Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/13da09-5e0e-45cb-95a3-ca545838afc0/1/PVH2IjUK2N4iWbJ5DhJXMFEe5Ic.roa
File: PVH2IjUK2N4iWbJ5DhJXMFEe5Ic.roa (raw, json)
Hash identifier: TO66IE6/phiNguTgT1LgHeMvQHomAo8IipqiN2KPh2g=
Subject key identifier: 3D:51:F6:22:35:0A:D8:DE:22:59:B2:79:0E:12:57:30:51:1E:E4:87
Certificate issuer: /CN=0bb71e4264ce62c35e1cee64d18765d33290f2a4
Certificate serial: 0561D697
Authority key identifier: 0B:B7:1E:42:64:CE:62:C3:5E:1C:EE:64:D1:87:65:D3:32:90:F2:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C7ceQmTOYsNeHO5k0Ydl0zKQ8qQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/13da09-5e0e-45cb-95a3-ca545838afc0/1/PVH2IjUK2N4iWbJ5DhJXMFEe5Ic.roa
Signing time: Sat 01 Jan 2022 08:53:30 +0000
ROA not before: Sat 01 Jan 2022 08:53:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207470
IP address blocks: 193.104.98.0/24 maxlen: 24
193.104.110.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90298007 (0x561d697)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bb71e4264ce62c35e1cee64d18765d33290f2a4
Validity
Not Before: Jan 1 08:53:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d51f622350ad8de2259b2790e125730511ee487
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c5:f7:39:5d:84:64:74:24:fc:be:62:7e:b3:
11:ae:fc:7e:1b:e4:0f:07:ba:15:77:6a:c9:bf:58:
e8:46:b1:e8:61:60:4c:3a:da:f3:cc:60:de:aa:35:
d4:3b:55:fc:56:54:7a:00:78:ed:9c:51:fb:dd:a7:
8a:2b:a9:c3:cd:97:11:14:60:8f:d5:ee:da:5a:03:
96:f9:a8:27:a5:65:a2:52:d9:39:31:39:f9:46:3d:
ac:4f:f9:67:a8:1e:dd:e6:d9:03:29:0b:49:8f:4a:
73:b9:82:09:62:04:cb:ce:6c:69:63:a3:46:64:5c:
a2:31:01:42:71:65:71:75:de:33:8b:52:c3:a7:3d:
b3:16:d6:f4:c1:a1:67:ad:4f:2a:71:26:48:43:44:
a5:48:04:cb:79:8f:92:51:4c:85:25:b5:07:0b:a7:
69:4d:a9:e4:e4:32:a6:e9:2f:8e:5b:e1:d9:ef:cc:
55:84:90:79:0e:93:0a:88:ec:91:52:94:71:20:82:
df:64:df:d6:98:29:d0:be:60:76:ab:4d:55:53:0e:
eb:1d:4f:01:72:d5:32:d7:2e:df:c3:f3:b3:53:a9:
05:ce:69:1f:1a:6b:a6:67:a5:38:7d:ab:c7:c6:62:
c7:25:f7:96:0f:c0:33:10:c6:a7:3c:a4:41:17:c2:
ff:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:51:F6:22:35:0A:D8:DE:22:59:B2:79:0E:12:57:30:51:1E:E4:87
X509v3 Authority Key Identifier:
keyid:0B:B7:1E:42:64:CE:62:C3:5E:1C:EE:64:D1:87:65:D3:32:90:F2:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C7ceQmTOYsNeHO5k0Ydl0zKQ8qQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/13da09-5e0e-45cb-95a3-ca545838afc0/1/PVH2IjUK2N4iWbJ5DhJXMFEe5Ic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/13da09-5e0e-45cb-95a3-ca545838afc0/1/C7ceQmTOYsNeHO5k0Ydl0zKQ8qQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.98.0/24
193.104.110.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:55:69:ed:55:b7:fd:9d:fe:11:18:36:dd:3a:ec:bc:4d:cd:
74:b1:eb:d7:51:11:4d:b2:5f:64:92:25:f0:f8:69:79:2d:c2:
95:de:1a:0b:33:cf:32:5e:9e:1f:1f:cb:f5:4d:69:b8:2c:a1:
96:86:16:0b:ed:fd:ba:cd:8f:23:e5:29:12:91:7f:4c:c9:0a:
62:78:b5:fa:e2:f9:a9:06:ee:59:56:c7:5b:53:6a:b2:d1:64:
9c:8a:46:62:29:bd:e0:87:e2:2e:03:4b:90:a1:d4:9d:ca:7b:
b4:d8:90:56:5e:2e:fe:32:20:e6:81:98:36:17:b0:d0:29:a9:
b2:67:e3:bd:95:49:0e:d4:2b:82:f9:9a:b2:95:51:24:9b:06:
c7:35:f4:39:99:d6:53:49:38:76:4f:d7:0f:b7:f3:77:94:df:
80:ed:04:9c:ab:87:08:f3:bd:f3:a6:46:2b:9d:f5:62:5d:0a:
1b:99:78:97:3b:ae:67:24:23:3a:2a:d5:a0:cb:6b:32:3d:e6:
47:67:31:2d:8b:7c:2f:3b:a2:b9:2d:e0:24:a5:90:b6:ee:e8:
7b:96:f9:74:60:57:2e:4a:6b:52:7b:3f:8c:45:d8:eb:0e:c7:
ef:e2:d1:0a:b0:4a:f9:0b:70:72:83:75:13:e9:de:39:be:05:
5f:8f:66:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:33 2024 by rpki-client on console-fra.rpki-client.org