:11:FF:72:DC:6A:A7:D8:A6:58:65:B6:25
Certificate issuer: /CN=24350aa8a94af666099fd073ec621cd15d04b316
Certificate serial: 2893C54C
Authority key identifier: 24:35:0A:A8:A9:4A:F6:66:09:9F:D0:73:EC:62:1C:D1:5D:04:B3:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JDUKqKlK9mYJn9Bz7GIc0V0EsxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/ab62e7-7367-4bde-934a-b42522d05895/1/PjgmAFXt6QgR_3LcaqfYplhltiU.roa
Signing time: Sat 01 Jan 2022 02:01:34 +0000
ROA not before: Sat 01 Jan 2022 02:01:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8307
IP address blocks: 195.250.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 680772940 (0x2893c54c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24350aa8a94af666099fd073ec621cd15d04b316
Validity
Not Before: Jan 1 02:01:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e38260055ede90811ff72dc6aa7d8a65865b625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:da:9b:de:19:97:16:48:a7:10:d4:96:79:71:
4c:a4:62:c5:95:eb:80:a3:7e:f0:de:5b:3e:3a:62:
ee:a7:60:6b:47:0e:aa:e4:65:cb:b4:af:a7:8d:76:
a1:e2:0b:4e:5a:4c:b3:be:b9:33:58:6f:ef:58:95:
81:29:ca:4c:9e:45:51:85:d3:3b:44:71:6e:6a:a9:
de:fa:ea:35:3d:fb:1b:94:79:5d:01:1b:e2:82:0b:
63:15:fa:bb:f7:65:d2:d2:ee:1f:84:1b:ca:b2:ba:
87:0a:de:f5:7a:76:50:43:bb:8c:25:dc:5f:71:47:
2b:94:7b:95:bb:dc:3d:73:36:7f:73:94:95:3c:3e:
93:22:46:25:68:26:89:7a:74:a9:03:21:88:77:0d:
da:c4:9b:fe:56:45:fa:2e:c7:ac:1f:b7:7b:7b:8b:
96:e9:c0:52:3b:3e:fc:4a:6b:b5:75:f2:39:62:64:
3f:14:1d:df:79:0c:c6:71:ce:ac:a7:a1:a3:c2:61:
75:e2:3d:f4:f6:4e:e9:37:cf:a8:e9:34:97:9f:57:
95:ba:94:a8:9d:6a:c6:55:37:c4:ab:22:3d:32:09:
28:3c:74:9c:d2:e4:e0:15:25:fc:5e:70:8b:95:e8:
ce:5b:1f:38:58:3f:c5:fd:ce:c5:b1:47:8b:92:f4:
c5:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:38:26:00:55:ED:E9:08:11:FF:72:DC:6A:A7:D8:A6:58:65:B6:25
X509v3 Authority Key Identifier:
keyid:24:35:0A:A8:A9:4A:F6:66:09:9F:D0:73:EC:62:1C:D1:5D:04:B3:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JDUKqKlK9mYJn9Bz7GIc0V0EsxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/ab62e7-7367-4bde-934a-b42522d05895/1/PjgmAFXt6QgR_3LcaqfYplhltiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/ab62e7-7367-4bde-934a-b42522d05895/1/JDUKqKlK9mYJn9Bz7GIc0V0EsxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.250.192.0/24
Signature Algorithm: sha256WithRSAEncryption
36:e1:15:bf:d4:d6:38:69:4a:f5:b9:ac:da:86:0d:51:e6:5d:
22:3b:b8:e6:f5:88:cf:b6:c9:2d:42:b5:b4:d8:0f:71:8d:c3:
a2:fa:72:cb:07:6d:1c:e0:43:37:63:6a:18:07:5d:40:72:8a:
46:6d:00:30:b6:64:d1:c2:ea:fd:79:f4:56:2f:7a:82:bd:fd:
c5:34:ef:e7:a6:6f:da:e7:fe:57:25:95:8a:18:ab:95:43:31:
3b:7d:5e:4b:65:d1:46:3a:f1:68:35:3c:6c:8b:18:47:9d:e6:
d5:2c:7d:ce:d8:a0:f4:90:41:3d:71:fd:ce:0c:f3:25:82:7a:
56:a2:0e:11:a4:44:c5:0f:90:3c:97:51:63:39:bc:5f:1a:0e:
e2:ea:e7:ce:eb:9e:67:b6:3f:52:41:8a:37:6f:82:d7:c8:6d:
4b:0b:3d:d4:94:14:4c:99:0a:0b:59:49:85:04:3b:86:5a:89:
af:26:f4:42:6f:97:80:ae:9d:1d:09:78:26:2e:9f:b8:35:80:
a9:3a:cb:e8:5f:01:42:54:52:cd:90:d4:bd:94:b7:27:78:60:
32:4c:01:25:3e:77:15:b3:5c:16:77:26:77:63:84:d5:be:64:
8e:45:de:39:5a:c8:76:2b:c3:4d:8d:0b:81:9e:05:21:59:00:
6b:0c:46:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:09 2024 by rpki-client on console-fra.rpki-client.org