Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/PHSakeHeDNofFm-GdW0-rriXMMg.roa
File: PHSakeHeDNofFm-GdW0-rriXMMg.roa (raw, json)
Hash identifier: xycwcpJAWD+y2uJXlMiNI8J2urBJzZI1Rfoe1mm3Q6U=
Subject key identifier: 3C:74:9A:91:E1:DE:0C:DA:1F:16:6F:86:75:6D:3E:AE:B8:97:30:C8
Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial: 01BDF511
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/PHSakeHeDNofFm-GdW0-rriXMMg.roa
Signing time: Sat 01 Jan 2022 09:55:06 +0000
ROA not before: Sat 01 Jan 2022 09:55:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 36352
IP address blocks: 5.182.102.0/24 maxlen: 24
92.119.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29226257 (0x1bdf511)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Validity
Not Before: Jan 1 09:55:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c749a91e1de0cda1f166f86756d3eaeb89730c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:a2:6d:20:c1:3e:e5:5a:b9:a8:37:80:76:cc:
df:63:99:05:18:52:97:a8:cf:59:77:dc:98:17:d3:
a8:f1:00:e0:16:77:c4:c4:bc:15:4f:a3:bd:53:ff:
97:05:39:81:d5:02:57:78:a4:e6:ba:7d:db:e4:4e:
5b:1e:5b:c8:de:df:b2:16:32:c9:5b:ac:df:7a:8d:
c8:99:9f:8d:fa:63:58:de:7b:b8:b0:b3:2e:77:a2:
55:65:b7:db:32:40:38:66:33:de:37:83:d2:2c:af:
e7:30:c4:67:b9:ae:74:7f:47:f0:da:b8:77:55:cc:
dd:d2:25:83:7e:9a:46:83:cb:90:38:0f:d6:79:13:
23:e3:e0:31:03:70:2a:91:fe:0d:1c:93:7f:69:5d:
d2:e1:cb:5b:8e:d9:1c:2e:89:97:8b:ce:30:83:04:
8c:e6:fd:3d:7f:e3:6a:6d:46:83:cb:bc:25:3a:9d:
e8:97:b5:33:94:2f:c4:a1:ab:f9:5d:13:63:26:33:
26:82:01:d9:8d:ba:ea:38:a6:df:62:ee:48:d4:fa:
5c:b5:d4:d2:62:ec:6d:ae:99:30:f0:c4:bd:36:c2:
3f:0b:ae:65:fe:76:fe:c9:81:83:e1:fb:d2:87:59:
64:5b:9a:cd:e8:a0:9b:d8:ff:04:0b:b1:5b:97:08:
ea:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:74:9A:91:E1:DE:0C:DA:1F:16:6F:86:75:6D:3E:AE:B8:97:30:C8
X509v3 Authority Key Identifier:
keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/PHSakeHeDNofFm-GdW0-rriXMMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.102.0/24
92.119.182.0/24
Signature Algorithm: sha256WithRSAEncryption
54:2c:9d:29:ed:af:dd:fc:e5:98:40:7a:f7:6a:c0:72:6a:1e:
bd:cb:37:8d:f0:33:7e:c4:7f:b2:4b:d7:6f:79:92:df:7b:83:
25:60:54:4a:e4:ec:f0:93:54:90:31:4c:fe:d0:03:d4:96:ba:
aa:b0:e6:b0:9e:cb:0a:e2:21:d7:d1:47:29:af:94:c4:41:ac:
a6:9d:76:dd:9a:57:17:f9:4c:d5:5c:bb:a0:87:b3:ab:b3:12:
2e:9c:1b:fd:44:60:d0:06:35:cc:19:80:c1:79:4f:9c:38:1e:
ef:5e:a5:67:d0:37:85:3c:72:9f:9f:e3:c1:de:51:36:71:44:
e2:09:4a:7f:12:6b:3b:10:d8:85:27:f5:7c:0b:9f:89:79:00:
8d:65:82:0a:ef:ab:aa:8e:c7:e6:e0:85:23:a1:96:5e:7b:47:
a9:2d:f7:c2:04:00:a9:01:98:6a:ac:28:78:40:df:17:8e:ce:
4b:4e:01:4f:5b:1d:a4:ea:f0:30:d0:44:34:73:09:ea:4a:d9:
9b:48:ce:6a:6b:11:b1:4c:48:3b:b4:42:98:85:42:5b:1d:ae:
76:cd:21:6d:44:60:59:02:05:63:d7:06:f6:17:94:a6:55:fc:
01:69:60:87:f1:ab:79:83:a0:3a:17:23:e8:82:bd:c7:20:fd:
bc:00:46:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:20 2024 by rpki-client on console-ams.rpki-client.org