Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/PQfZwC0uFKywedbO_OCu8ngxopY.roa
File: PQfZwC0uFKywedbO_OCu8ngxopY.roa (raw, json)
Hash identifier: JlzLKr88aRxN76VTDoXrq916GkyRHPPUvH0GodX2hds=
Subject key identifier: 3D:07:D9:C0:2D:2E:14:AC:B0:79:D6:CE:FC:E0:AE:F2:78:31:A2:96
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 0183925AD0321351C8EB7B142CD759D76750
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/PQfZwC0uFKywedbO_OCu8ngxopY.roa
Signing time: Sat 01 Oct 2022 07:02:48 +0000
ROA not before: Sat 01 Oct 2022 07:02:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207279
IP address blocks: 185.244.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:92:5a:d0:32:13:51:c8:eb:7b:14:2c:d7:59:d7:67:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Oct 1 07:02:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d07d9c02d2e14acb079d6cefce0aef27831a296
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a7:e8:1b:17:d5:45:43:a7:fd:e1:03:f5:b2:
1f:50:be:b1:45:70:b4:98:34:d1:93:65:2e:87:b3:
7c:2e:e6:5d:60:0d:4f:24:93:4f:14:56:ac:f0:e3:
66:6d:56:ab:c3:73:4e:0a:6d:96:55:0c:1e:47:a0:
92:ec:83:b0:fb:c6:94:67:1e:42:74:a7:1a:7e:0f:
fb:0b:87:5a:c8:f9:e6:b7:d6:f3:9a:9c:bf:99:3f:
b2:26:43:13:94:4a:71:cf:97:32:14:bf:b9:68:2a:
e7:63:7e:1a:3f:ef:5f:34:f1:2b:90:95:52:a2:f2:
3f:be:00:21:e8:39:c1:fb:1b:c3:ed:e1:ca:28:1a:
e7:24:d4:e0:72:cf:fe:5e:cd:fd:08:67:76:1d:01:
a2:4e:f9:a1:c3:e9:83:d0:04:fa:94:aa:03:d2:e0:
c5:c2:45:b1:55:7a:5c:d0:fc:40:40:92:d2:fa:7b:
55:99:0e:12:07:29:eb:07:37:34:79:00:27:0f:3a:
d9:04:d4:f6:f0:d3:8f:0c:41:e7:80:b2:d6:9a:5a:
46:2f:99:31:dc:af:04:3d:eb:5c:9f:96:e8:3f:44:
11:25:e1:71:8b:37:fa:1b:f4:e5:8a:aa:65:9b:3d:
0e:a6:53:c3:58:b8:e1:ef:b5:30:8a:1a:e6:9b:e6:
66:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:07:D9:C0:2D:2E:14:AC:B0:79:D6:CE:FC:E0:AE:F2:78:31:A2:96
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/PQfZwC0uFKywedbO_OCu8ngxopY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.107.0/24
Signature Algorithm: sha256WithRSAEncryption
21:98:9d:c2:b2:ef:e4:42:50:6c:0b:fc:ba:ce:0f:76:74:88:
cd:90:e1:ec:53:86:e1:40:60:64:7f:2b:b4:86:7e:ff:05:33:
8f:54:45:2a:7a:51:b4:47:1f:bd:41:7b:70:00:02:94:c1:eb:
c4:be:b0:f0:4a:e0:b2:14:e1:09:0f:4c:2d:d6:b4:39:2b:2c:
a6:ab:1b:b8:61:46:ce:c6:c4:71:9f:6e:09:e7:a7:39:41:6a:
62:a2:eb:34:bc:ed:75:f4:75:4e:96:25:27:90:fb:c7:3f:d3:
50:0d:0c:73:88:37:62:94:92:47:42:bb:e6:c0:82:91:74:61:
83:33:2c:72:26:c8:a0:20:77:69:17:07:2a:2e:fd:5d:fe:7f:
b7:0c:ca:3f:bb:a8:83:fc:26:69:44:87:02:e1:d3:ec:9b:5c:
73:89:f1:1f:66:e3:23:db:1b:f1:f4:9a:6d:98:bf:18:18:15:
90:35:96:a5:98:8d:7c:f1:ee:ee:c4:28:ed:23:37:93:69:51:
22:b8:49:92:78:e3:1e:f5:45:27:d2:09:2c:9e:1f:c1:49:ca:
68:9b:46:56:2d:c3:45:a2:1e:dc:f8:13:4f:11:ed:e1:3c:1f:
ff:cb:6d:1f:d7:88:f7:20:65:42:b6:dc:f7:96:2f:2e:5e:7b:
72:a7:bf:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:57 2023 by rpki-client on console-ams.rpki-client.org