Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/a68dbc-3f94-4fed-8d9d-e9c3649c1218/1/PYWWkw4cGHcfxpRDtDoOLWsc3hM.roa
File: PYWWkw4cGHcfxpRDtDoOLWsc3hM.roa (raw, json)
Hash identifier: wDDx5im7YCSzvG3/72uRpmDQRlsHH93G/b4Sbj0zIgw=
Subject key identifier: 3D:85:96:93:0E:1C:18:77:1F:C6:94:43:B4:3A:0E:2D:6B:1C:DE:13
Certificate issuer: /CN=1214a7e2a8c7012325ae973ed1a2bba05b2bb9c1
Certificate serial: 0FE3043C
Authority key identifier: 12:14:A7:E2:A8:C7:01:23:25:AE:97:3E:D1:A2:BB:A0:5B:2B:B9:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EhSn4qjHASMlrpc-0aK7oFsrucE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/a68dbc-3f94-4fed-8d9d-e9c3649c1218/1/PYWWkw4cGHcfxpRDtDoOLWsc3hM.roa
Signing time: Sat 01 Jan 2022 06:52:56 +0000
ROA not before: Sat 01 Jan 2022 06:52:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48806
IP address blocks: 185.114.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 266535996 (0xfe3043c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1214a7e2a8c7012325ae973ed1a2bba05b2bb9c1
Validity
Not Before: Jan 1 06:52:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d8596930e1c18771fc69443b43a0e2d6b1cde13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c5:e3:80:b7:e6:da:86:bb:23:33:b7:05:07:
33:16:1c:d0:f4:84:36:e8:62:7f:23:22:1c:66:1c:
21:c7:e5:5e:e7:4c:ef:5a:d2:6a:49:54:ef:68:f6:
25:5d:b2:af:4a:98:d1:82:86:26:9b:cd:d2:b7:e6:
45:c5:eb:9f:5b:b4:c7:9a:7e:e7:b8:e9:1e:0f:4e:
64:da:b7:ec:2a:3f:33:37:e1:95:f7:41:96:fe:87:
b7:3e:49:46:ba:26:43:1a:7c:82:3d:3c:23:1a:c7:
08:59:2f:4e:e3:fa:e0:01:25:d0:2e:f0:7c:93:d3:
da:81:61:f5:7a:ae:73:03:e9:2c:da:c7:38:90:42:
53:85:3e:a1:f4:a6:08:b8:25:93:cd:2a:44:ab:4a:
f2:b0:f9:01:26:c5:21:31:0c:80:d2:9e:28:f5:8f:
2a:9b:03:8d:69:b6:ed:ab:bd:95:21:d3:e9:6e:f7:
14:87:9e:67:22:ef:38:4a:6d:71:23:5b:d1:f2:02:
40:aa:32:d1:7f:a1:9c:a7:c7:96:ff:a8:57:f8:51:
5c:fe:b1:84:23:ab:6f:0d:3e:ab:a0:2e:a8:bc:c4:
48:a6:a7:7b:a4:db:bb:38:a5:08:de:b1:13:1d:86:
24:77:18:12:eb:7a:72:cf:dc:9d:2b:3d:29:90:39:
88:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:85:96:93:0E:1C:18:77:1F:C6:94:43:B4:3A:0E:2D:6B:1C:DE:13
X509v3 Authority Key Identifier:
keyid:12:14:A7:E2:A8:C7:01:23:25:AE:97:3E:D1:A2:BB:A0:5B:2B:B9:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EhSn4qjHASMlrpc-0aK7oFsrucE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/a68dbc-3f94-4fed-8d9d-e9c3649c1218/1/PYWWkw4cGHcfxpRDtDoOLWsc3hM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/a68dbc-3f94-4fed-8d9d-e9c3649c1218/1/EhSn4qjHASMlrpc-0aK7oFsrucE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.114.32.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:09:58:71:a9:da:07:2e:f8:52:93:69:3b:d1:67:44:29:83:
60:b7:60:94:44:a0:93:37:a1:8b:1e:38:3e:05:da:d4:7f:91:
20:80:b3:de:8a:81:57:2b:39:09:3d:ff:e4:05:4a:60:be:70:
1c:35:19:df:2c:1a:2d:62:80:78:f8:d8:a4:fd:22:49:2b:8f:
94:56:76:4e:0d:6b:76:4a:73:df:f2:d8:3a:81:54:d8:01:35:
fd:74:53:54:e3:12:6f:46:75:e0:2f:1d:22:7d:45:18:32:8d:
9c:9f:e7:7d:46:cf:f6:29:24:10:6d:d4:65:3a:9a:bd:6f:a3:
31:16:b5:00:8e:61:c2:af:f4:dc:ec:ce:a4:c0:b1:d2:e0:a2:
e8:cc:a6:a5:3b:90:38:3d:90:df:50:20:37:8f:ef:96:38:af:
3a:93:76:a6:89:3f:8a:66:aa:18:2b:42:c4:7d:52:5d:ba:2e:
3a:0f:1b:e6:e2:e0:e1:b0:72:75:0b:e9:22:32:cb:15:bc:b8:
f0:e2:ca:c6:df:a2:22:04:1c:c9:2d:72:8f:42:c5:2b:96:90:
19:a4:da:b9:71:e2:b6:84:0e:0d:c0:05:2e:2f:46:ac:0c:fd:
84:3f:43:88:e2:38:70:86:29:d7:66:fd:1a:6b:b4:7e:7f:e4:
ff:2f:24:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:54 2023 by rpki-client on console-fra.rpki-client.org