Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/5a6d01-a375-4e11-871e-99e6141de7f1/1/PF-pOptTJOtJ0gZGlXmsuv3YMAU.roa
File: PF-pOptTJOtJ0gZGlXmsuv3YMAU.roa (raw, json)
Hash identifier: jAxU83kmjnb7Qp8wQvBLwldxgx2d11DrCYDdVnyI+Uc=
Subject key identifier: 3C:5F:A9:3A:9B:53:24:EB:49:D2:06:46:95:79:AC:BA:FD:D8:30:05
Certificate issuer: /CN=f7bed33ff01e8e09dc4fedcd01139c0e77854aae
Certificate serial: 0183D1BAB0A15E0D54AE042CF32553383E5F
Authority key identifier: F7:BE:D3:3F:F0:1E:8E:09:DC:4F:ED:CD:01:13:9C:0E:77:85:4A:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/977TP_AejgncT-3NAROcDneFSq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/5a6d01-a375-4e11-871e-99e6141de7f1/1/PF-pOptTJOtJ0gZGlXmsuv3YMAU.roa
Signing time: Thu 13 Oct 2022 14:23:36 +0000
ROA not before: Thu 13 Oct 2022 14:23:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57152
IP address blocks: 185.70.84.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d1:ba:b0:a1:5e:0d:54:ae:04:2c:f3:25:53:38:3e:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7bed33ff01e8e09dc4fedcd01139c0e77854aae
Validity
Not Before: Oct 13 14:23:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c5fa93a9b5324eb49d206469579acbafdd83005
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:47:61:51:8b:1e:6c:41:c5:b6:84:b6:4d:ae:
b1:1f:c2:d8:d0:77:82:53:16:4d:8e:46:30:51:6b:
50:84:e3:d3:f4:54:eb:dc:11:fb:40:0e:bd:cb:84:
2f:c0:f6:ee:75:3f:4d:5e:f7:a3:44:8a:83:1f:4c:
6f:25:2e:86:aa:12:0a:9a:22:7d:3f:5c:e2:f5:ec:
95:27:3c:2b:04:b5:77:18:15:75:f8:12:f3:6c:2f:
17:e4:aa:b4:b5:ab:de:ed:a2:ae:28:7f:e0:2e:84:
27:49:ef:54:2e:ca:81:db:7e:0b:e6:bd:e9:d1:e6:
67:7b:2a:25:7c:54:5f:9e:73:2a:ee:7d:cd:7f:56:
1a:a4:06:cc:04:50:47:d3:ff:8c:9c:ed:f5:2c:4e:
26:d7:c4:a5:3c:ff:ce:f8:a9:36:ea:9c:21:25:7f:
d9:84:93:d0:a0:db:d1:62:27:6c:07:ed:75:68:e5:
9d:96:4a:c1:12:b4:ed:96:f1:e2:91:e2:fe:c8:81:
58:2e:21:96:f6:5d:ed:a2:3b:63:6c:50:4a:6f:9c:
4c:f6:ea:ba:f1:67:ae:4c:4d:19:a8:d3:c9:88:06:
a9:c7:22:b7:b4:46:a8:ba:ea:95:6c:fe:ca:f7:28:
50:95:32:b6:98:8a:46:61:2d:4a:d3:e2:bd:d6:33:
df:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:5F:A9:3A:9B:53:24:EB:49:D2:06:46:95:79:AC:BA:FD:D8:30:05
X509v3 Authority Key Identifier:
keyid:F7:BE:D3:3F:F0:1E:8E:09:DC:4F:ED:CD:01:13:9C:0E:77:85:4A:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/977TP_AejgncT-3NAROcDneFSq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5a6d01-a375-4e11-871e-99e6141de7f1/1/PF-pOptTJOtJ0gZGlXmsuv3YMAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5a6d01-a375-4e11-871e-99e6141de7f1/1/977TP_AejgncT-3NAROcDneFSq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.70.84.0/22
Signature Algorithm: sha256WithRSAEncryption
46:22:7e:0c:bd:b1:10:c7:35:c0:cd:a4:4c:9d:1a:7e:a1:01:
7d:a7:90:6c:6e:ff:21:d7:d0:f0:6d:bc:b3:0b:07:11:14:04:
c4:c4:6d:7d:c2:e7:55:01:05:f6:2a:23:93:3a:2d:e4:5a:74:
ba:99:51:d5:e6:3f:e9:60:6c:d2:f6:6a:fc:0d:a3:56:4b:4b:
ae:4b:97:83:0e:27:03:2b:4f:d0:9d:b3:ae:7b:b9:08:57:cb:
40:98:3e:93:81:62:ef:fa:aa:07:c4:5f:95:b9:22:13:14:aa:
45:21:1b:53:6f:ae:d0:3a:05:66:02:ee:e5:36:5f:fa:2f:0b:
a5:16:86:2f:ae:d9:78:44:08:dc:e6:ad:d0:e7:46:19:89:d1:
af:1e:08:0f:7e:d9:f9:88:2d:64:a6:92:6f:2c:63:d3:0a:ce:
d3:f7:48:0a:cc:da:7e:26:1c:14:11:94:15:be:c5:47:f3:65:
c4:56:06:c4:8c:b9:6e:02:6a:8c:5f:48:98:ce:ec:51:f1:eb:
07:2d:63:ef:e3:f4:bd:03:36:9d:71:12:e0:af:78:4e:74:a7:
da:ea:98:fb:11:d9:f6:55:ba:52:9b:b0:1c:fb:bc:3b:b8:79:
7e:78:48:aa:15:69:99:e3:50:6e:35:b5:2c:4d:69:7a:1a:9d:
c8:b8:36:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:27 2023 by rpki-client on console-fra.rpki-client.org