Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/bb01ce-b9b0-4b15-9400-394f50d4ba38/1/PNtnU53ebFkyahAEs2NCX7Fdmoc.roa
File: PNtnU53ebFkyahAEs2NCX7Fdmoc.roa (raw, json)
Hash identifier: GRuPHPePMvCfwebij6KB4VsRKRta9bralVGY8s2xmRg=
Subject key identifier: 3C:DB:67:53:9D:DE:6C:59:32:6A:10:04:B3:63:42:5F:B1:5D:9A:87
Certificate issuer: /CN=27b24fd66efe6dc5c3aab2e2e651a4e207fe62e7
Certificate serial: 01AFAA6F
Authority key identifier: 27:B2:4F:D6:6E:FE:6D:C5:C3:AA:B2:E2:E6:51:A4:E2:07:FE:62:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J7JP1m7-bcXDqrLi5lGk4gf-Yuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/bb01ce-b9b0-4b15-9400-394f50d4ba38/1/PNtnU53ebFkyahAEs2NCX7Fdmoc.roa
Signing time: Sat 01 Jan 2022 15:03:39 +0000
ROA not before: Sat 01 Jan 2022 15:03:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61073
IP address blocks: 185.51.123.0/24 maxlen: 24
2a04:1680::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28289647 (0x1afaa6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27b24fd66efe6dc5c3aab2e2e651a4e207fe62e7
Validity
Not Before: Jan 1 15:03:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3cdb67539dde6c59326a1004b363425fb15d9a87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:4b:76:bb:80:ce:48:4d:0b:2f:59:5f:e9:df:
46:e2:a2:89:c4:82:8e:c0:9c:02:16:b2:7d:e6:10:
3b:17:f4:39:0d:36:17:95:25:ea:7a:08:b5:77:dd:
2c:d2:0d:d4:7a:b2:0d:48:a8:44:60:eb:6e:64:1f:
15:dd:6f:d4:c0:44:ea:25:2a:05:08:0f:86:fe:47:
81:61:4a:23:e2:fa:1f:85:2f:57:c4:d1:14:22:c4:
ca:07:2b:c8:48:a3:2b:21:20:67:31:46:cb:4a:7e:
92:6d:b2:4d:70:4e:2d:e7:8f:28:4e:c9:b5:f6:e2:
49:c0:fc:cf:d6:89:58:0b:70:ae:34:0a:41:73:df:
cc:ba:f5:92:33:18:9d:96:09:b8:09:31:59:2f:c9:
2d:8a:b7:0d:c0:20:81:79:f3:db:de:a6:29:fb:38:
1b:88:4e:37:c6:b5:98:41:97:e2:4d:99:a0:b0:f6:
08:e4:70:57:0b:16:10:2a:6c:3d:05:f2:1a:48:16:
52:8e:9e:df:1e:65:39:81:aa:6d:e6:49:47:9a:fe:
0a:63:71:c3:49:7c:18:03:93:ed:17:8c:53:05:e7:
ba:b7:5c:3b:b9:7e:fa:dd:5f:9f:3f:87:c4:66:e7:
13:f4:22:32:52:49:4b:fc:1b:5a:e1:47:a6:ad:c4:
89:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:DB:67:53:9D:DE:6C:59:32:6A:10:04:B3:63:42:5F:B1:5D:9A:87
X509v3 Authority Key Identifier:
keyid:27:B2:4F:D6:6E:FE:6D:C5:C3:AA:B2:E2:E6:51:A4:E2:07:FE:62:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J7JP1m7-bcXDqrLi5lGk4gf-Yuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/bb01ce-b9b0-4b15-9400-394f50d4ba38/1/PNtnU53ebFkyahAEs2NCX7Fdmoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/bb01ce-b9b0-4b15-9400-394f50d4ba38/1/J7JP1m7-bcXDqrLi5lGk4gf-Yuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.123.0/24
IPv6:
2a04:1680::/29
Signature Algorithm: sha256WithRSAEncryption
57:b3:bb:7e:28:12:5b:7c:ea:31:2f:c9:d3:94:5f:36:1a:18:
e3:e8:ea:b5:d1:6e:20:40:c8:55:cb:8d:7c:af:8c:c2:78:da:
69:d9:08:e1:58:f2:32:99:2f:0a:96:ff:87:3f:ce:cb:62:30:
35:8b:df:e1:c5:b9:18:2e:51:49:b8:3d:fa:e3:e2:8f:46:3f:
74:19:5b:6d:a3:25:b7:3e:91:f5:82:17:8b:10:8a:fe:78:13:
e7:f2:e8:6e:4a:14:16:e9:58:ce:7c:29:58:25:c8:67:6a:b9:
cd:91:e5:d2:3d:f5:12:ad:46:7e:d7:e3:ae:1b:82:99:b3:f6:
32:e4:dc:84:b8:59:eb:44:e1:86:f1:05:66:c1:a7:49:e4:97:
95:5e:88:d6:38:34:b3:ce:3f:10:44:94:c9:82:c3:e6:c7:ea:
4d:30:ac:74:5e:e6:d3:dd:d9:f9:5d:dc:2d:47:f1:36:74:f1:
09:e5:03:16:77:ca:eb:7e:95:eb:d9:1d:30:02:72:cc:6f:99:
cd:7d:c9:5e:86:c2:9c:79:7a:b4:e5:27:c1:76:3f:80:31:7f:
6f:50:e6:2e:c6:a5:65:08:71:cf:ed:20:ba:1f:6d:2f:88:c5:
c5:79:36:3a:bc:fb:a6:52:7a:f9:12:36:78:cf:3d:da:f5:69:
e1:0c:60:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:07 2024 by rpki-client on console-fra.rpki-client.org