Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/PCIUveKDTYt_Pgj6pWhSLc5CkGg.roa
File: PCIUveKDTYt_Pgj6pWhSLc5CkGg.roa (raw, json)
Hash identifier: ej+9mWGOwz7mu4KnmaKaku7PKGC2S2UFWxX1gQPyGF8=
Subject key identifier: 3C:22:14:BD:E2:83:4D:8B:7F:3E:08:FA:A5:68:52:2D:CE:42:90:68
Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Certificate serial: 0184136C2DA6A412AA8B004D621F8F4F839A
Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/PCIUveKDTYt_Pgj6pWhSLc5CkGg.roa
Signing time: Wed 26 Oct 2022 08:32:47 +0000
ROA not before: Wed 26 Oct 2022 08:32:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209759
IP address blocks: 5.181.0.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:13:6c:2d:a6:a4:12:aa:8b:00:4d:62:1f:8f:4f:83:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Validity
Not Before: Oct 26 08:32:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c2214bde2834d8b7f3e08faa568522dce429068
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:99:88:ef:27:85:5c:78:97:02:2c:e4:b3:c8:
cd:8e:fa:78:f3:bb:0b:eb:25:83:f1:d0:7f:0a:81:
59:f9:b5:45:93:d2:ed:ad:05:40:36:c6:b2:d5:23:
a2:59:39:11:b3:a3:83:33:23:f9:29:4a:24:92:48:
e8:79:ba:2e:3a:e9:d6:35:00:05:04:02:9e:56:ff:
32:68:10:79:e6:13:95:2d:89:c4:98:96:d5:bb:a5:
80:f2:71:cc:1b:87:f8:5f:33:2f:0e:5a:2d:c5:9a:
4d:6d:20:70:f6:37:43:3b:4f:b5:1c:ea:20:57:95:
1b:89:3c:ff:b8:a7:2c:f4:9f:ec:ea:ce:ff:f4:f4:
4f:06:e4:77:9c:09:13:30:d4:c7:69:0d:43:9b:26:
f2:4f:d2:95:7f:d3:c6:cd:de:45:3c:7e:79:ec:bb:
fd:33:b4:a2:13:b4:a5:97:d3:e1:fe:4d:a4:83:0b:
cb:66:19:99:28:2d:29:d2:62:83:1b:01:00:18:35:
80:20:20:93:ae:3b:f4:f1:8d:98:c8:08:3c:06:17:
0d:fd:c0:04:ba:7f:87:90:a3:6d:ed:fa:78:b6:40:
e9:9c:27:94:97:2a:84:db:af:64:dd:53:e4:61:ec:
ab:fa:f2:64:ad:64:fd:c4:80:29:02:68:2b:17:fa:
7e:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:22:14:BD:E2:83:4D:8B:7F:3E:08:FA:A5:68:52:2D:CE:42:90:68
X509v3 Authority Key Identifier:
keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/PCIUveKDTYt_Pgj6pWhSLc5CkGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.0.0/22
Signature Algorithm: sha256WithRSAEncryption
77:ec:db:cb:f6:9a:ae:59:89:2f:84:40:d1:d3:f2:b6:9b:d4:
62:bf:e4:b3:72:e6:6f:e3:30:24:fd:bd:9c:c4:03:88:1c:27:
86:81:28:4f:dd:b2:4c:eb:60:9b:65:7c:a2:7b:1f:1f:da:2a:
01:e8:92:93:19:1c:e6:d4:7a:99:a4:65:5a:6d:68:26:3e:20:
ca:55:7c:01:5f:06:25:49:64:8b:e4:8d:e2:48:59:02:75:1a:
f4:b1:54:d3:27:13:e8:07:59:15:60:c2:34:d4:8d:b4:bf:cb:
43:73:f5:61:d8:8c:6a:80:99:f6:06:62:ad:0a:76:ab:33:0c:
46:66:6e:8a:24:47:c4:c2:2c:18:f5:97:7b:5d:f1:08:56:fe:
d0:6d:62:89:f2:96:7f:0d:2e:a0:10:b4:9d:b1:a5:71:2b:5f:
fc:a1:93:3b:20:18:59:a5:89:28:69:8d:08:b7:3e:76:cf:1a:
6f:26:7d:0e:56:df:d2:80:f2:8b:ca:cc:3b:6f:e9:3b:16:f8:
f8:1e:10:48:53:ea:c6:f9:e1:35:4a:fe:13:75:75:2b:45:e8:
4d:45:35:37:a6:65:91:59:f0:14:4d:a6:38:47:a2:25:64:8a:
78:b3:5d:a9:1b:c8:d9:8e:55:c2:82:78:17:a4:d2:70:5c:ce:
95:df:77:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:37 2024 by rpki-client on console-fra.rpki-client.org