Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/PgLcD2PqX5iUOIQGR1Eaof1AIlc.roa
File: PgLcD2PqX5iUOIQGR1Eaof1AIlc.roa (raw, json)
Hash identifier: N6OPu3TizT6WFDnaIjBXM7xUnwti65cN1DTYfZyVGgA=
Subject key identifier: 3E:02:DC:0F:63:EA:5F:98:94:38:84:06:47:51:1A:A1:FD:40:22:57
Certificate issuer: /CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Certificate serial: 01839F90BB46BBDD149665C1F6817B57B5B7
Authority key identifier: DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/PgLcD2PqX5iUOIQGR1Eaof1AIlc.roa
Signing time: Mon 03 Oct 2022 20:36:45 +0000
ROA not before: Mon 03 Oct 2022 20:36:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 94.154.40.0/24 maxlen: 24
94.154.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:9f:90:bb:46:bb:dd:14:96:65:c1:f6:81:7b:57:b5:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Validity
Not Before: Oct 3 20:36:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e02dc0f63ea5f989438840647511aa1fd402257
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:de:e8:d9:4a:9f:40:12:96:11:87:1d:ae:07:
f5:9e:fc:a1:be:bc:44:82:96:58:08:06:b4:fa:53:
9a:3c:63:66:f7:07:0f:43:4f:89:eb:ef:1e:2a:a9:
c4:c1:94:67:3c:ef:2a:9a:5b:30:c3:d3:cc:92:cf:
87:23:be:e7:ce:17:cd:e7:82:bc:8e:a4:c7:57:a9:
5d:91:75:53:6f:09:c6:d9:ed:41:3a:06:9b:ae:a1:
e1:8d:ff:5c:c5:fe:0f:a1:a2:99:b8:47:81:3a:41:
d2:fd:3f:47:0d:1d:d1:df:60:64:57:ae:bd:37:dd:
76:5b:90:7d:cc:7c:e2:45:c5:40:75:6f:4f:e3:08:
0d:7f:6a:89:0f:b9:84:f3:2a:2c:dd:4b:90:2a:29:
73:21:5c:d6:60:bf:08:50:98:d3:8b:ed:00:1b:6c:
38:9d:cd:46:c3:1e:a0:3d:1d:22:1e:07:60:83:36:
66:16:39:a0:21:3f:57:80:8d:9f:53:62:6c:d6:bc:
eb:52:92:5f:3a:9e:82:c8:dd:0d:72:3d:ad:04:70:
e2:ef:97:6a:63:60:40:98:79:ab:44:d5:8b:be:10:
61:a3:51:42:82:ff:66:2b:26:b7:c7:86:86:2d:5b:
84:36:11:c7:9b:51:af:56:23:67:46:57:a8:17:b4:
ac:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:02:DC:0F:63:EA:5F:98:94:38:84:06:47:51:1A:A1:FD:40:22:57
X509v3 Authority Key Identifier:
keyid:DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/PgLcD2PqX5iUOIQGR1Eaof1AIlc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/3BHa76_4HH5QEnjYfZvCsgTXEVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.40.0/24
94.154.45.0/24
Signature Algorithm: sha256WithRSAEncryption
75:b9:f9:fd:04:29:38:a0:80:01:dd:66:fa:a1:cc:0a:af:b9:
27:76:3a:63:24:be:a2:c7:a9:cf:28:49:0e:4f:06:57:0f:0e:
b2:dd:2d:92:9a:27:ce:ba:a9:ff:b0:a4:5e:d0:c0:17:bb:69:
fa:bd:38:e7:60:2d:21:8c:bd:f1:e4:7a:55:6b:b6:0b:a6:ae:
29:3e:d9:ed:78:23:24:09:6d:72:60:71:7a:f6:d1:ad:ee:15:
d2:0e:e6:b5:23:79:fa:fb:de:51:19:1a:19:22:cb:73:8f:55:
72:8e:38:d7:da:90:18:31:81:eb:a2:d5:4e:33:f8:d1:6b:2b:
6d:df:c6:1a:92:af:5e:74:fd:98:65:98:4e:f1:50:6b:06:a9:
8f:c1:13:79:79:4f:88:81:12:c2:89:58:9e:08:22:05:36:e2:
09:ce:29:fc:fd:ee:c0:89:11:04:38:bc:22:58:d0:bb:24:f0:
75:3a:da:0d:54:75:a2:23:87:fa:60:61:f9:bf:3e:19:85:4d:
32:04:f5:2e:f2:85:1c:9f:28:45:e1:4e:da:a9:70:6c:43:75:
a7:a5:ef:8d:2f:67:26:0f:9d:1e:65:32:79:b7:9e:9b:f1:c0:
ec:08:dd:f9:8c:1b:0e:3c:9c:77:fd:54:6b:e7:c6:3e:eb:5a:
e7:c9:77:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:10 2023 by rpki-client on console-fra.rpki-client.org