Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/PwgHEyLu510xcatwB8DWS8KNQd0.roa
File: PwgHEyLu510xcatwB8DWS8KNQd0.roa (raw, json)
Hash identifier: saYcUZfk/A0npuWgZkXUg354sYLu/cRu2olejjTbZqI=
Subject key identifier: 3F:08:07:13:22:EE:E7:5D:31:71:AB:70:07:C0:D6:4B:C2:8D:41:DD
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 19346940
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/PwgHEyLu510xcatwB8DWS8KNQd0.roa
Signing time: Sat 01 Jan 2022 11:57:11 +0000
ROA not before: Sat 01 Jan 2022 11:57:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50886
IP address blocks: 85.122.144.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 422865216 (0x19346940)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 11:57:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f08071322eee75d3171ab7007c0d64bc28d41dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:15:c2:51:f3:4e:dd:8a:ff:74:ba:6c:4c:72:
61:4b:cb:4c:67:ea:5e:97:3a:97:c4:70:a6:b2:9d:
70:0b:44:d2:aa:73:50:a7:27:26:4e:58:88:0f:a7:
32:98:c0:d5:c3:5a:05:2d:dd:64:18:a4:0f:67:ee:
71:bb:99:55:ba:32:7c:b0:34:fd:ea:20:db:89:f4:
d7:3d:bd:98:40:f2:4a:c6:de:54:db:bf:28:73:be:
e6:1d:69:51:2f:ed:1d:24:a6:30:14:14:23:d7:fb:
12:27:7e:6c:d3:28:39:63:99:7a:65:25:a7:0f:c5:
73:6b:81:f9:c0:45:f8:0a:ea:d5:3e:a2:bd:8a:13:
40:1a:00:74:56:57:f9:fe:e8:d4:e2:41:7b:cf:63:
05:a0:4d:f4:97:5c:6e:74:97:6e:03:74:82:01:cc:
1c:31:b7:02:6b:c1:de:d8:62:98:e1:b5:31:a1:cf:
29:75:f2:3c:12:21:35:46:9c:1b:b4:be:14:8d:3e:
59:6a:20:6f:21:a5:45:45:ae:cc:a9:3a:70:6b:e1:
d3:de:41:98:99:04:bd:0b:30:21:f4:40:e5:1b:f9:
00:56:64:48:b2:02:56:7a:d5:f1:b0:a3:19:a2:d0:
c6:85:20:1e:5f:9b:eb:a2:68:eb:63:86:80:41:47:
58:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:08:07:13:22:EE:E7:5D:31:71:AB:70:07:C0:D6:4B:C2:8D:41:DD
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/PwgHEyLu510xcatwB8DWS8KNQd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.122.144.0/21
Signature Algorithm: sha256WithRSAEncryption
99:4e:1d:11:1e:ad:b2:33:d9:e1:a9:a6:5d:8b:ed:f0:65:41:
55:b8:11:a7:44:68:59:21:c7:a8:1c:1c:4c:5d:64:af:31:c4:
2d:8b:11:dd:ee:ff:70:b1:8a:79:88:10:63:8c:26:3a:d7:27:
44:56:f2:f6:d8:c7:79:db:f3:b0:81:ab:5e:5f:99:97:3c:27:
cb:12:e9:fe:19:aa:2e:a6:11:c1:1a:1b:1d:dd:76:0f:76:3f:
fe:8c:c6:dd:a5:71:d0:99:a2:03:0d:45:8e:6d:37:dc:26:ac:
87:f0:d0:b0:ea:a1:67:ae:30:3c:34:8b:9d:4a:08:b7:d2:41:
36:d7:3c:5d:0f:f1:fa:5b:0e:5c:a0:64:25:c7:35:f3:3e:91:
9c:2f:17:80:ae:2f:54:70:f1:7a:98:67:99:96:7e:a6:d8:78:
0a:84:27:16:d8:8d:49:00:79:de:2f:f4:60:30:90:14:ff:01:
6e:f8:34:3a:6c:a0:54:85:e2:3b:c6:32:f0:da:37:29:20:db:
f2:94:c6:6b:d3:3f:4c:68:8b:5f:0e:27:24:33:b6:ad:dc:51:
10:68:98:0b:02:93:d2:e3:bd:cf:bf:8e:b2:f1:bf:74:7a:84:
c2:b3:7f:c0:2d:a7:33:14:2a:64:78:4f:fc:b2:e9:38:d5:e4:
03:a2:0e:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:28 2023 by rpki-client on console-fra.rpki-client.org