Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/227afa-ddec-4644-982a-58faa27e5549/1/PVNqZipCAdwNe_s5GYnDofea6q4.roa
File: PVNqZipCAdwNe_s5GYnDofea6q4.roa (raw, json)
Hash identifier: iBdBNGOnbS3uJjHmlqcRmuoHuHngyAInhuXMv/B1KfA=
Subject key identifier: 3D:53:6A:66:2A:42:01:DC:0D:7B:FB:39:19:89:C3:A1:F7:9A:EA:AE
Certificate issuer: /CN=b14aaa9b084864f44bae18ba076b26067754fb62
Certificate serial: 0A2F3493
Authority key identifier: B1:4A:AA:9B:08:48:64:F4:4B:AE:18:BA:07:6B:26:06:77:54:FB:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUqqmwhIZPRLrhi6B2smBndU-2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/227afa-ddec-4644-982a-58faa27e5549/1/PVNqZipCAdwNe_s5GYnDofea6q4.roa
Signing time: Sat 01 Jan 2022 02:53:47 +0000
ROA not before: Sat 01 Jan 2022 02:53:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51985
IP address blocks: 5.39.232.0/21 maxlen: 21
185.26.248.0/22 maxlen: 22
46.17.80.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170865811 (0xa2f3493)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b14aaa9b084864f44bae18ba076b26067754fb62
Validity
Not Before: Jan 1 02:53:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d536a662a4201dc0d7bfb391989c3a1f79aeaae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:7c:64:3e:59:af:13:96:6c:63:b4:33:f7:e0:
b7:32:cc:b5:1e:5a:74:3e:5d:37:03:d2:dd:b5:00:
95:84:e0:1e:d4:28:7c:d1:3b:d9:69:87:c0:c7:87:
b0:29:71:50:ec:9a:ca:b3:af:c8:0c:32:b5:31:21:
4c:2c:80:0b:e7:5f:d0:21:2c:bc:a4:b9:3b:31:45:
95:94:02:6f:56:f2:2b:32:50:e1:6f:bf:9c:39:3e:
11:75:e1:02:8b:5c:1d:71:73:ee:50:f7:2a:3d:ee:
30:25:96:61:17:b6:4b:d4:cc:a8:a5:c0:d5:eb:3d:
e9:85:01:a7:9a:fa:7b:47:3e:c6:2b:24:ca:cc:91:
99:5f:27:3a:ed:df:0d:3e:7f:b5:a4:b2:30:36:c6:
1e:f5:44:dc:7a:22:e0:b7:53:2e:49:c3:17:c6:46:
f7:6a:91:98:89:22:1a:7e:b3:ae:dc:fc:60:2c:af:
aa:dc:52:d7:38:87:d0:e3:9d:53:3a:49:be:8e:65:
6c:a5:f8:48:d2:77:82:6b:63:56:6c:3c:15:85:2b:
f1:89:d3:c4:eb:b9:86:95:5c:17:4a:08:f5:f7:5a:
4d:f0:c3:b4:3f:d3:50:c3:f1:38:82:21:99:74:40:
1a:7a:7d:bc:20:25:56:40:2b:f7:40:d7:13:44:d4:
d4:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:53:6A:66:2A:42:01:DC:0D:7B:FB:39:19:89:C3:A1:F7:9A:EA:AE
X509v3 Authority Key Identifier:
keyid:B1:4A:AA:9B:08:48:64:F4:4B:AE:18:BA:07:6B:26:06:77:54:FB:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUqqmwhIZPRLrhi6B2smBndU-2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/227afa-ddec-4644-982a-58faa27e5549/1/PVNqZipCAdwNe_s5GYnDofea6q4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/227afa-ddec-4644-982a-58faa27e5549/1/sUqqmwhIZPRLrhi6B2smBndU-2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.232.0/21
46.17.80.0/21
185.26.248.0/22
Signature Algorithm: sha256WithRSAEncryption
29:2c:01:a9:1e:e1:ca:ec:90:0d:35:e1:ca:47:14:f7:60:16:
10:c9:82:a0:7b:a1:28:f9:4e:71:5f:ec:0f:38:e8:c8:5a:dd:
ff:e6:64:c5:dd:30:fc:8e:87:6f:a6:31:0b:40:0b:36:08:1f:
bc:e0:ca:fa:ce:de:43:a0:eb:ed:4a:05:d7:4e:ab:04:df:0b:
8f:44:ed:5b:61:64:b9:cf:9a:3e:35:d1:cf:78:b8:69:fe:2a:
51:05:40:b9:86:c8:88:a7:14:cf:81:21:c1:1b:85:20:1a:c0:
36:2b:0b:7d:95:a7:bd:19:51:00:03:fb:8a:5b:69:d2:77:cf:
f4:5c:19:05:8c:26:cb:fb:2c:1a:08:67:df:12:90:30:db:ca:
59:a4:3c:4c:43:1e:4e:c9:d7:28:d7:b8:1b:12:ca:6d:d7:d6:
3e:99:2a:85:68:8d:b3:dc:95:d2:07:6d:a1:ce:94:11:0f:bc:
48:f1:2e:8d:e6:27:e7:ec:22:cf:c9:3c:f7:0b:cf:98:64:92:
be:09:b9:23:8a:ca:11:1b:88:d8:b7:ef:f9:bb:15:b9:02:9d:
ee:7e:e7:13:70:a3:45:42:ef:7a:fd:23:4e:b0:b4:fd:ca:25:
19:d4:cb:19:1d:17:1c:ee:87:00:bc:fa:ca:c3:e9:6b:8a:57:
7f:4d:17:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:36 2025 by rpki-client