Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/PgQtPLixA4B4MW5kIgMC2FsRHhw.roa
File: PgQtPLixA4B4MW5kIgMC2FsRHhw.roa (raw, json)
Hash identifier: i1n3OG9t/Ko78NsPcOGwU0JX2gx0c/o3lMBgDCIXNL4=
Subject key identifier: 3E:04:2D:3C:B8:B1:03:80:78:31:6E:64:22:03:02:D8:5B:11:1E:1C
Certificate issuer: /CN=7554ac4c7f451c5bb9382fbcd46d70c4c0f9de56
Certificate serial: 01880F800A5C4065AF82DEC44D6C07A6B7E6
Authority key identifier: 75:54:AC:4C:7F:45:1C:5B:B9:38:2F:BC:D4:6D:70:C4:C0:F9:DE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dVSsTH9FHFu5OC-81G1wxMD53lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/PgQtPLixA4B4MW5kIgMC2FsRHhw.roa
Signing time: Fri 12 May 2023 10:27:09 +0000
ROA not before: Fri 12 May 2023 10:27:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64286
IP address blocks: 185.177.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0f:80:0a:5c:40:65:af:82:de:c4:4d:6c:07:a6:b7:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7554ac4c7f451c5bb9382fbcd46d70c4c0f9de56
Validity
Not Before: May 12 10:27:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3e042d3cb8b1038078316e64220302d85b111e1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:26:6b:04:c2:f4:84:c1:4f:66:2e:07:fc:46:
f5:65:ac:bc:ae:59:28:91:f8:85:e0:91:b1:2e:c3:
1d:52:03:b8:cf:a9:e5:90:c4:c8:1a:f1:02:ce:84:
a0:04:dd:32:2a:2e:90:51:c6:e0:f4:b3:53:73:f6:
28:bf:a1:37:f6:79:fe:49:5f:c6:e0:fd:8d:9e:6c:
6d:27:a9:60:ce:b1:cb:b6:64:e7:f2:50:83:a6:ef:
84:25:0c:e8:f1:ca:61:34:d3:a7:2c:7e:18:db:b4:
7a:dd:f6:c8:fc:33:ba:d8:55:11:d1:86:b8:bf:70:
3a:ec:d4:da:3b:b4:73:62:4f:76:b7:d9:d0:d9:5e:
40:dd:9a:29:2a:b8:6c:12:5b:e9:a8:cb:5c:4e:39:
31:b1:c3:8d:99:be:68:e4:8e:ac:ab:19:ce:77:27:
82:e1:69:29:67:09:ae:29:2f:ba:8d:2a:2f:c9:39:
4f:f1:ef:16:8d:7d:28:08:9f:37:44:23:11:e4:19:
c6:ec:a5:8a:8e:ec:1c:7d:b0:b0:23:f1:be:2a:95:
42:82:de:c0:64:40:ce:5d:f7:ed:85:ec:5a:a3:36:
ce:11:d2:d1:e6:8d:54:a3:2b:e1:99:36:41:eb:0e:
0d:94:58:cb:e2:64:21:6c:fb:41:ea:f8:a0:f2:55:
37:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:04:2D:3C:B8:B1:03:80:78:31:6E:64:22:03:02:D8:5B:11:1E:1C
X509v3 Authority Key Identifier:
keyid:75:54:AC:4C:7F:45:1C:5B:B9:38:2F:BC:D4:6D:70:C4:C0:F9:DE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dVSsTH9FHFu5OC-81G1wxMD53lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/PgQtPLixA4B4MW5kIgMC2FsRHhw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/dVSsTH9FHFu5OC-81G1wxMD53lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.228.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:7e:f5:37:da:60:a9:f2:c9:4f:9c:da:ee:4e:00:89:55:c6:
92:a2:68:c6:fd:5c:21:c1:58:ad:be:c7:75:07:23:5e:25:19:
f7:87:a5:a5:e6:2e:de:89:61:c0:ae:55:d7:92:64:42:80:d3:
ac:f5:95:6d:fc:16:9c:5a:f3:1b:b6:09:e4:ef:41:a2:81:1a:
62:58:47:14:8d:db:1a:e7:ee:ae:9d:19:79:ab:da:de:d3:51:
e9:c2:97:7c:8d:30:fd:0c:ee:0f:ed:ea:9d:96:14:1b:ef:67:
60:01:c0:56:49:fb:9d:7c:00:f9:a4:5a:04:d6:b1:56:29:03:
5b:fe:1e:d0:0f:84:cc:e2:b0:14:91:30:96:af:10:c1:4a:03:
02:18:00:7f:9a:f1:a6:8f:ea:e5:e0:80:4f:45:b1:b2:09:9f:
5e:0f:10:38:76:a7:38:25:f9:9c:ab:df:b5:01:84:00:17:c2:
7c:42:a2:e2:89:f7:92:55:5a:bc:ce:94:14:00:2b:37:7f:2e:
80:ee:3c:e3:62:0c:1f:90:24:5b:6f:bf:4c:5b:2f:64:8b:cd:
fa:e9:fe:c7:b8:0b:42:f9:47:97:42:e1:60:78:02:1d:d9:16:
06:0e:bc:4b:3e:eb:4e:bd:d8:af:0f:77:fb:3d:b4:f3:62:73:
b9:c6:cd:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:04:29 2025 by rpki-client