Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/d4d2f8-8dc1-4070-977e-a6cec04595f8/1/PtJee91jJeCJ4ywF7m0KBh21cY4.roa
File: PtJee91jJeCJ4ywF7m0KBh21cY4.roa (raw, json)
Hash identifier: qQ5sLx15dZZ34p8kNzUtdQUZ+o5YVu0/EYkzy9y5Uyk=
Subject key identifier: 3E:D2:5E:7B:DD:63:25:E0:89:E3:2C:05:EE:6D:0A:06:1D:B5:71:8E
Certificate issuer: /CN=83e2340ef5c4a4952eb413d288c29d9378342232
Certificate serial: 01856B00AE340506A243CFB47677461CD1D6
Authority key identifier: 83:E2:34:0E:F5:C4:A4:95:2E:B4:13:D2:88:C2:9D:93:78:34:22:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g-I0DvXEpJUutBPSiMKdk3g0IjI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/d4d2f8-8dc1-4070-977e-a6cec04595f8/1/PtJee91jJeCJ4ywF7m0KBh21cY4.roa
Signing time: Sun 01 Jan 2023 01:44:44 +0000
ROA not before: Sun 01 Jan 2023 01:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59608
IP address blocks: 188.213.84.0/23 maxlen: 24
2a11:e687::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:00:ae:34:05:06:a2:43:cf:b4:76:77:46:1c:d1:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83e2340ef5c4a4952eb413d288c29d9378342232
Validity
Not Before: Jan 1 01:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3ed25e7bdd6325e089e32c05ee6d0a061db5718e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:86:7e:ba:ac:4b:30:ba:5d:0a:b3:88:3f:56:
e4:d4:b8:9b:c3:eb:4e:2a:28:9e:39:1c:69:2f:e1:
76:96:cc:d3:58:a9:7a:c7:98:d2:fb:bd:0c:c0:97:
b1:93:e4:fe:99:d0:09:18:72:05:2f:53:34:ff:73:
ff:d0:47:bd:c2:e3:34:2e:7f:13:fe:97:83:49:35:
c1:63:b7:05:54:1a:e4:43:7c:af:33:f5:21:5d:e0:
ec:c2:5a:39:c7:67:f3:75:bc:4f:0f:42:f3:6f:6a:
b7:98:06:cd:df:39:cd:66:55:a8:83:1c:c0:3c:a1:
9f:98:9a:2d:df:a3:b7:4a:e8:65:96:d0:5b:98:5e:
54:27:e5:16:fd:45:d2:12:31:14:09:f7:3d:5a:1b:
d2:79:7c:de:3e:6d:f2:8e:79:3d:f2:ad:6d:0d:8f:
e5:f4:ac:80:ff:5c:ac:a8:06:68:94:9c:7c:cb:4b:
15:30:ee:33:61:7c:f9:11:0c:5e:49:12:36:06:73:
e3:82:be:79:0b:8a:95:af:be:84:01:04:36:18:39:
6e:e2:ef:7d:7e:ec:b1:e5:53:d1:47:4d:14:8e:a9:
46:cc:fa:f5:b9:f4:f2:8a:11:be:c0:6d:86:4f:84:
15:4f:26:5a:fb:ff:ed:4f:d7:c7:9c:f8:53:b4:62:
34:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:D2:5E:7B:DD:63:25:E0:89:E3:2C:05:EE:6D:0A:06:1D:B5:71:8E
X509v3 Authority Key Identifier:
keyid:83:E2:34:0E:F5:C4:A4:95:2E:B4:13:D2:88:C2:9D:93:78:34:22:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g-I0DvXEpJUutBPSiMKdk3g0IjI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/d4d2f8-8dc1-4070-977e-a6cec04595f8/1/PtJee91jJeCJ4ywF7m0KBh21cY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/d4d2f8-8dc1-4070-977e-a6cec04595f8/1/g-I0DvXEpJUutBPSiMKdk3g0IjI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.213.84.0/23
IPv6:
2a11:e687::/32
Signature Algorithm: sha256WithRSAEncryption
31:f8:40:fc:6f:e1:17:e3:58:a0:9d:f2:4e:0e:c9:40:e9:92:
48:ad:e7:47:b6:63:94:0d:27:8d:43:00:9b:bd:59:b2:c7:c8:
dd:7e:29:e0:18:5d:6b:9e:82:43:ed:e0:d5:63:38:15:32:62:
11:7c:b4:cc:d7:ae:a9:67:dd:00:20:d9:54:cf:db:5a:c7:26:
00:d7:e3:a6:c1:75:f2:3b:64:88:02:38:76:8f:85:dc:61:03:
f9:75:26:cf:ea:b7:92:3a:d3:6b:ed:f5:f3:3a:e2:54:b6:fb:
e9:9c:a0:77:f1:31:46:ce:d7:9c:b3:68:a4:68:50:00:09:e8:
28:c8:2e:ed:67:7e:26:8b:6c:3f:3a:18:b5:e9:b5:62:e1:2e:
ae:a6:10:c2:54:a8:7e:a0:d8:ba:23:4c:d0:73:27:59:78:35:
0e:5e:ad:d6:f5:57:3b:91:80:49:03:e2:7f:bd:ea:e2:e9:12:
73:1b:56:04:75:e6:7f:b1:fd:2a:05:8c:89:ff:4d:28:d1:c2:
c1:96:0b:9e:47:7f:d9:40:46:ab:bc:4b:b2:f2:74:5c:cc:a4:
de:dc:a5:ee:4e:22:d8:2f:69:b3:54:ee:1d:5c:4e:9a:e2:9b:
75:17:0b:dc:41:ae:e6:98:b2:35:75:18:1b:02:e2:ea:54:fb:
37:d6:a3:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:02 2025 by rpki-client