Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Pb-9MLgbZkjxjkS-L12tX1pXV7s.roa
File: Pb-9MLgbZkjxjkS-L12tX1pXV7s.roa (raw, json)
Hash identifier: ULTC5kWJYnPEwWF5v4abHA8kaBbLpk6u/MEpEgAQfJA=
Subject key identifier: 3D:BF:BD:30:B8:1B:66:48:F1:8E:44:BE:2F:5D:AD:5F:5A:57:57:BB
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0EA9B659
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Pb-9MLgbZkjxjkS-L12tX1pXV7s.roa
Signing time: Wed 09 Feb 2022 10:42:08 +0000
ROA not before: Wed 09 Feb 2022 10:42:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210352
IP address blocks: 194.87.218.0/24 maxlen: 24
194.87.216.0/24 maxlen: 24
194.87.31.0/24 maxlen: 24
212.192.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 246003289 (0xea9b659)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Feb 9 10:42:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3dbfbd30b81b6648f18e44be2f5dad5f5a5757bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:cb:57:93:d7:38:93:90:dd:ea:c0:1d:d5:fa:
ab:14:4d:94:55:1d:5b:7d:89:8e:43:10:73:6c:28:
cb:a2:24:e3:47:20:cb:e5:a9:63:cf:7e:74:71:d6:
77:67:b8:33:1c:ff:1b:2c:a1:72:38:d1:27:66:42:
8d:7a:3d:ae:60:12:6d:45:72:ac:a1:e2:46:72:57:
6a:ee:ba:a9:bb:40:e9:26:21:08:94:91:29:b7:e9:
d7:b1:1f:16:34:1f:8e:26:55:01:90:11:eb:85:fa:
1d:07:a9:c4:3a:1b:5d:b6:16:81:90:26:09:5c:52:
49:01:fa:d2:25:8f:c5:22:3a:35:af:2f:c9:26:b0:
89:b2:f6:4e:7d:a2:92:63:48:74:06:ea:46:b6:57:
ff:91:13:38:ca:68:92:a8:27:15:a2:7d:7e:db:c4:
6a:9d:e1:57:da:b5:01:a6:34:ae:e8:b4:a1:b1:c3:
b7:5c:d7:11:3a:1f:1c:88:08:15:1b:32:a7:fa:1c:
39:21:bb:83:27:ab:99:fb:9b:d8:74:54:64:97:40:
9e:94:cc:07:f4:45:87:64:de:8a:a2:5d:82:8f:f1:
01:30:c3:60:47:52:cf:00:e5:0c:c2:35:aa:36:ae:
67:1b:83:27:3f:66:4b:89:05:f0:ea:c1:fc:54:6f:
fc:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:BF:BD:30:B8:1B:66:48:F1:8E:44:BE:2F:5D:AD:5F:5A:57:57:BB
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Pb-9MLgbZkjxjkS-L12tX1pXV7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.31.0/24
194.87.216.0/24
194.87.218.0/24
212.192.14.0/24
Signature Algorithm: sha256WithRSAEncryption
29:9d:91:b1:e6:77:9f:10:fd:4e:01:4a:b2:92:f6:4f:c2:48:
4c:07:80:42:1a:7e:d6:41:b8:cb:b1:5a:74:45:2e:dd:0d:86:
9f:37:96:a5:df:04:59:d6:bf:f6:c8:1f:3e:37:29:b3:1f:dd:
75:de:5a:70:81:05:8a:ce:97:39:45:32:6f:af:39:88:42:e9:
16:4d:34:02:4b:82:2d:fa:6c:13:8d:7d:d6:74:80:cb:de:69:
05:d5:73:8f:c3:19:ed:0a:c0:3d:5d:9b:20:70:f5:05:6a:44:
ef:24:0b:4b:3e:df:c1:0d:79:f5:f1:74:bf:f5:8f:4b:7c:28:
8d:ea:fc:ce:99:54:cf:7f:8d:f9:9c:d8:92:f4:83:59:38:dd:
39:f1:90:79:13:c2:46:d3:6c:46:67:f1:45:70:29:db:e8:3e:
36:4d:76:21:4d:ff:a4:7c:1b:e2:07:b3:ac:47:52:4b:f5:2b:
47:56:41:9e:ab:b7:de:13:5f:ab:3e:d4:2f:65:dc:c1:c9:83:
d6:49:01:b7:15:74:ec:b2:9b:92:21:d1:87:4c:2a:cd:3f:1d:
76:57:f4:ee:db:b6:f0:b1:72:32:df:cb:fc:59:84:ad:1a:18:
b3:08:cf:bb:e4:da:05:50:fb:78:b9:f6:e4:a7:53:32:c1:2d:
84:7b:88:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:57 2023 by rpki-client on console-ams.rpki-client.org