Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/e32df8-3a1e-42fc-b351-0ed24ebc4ed8/1/pgtOlProfuOtfsIMTFHM8Go64NI.roa
File: pgtOlProfuOtfsIMTFHM8Go64NI.roa (raw, json)
Hash identifier: 4uFeuhREJueN5MKK7zDdjk9uyWx806xCAFmlkuav43A=
Subject key identifier: A6:0B:4E:94:FA:E8:7E:E3:AD:7E:C2:0C:4C:51:CC:F0:6A:3A:E0:D2
Certificate issuer: /CN=c77fe005d7e58ec033ca9aba87e0606021533617
Certificate serial: 0184619B63999D4023B3639FD981CFB2E527
Authority key identifier: C7:7F:E0:05:D7:E5:8E:C0:33:CA:9A:BA:87:E0:60:60:21:53:36:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x3_gBdfljsAzypq6h-BgYCFTNhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/e32df8-3a1e-42fc-b351-0ed24ebc4ed8/1/pgtOlProfuOtfsIMTFHM8Go64NI.roa
Signing time: Thu 10 Nov 2022 12:54:44 +0000
ROA not before: Thu 10 Nov 2022 12:54:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49840
IP address blocks: 95.142.135.0/24 maxlen: 24
95.142.134.0/24 maxlen: 24
95.142.133.0/24 maxlen: 24
95.142.136.0/24 maxlen: 24
95.142.128.0/24 maxlen: 24
95.142.131.0/24 maxlen: 24
95.142.130.0/24 maxlen: 24
95.142.129.0/24 maxlen: 24
95.142.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:61:9b:63:99:9d:40:23:b3:63:9f:d9:81:cf:b2:e5:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c77fe005d7e58ec033ca9aba87e0606021533617
Validity
Not Before: Nov 10 12:54:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a60b4e94fae87ee3ad7ec20c4c51ccf06a3ae0d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:9b:e8:f6:7d:11:ef:f8:ed:10:d3:7d:14:5f:
9c:d3:a0:a2:a2:2e:03:16:74:3b:0d:5d:6c:96:ff:
07:2a:cc:48:af:4a:a9:36:04:c4:ea:3d:63:9c:d3:
f9:0c:a7:92:3a:3f:be:72:fe:95:a7:ba:17:c9:2e:
26:4e:47:3e:88:82:a4:74:b6:df:28:72:7c:99:08:
20:0f:b1:43:ec:32:31:32:8a:fb:b9:8d:b6:9a:40:
09:dd:53:5d:e6:06:d8:23:c6:3e:7d:8d:73:a5:fd:
26:47:68:a4:88:fd:f9:77:f0:3b:9b:c6:ee:e4:a8:
15:ac:2e:87:b5:d8:4b:64:3c:20:0a:6f:2b:b1:2a:
71:5f:e4:a0:62:3f:6d:17:95:cb:85:9f:98:67:e1:
96:d9:4b:57:df:8a:33:37:6d:27:10:4c:77:86:3d:
99:9e:18:e1:d2:ef:5c:00:18:02:99:36:e2:de:56:
ab:81:0c:e7:bb:84:d6:19:31:c1:26:93:5d:da:a3:
8e:d1:08:3e:d4:77:58:f7:23:6d:4d:17:a4:1c:60:
97:ef:aa:0b:82:d4:db:93:09:5b:8c:cd:c7:c2:29:
c3:dc:5c:63:5f:af:e7:70:02:4d:88:9b:02:88:9c:
19:d6:d8:3e:c9:2c:3b:43:97:d3:13:e2:e8:4e:6c:
53:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:0B:4E:94:FA:E8:7E:E3:AD:7E:C2:0C:4C:51:CC:F0:6A:3A:E0:D2
X509v3 Authority Key Identifier:
keyid:C7:7F:E0:05:D7:E5:8E:C0:33:CA:9A:BA:87:E0:60:60:21:53:36:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x3_gBdfljsAzypq6h-BgYCFTNhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/e32df8-3a1e-42fc-b351-0ed24ebc4ed8/1/pgtOlProfuOtfsIMTFHM8Go64NI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/e32df8-3a1e-42fc-b351-0ed24ebc4ed8/1/x3_gBdfljsAzypq6h-BgYCFTNhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.142.128.0-95.142.136.255
Signature Algorithm: sha256WithRSAEncryption
d3:0e:87:f2:55:47:c2:7d:be:93:34:17:0a:04:6a:55:ee:1e:
06:f2:15:6c:a3:b9:f7:c9:10:7b:a6:36:5f:37:ce:26:d7:9e:
3d:ee:d5:f4:2b:93:9f:1c:e5:ea:5b:f8:4b:b0:d6:ce:80:6f:
d2:8c:d5:2d:8d:c2:ad:04:20:04:22:1f:4b:56:c3:a2:17:df:
70:32:da:ba:fd:74:95:4d:e2:86:6f:d4:84:ca:f5:30:ad:00:
30:bc:e8:8f:7e:df:ea:95:35:24:c8:85:fa:2f:d4:ae:6b:f8:
ff:e6:3f:99:78:87:0a:ee:fb:93:90:71:8e:fe:26:d5:7e:2d:
6f:0b:8f:b6:8b:89:b0:1a:5c:99:20:9e:07:b8:af:7b:04:41:
3f:a0:d2:38:37:36:3d:35:65:52:b7:27:f0:9f:0e:b1:1f:fd:
4b:56:96:d8:8b:a2:94:17:78:db:b8:59:f4:11:97:a9:be:d9:
6b:d9:c9:f3:d9:bf:a5:0d:06:2c:3f:3b:75:93:db:5e:3e:87:
b1:69:36:1d:f1:29:0e:bc:0a:e7:75:e6:a1:7b:e2:60:ff:92:
3d:47:c5:e1:32:b4:df:46:d8:fa:62:25:ac:e9:17:a6:86:40:
27:06:fe:83:76:a4:d8:87:a5:45:46:eb:53:12:66:2f:17:42:
77:b0:29:d7
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYRhm2OZnUAjs2Of2YHPsuUnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM3N2ZlMDA1ZDdlNThlYzAzM2NhOWFiYTg3ZTA2MDYwMjE1
MzM2MTcwHhcNMjIxMTEwMTI1NDQ0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNjBiNGU5NGZhZTg3ZWUzYWQ3ZWMyMGM0YzUxY2NmMDZhM2FlMGQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl5vo9n0R7/jtENN9FF+c06Cioi4D
FnQ7DV1slv8HKsxIr0qpNgTE6j1jnNP5DKeSOj++cv6Vp7oXyS4mTkc+iIKkdLbf
KHJ8mQggD7FD7DIxMor7uY22mkAJ3VNd5gbYI8Y+fY1zpf0mR2ikiP35d/A7m8bu
5KgVrC6HtdhLZDwgCm8rsSpxX+SgYj9tF5XLhZ+YZ+GW2UtX34ozN20nEEx3hj2Z
nhjh0u9cABgCmTbi3largQznu4TWGTHBJpNd2qOO0Qg+1HdY9yNtTRekHGCX76oL
gtTbkwlbjM3HwinD3FxjX6/ncAJNiJsCiJwZ1tg+ySw7Q5fTE+LoTmxTQQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFKYLTpT66H7jrX7CDExRzPBqOuDSMB8GA1UdIwQY
MBaAFMd/4AXX5Y7AM8qauofgYGAhUzYXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveDNfZ0JkZmxqc0F6eXBxNmgtQmdZQ0ZUTmhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9lMzJkZjgtM2ExZS00MmZjLWIzNTEt
MGVkMjRlYmM0ZWQ4LzEvcGd0T2xQcm9mdU90ZnNJTVRGSE04R282NE5JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy9lMzJkZjgtM2ExZS00MmZjLWIzNTEtMGVkMjRlYmM0ZWQ4
LzEveDNfZ0JkZmxqc0F6eXBxNmgtQmdZQ0ZUTmhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAdfjoAD
BABfjogwDQYJKoZIhvcNAQELBQADggEBANMOh/JVR8J9vpM0FwoEalXuHgbyFWyj
uffJEHumNl83zibXnj3u1fQrk58c5epb+Euw1s6Ab9KM1S2Nwq0EIAQiH0tWw6IX
33Ay2rr9dJVN4oZv1ITK9TCtADC86I9+3+qVNSTIhfov1K5r+P/mP5l4hwru+5OQ
cY7+JtV+LW8Lj7aLibAaXJkgnge4r3sEQT+g0jg3Nj01ZVK3J/CfDrEf/UtWltiL
opQXeNu4WfQRl6m+2WvZyfPZv6UNBiw/O3WT214+h7FpNh3xKQ68Cud15qF74mD/
kj1HxeEytN9G2PpiJazpF6aGQCcG/oN2pNiHpUVG61MSZi8XQnewKdc=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:59 2023 by rpki-client on console-fra.rpki-client.org