Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/PmstUpjR7O8gq-zJVw0UeJzqwpA.roa
File: PmstUpjR7O8gq-zJVw0UeJzqwpA.roa (raw, json)
Hash identifier: 2YWtA7LzqnpQhQ6rGZL0hHjnQR3Q0fsIXUVGJ7YUphM=
Subject key identifier: 3E:6B:2D:52:98:D1:EC:EF:20:AB:EC:C9:57:0D:14:78:9C:EA:C2:90
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 38C3232C
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/PmstUpjR7O8gq-zJVw0UeJzqwpA.roa
Signing time: Tue 17 May 2022 05:30:32 +0000
ROA not before: Tue 17 May 2022 05:30:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205526
IP address blocks: 213.169.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 952312620 (0x38c3232c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: May 17 05:30:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e6b2d5298d1ecef20abecc9570d14789ceac290
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:07:da:a9:67:a6:57:a1:fb:53:72:e2:19:94:
cc:06:5b:74:2c:e6:68:6b:69:aa:9a:36:9f:82:ed:
2d:68:32:23:27:34:6e:1f:15:4f:90:cc:25:74:26:
06:98:7f:3e:9d:84:0e:27:a2:e7:8d:01:a3:fa:9a:
0d:77:eb:92:c0:72:de:2e:aa:a1:cf:db:65:5f:8e:
7c:1f:36:c2:7e:5a:dc:6f:bd:31:ae:d0:00:ff:3c:
4b:33:43:4d:28:67:d5:78:47:34:7e:ca:5e:95:74:
a2:60:da:83:65:6d:e2:42:83:fc:ef:94:05:74:ea:
41:a3:c2:e3:b1:89:aa:3d:30:d1:cc:a4:ce:ad:f9:
4d:70:e4:84:1e:36:c0:0c:97:58:79:c7:81:8f:d1:
17:7f:d2:a5:69:eb:dd:41:2b:aa:ba:84:9d:02:a7:
b4:59:e6:25:d3:8c:9c:6d:8a:7b:b9:be:43:f1:f0:
44:fb:30:88:5d:e5:8f:38:12:1f:29:6e:ab:6c:3f:
25:8f:50:7c:89:be:cf:2f:74:c6:96:1c:af:a8:06:
b1:3d:55:40:77:64:a9:01:a7:bc:75:e9:3a:78:27:
cb:92:0d:e8:10:b8:8d:70:0c:81:d5:a6:1a:19:85:
61:52:e3:c2:2b:e9:c2:af:ef:d2:b8:4e:b7:14:4d:
42:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:6B:2D:52:98:D1:EC:EF:20:AB:EC:C9:57:0D:14:78:9C:EA:C2:90
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/PmstUpjR7O8gq-zJVw0UeJzqwpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.169.37.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:ad:77:6c:e3:4c:0a:0d:ba:d8:f6:5b:3a:e6:77:aa:c8:72:
28:ac:88:62:17:3c:0a:db:02:47:04:27:80:db:91:cf:9f:9c:
f9:37:b8:20:af:17:8f:ae:39:7c:1c:ac:69:1f:d1:f7:c2:ef:
00:03:e6:8d:38:57:e3:6a:25:07:f1:0c:e7:5b:95:30:07:d0:
8c:86:4a:77:0d:53:01:45:a8:70:8e:69:52:38:fa:ba:e1:5c:
a9:6f:65:69:62:f9:58:a9:0e:18:35:44:cf:68:b4:92:06:84:
a8:50:92:84:0a:a5:7b:e4:18:7a:b5:09:5c:1e:6e:c3:30:87:
8d:a3:ff:59:c3:5a:31:c4:aa:07:ff:e0:2e:75:f7:34:b4:76:
0e:58:1b:04:1b:36:ab:21:d7:7d:5e:ae:a2:47:e6:6e:82:4f:
1b:12:2a:1d:f4:e8:a2:b6:ad:7f:2a:b8:86:8e:7b:12:0e:4a:
67:d5:4a:1f:61:15:ea:7f:d8:ef:a4:c4:5a:a8:a4:d6:80:d4:
d7:56:45:b0:da:25:1b:cc:9e:32:df:76:63:b2:99:46:c5:5b:
36:9c:8e:a7:6d:f9:ee:d0:82:bd:a8:11:28:f4:26:dd:ea:bd:
3e:51:95:39:30:49:15:89:eb:61:0a:c2:e5:48:5f:dc:23:78:
d3:ab:fc:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:19 2023 by rpki-client on console-fra.rpki-client.org