Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/2d783a-1cbc-40d4-b011-e085275aa364/1/PJu1Zu-HLEKy0rapd4tns8M15IQ.roa
File: PJu1Zu-HLEKy0rapd4tns8M15IQ.roa (raw, json)
Hash identifier: x/wykbAV5YbWtEFlWQZosGMN+DlUKN9xtf3KvFMflws=
Subject key identifier: 3C:9B:B5:66:EF:87:2C:42:B2:D2:B6:A9:77:8B:67:B3:C3:35:E4:84
Certificate issuer: /CN=034b0eed2c5a787ad87fb49f04d3fdf3d0f49d4c
Certificate serial: 1A6B832E
Authority key identifier: 03:4B:0E:ED:2C:5A:78:7A:D8:7F:B4:9F:04:D3:FD:F3:D0:F4:9D:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A0sO7SxaeHrYf7SfBNP989D0nUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/2d783a-1cbc-40d4-b011-e085275aa364/1/PJu1Zu-HLEKy0rapd4tns8M15IQ.roa
Signing time: Tue 17 May 2022 12:54:03 +0000
ROA not before: Tue 17 May 2022 12:54:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57428
IP address blocks: 185.57.44.0/22 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 443253550 (0x1a6b832e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=034b0eed2c5a787ad87fb49f04d3fdf3d0f49d4c
Validity
Not Before: May 17 12:54:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c9bb566ef872c42b2d2b6a9778b67b3c335e484
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:80:94:22:3b:92:38:3f:b4:df:93:5c:55:03:
c3:50:a9:c5:d7:d3:e7:c5:12:2e:ca:64:14:8a:6c:
72:86:d2:d4:a9:93:f6:72:50:14:43:ec:6a:7d:96:
e5:70:e6:7a:4c:8c:68:cf:51:f2:48:c3:1c:e0:bc:
5c:2a:45:c3:e1:c4:11:f1:24:17:d8:60:5f:75:a5:
33:f2:cf:c6:a7:df:b6:6a:ff:31:fa:d1:5b:9d:93:
bc:04:ec:f1:aa:b4:e5:bd:c4:a3:52:28:4c:ad:b3:
5a:b6:1c:3f:cb:d6:cd:f4:35:f9:2e:bd:bc:ce:88:
a1:60:59:b6:de:f6:9a:2a:b2:68:b0:0a:87:0f:88:
32:2f:8b:5b:08:68:e1:03:fc:f1:58:a3:e7:7a:16:
9a:eb:93:5e:c6:98:46:39:7d:72:2a:c9:1a:35:05:
5b:3e:21:ed:e4:06:b8:37:45:c4:ef:e4:fc:d0:06:
ab:c6:18:2e:9e:20:74:ee:74:f5:e9:ab:ae:7b:c1:
df:40:6e:49:e5:f0:c6:7c:f0:82:17:36:a2:b3:da:
60:04:92:d7:df:f9:87:ab:81:c6:18:9c:4c:d8:6b:
95:f0:dc:3d:63:1f:3b:7a:f1:7d:d6:03:2e:e0:66:
5e:59:e5:2d:52:38:a7:18:10:65:b3:71:73:ec:68:
65:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:9B:B5:66:EF:87:2C:42:B2:D2:B6:A9:77:8B:67:B3:C3:35:E4:84
X509v3 Authority Key Identifier:
keyid:03:4B:0E:ED:2C:5A:78:7A:D8:7F:B4:9F:04:D3:FD:F3:D0:F4:9D:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A0sO7SxaeHrYf7SfBNP989D0nUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2d783a-1cbc-40d4-b011-e085275aa364/1/PJu1Zu-HLEKy0rapd4tns8M15IQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2d783a-1cbc-40d4-b011-e085275aa364/1/A0sO7SxaeHrYf7SfBNP989D0nUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.57.44.0/22
Signature Algorithm: sha256WithRSAEncryption
17:24:7b:99:4e:86:eb:60:61:df:ae:cd:e1:1f:19:38:89:33:
3b:af:68:42:39:b7:8d:d2:20:b3:23:d8:21:03:a5:01:53:29:
a8:98:b9:b0:76:fd:5d:1f:2a:7b:cd:32:19:ae:a6:18:5f:e1:
92:d4:ab:9d:b7:4a:98:17:52:64:4f:a5:30:d6:2c:0b:36:b6:
44:40:d0:91:c7:21:c4:ee:ca:42:52:67:08:bc:2a:47:1a:07:
bb:b3:0f:54:7a:a2:f5:20:cf:23:04:7c:eb:fd:ed:d4:30:2c:
4c:58:34:f0:c9:bd:47:c7:2f:01:11:e5:2a:97:44:df:c2:28:
3a:c2:8a:e3:82:66:7a:04:b2:0a:97:06:6a:92:8e:86:5c:36:
38:11:f6:c3:a3:8e:6d:c8:74:cc:81:ac:58:9a:b3:36:bf:e0:
49:86:f6:e4:60:76:e4:03:48:75:97:62:de:b0:5e:c8:be:59:
38:57:84:f3:59:db:e2:b7:52:aa:23:a2:79:22:93:19:d7:06:
55:b9:0b:e5:14:e7:a5:c9:60:b6:b6:25:9e:79:7e:11:1b:ee:
c6:38:1a:ec:76:54:e5:51:32:6b:6e:96:d0:60:ea:78:37:1b:
d0:a6:3e:1c:ae:e9:21:0c:18:e7:51:76:e8:cb:e3:7f:36:8b:
7f:aa:c8:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:49 2023 by rpki-client on console-ams.rpki-client.org