Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/188218-9ee7-40cc-8d12-9a8243e84e54/1/PPsNqxJW0nywMJvMByBtpKsshkI.roa
File: PPsNqxJW0nywMJvMByBtpKsshkI.roa (raw, json)
Hash identifier: aJX+8eSNnBYXRglWL8x/xE8vFx4vqwYumIuFV23FVXM=
Subject key identifier: 3C:FB:0D:AB:12:56:D2:7C:B0:30:9B:CC:07:20:6D:A4:AB:2C:86:42
Certificate issuer: /CN=dcaa274445826e3d795c3ed18c27700eeac1ca62
Certificate serial: 022E38
Authority key identifier: DC:AA:27:44:45:82:6E:3D:79:5C:3E:D1:8C:27:70:0E:EA:C1:CA:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3KonREWCbj15XD7RjCdwDurBymI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/188218-9ee7-40cc-8d12-9a8243e84e54/1/PPsNqxJW0nywMJvMByBtpKsshkI.roa
Signing time: Tue 29 Mar 2022 06:26:10 +0000
ROA not before: Tue 29 Mar 2022 06:26:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209281
IP address blocks: 185.163.132.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142904 (0x22e38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcaa274445826e3d795c3ed18c27700eeac1ca62
Validity
Not Before: Mar 29 06:26:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3cfb0dab1256d27cb0309bcc07206da4ab2c8642
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e2:ae:f0:ec:48:0f:ba:f2:92:05:38:67:05:
ea:e2:92:a1:2f:01:af:ae:2e:ff:10:a2:32:05:a9:
bd:41:68:3a:12:51:61:3d:71:ce:8c:55:eb:4d:80:
c7:a5:a2:c7:6d:a1:49:18:c6:98:0e:80:56:24:2c:
3a:87:81:65:80:db:07:b3:b2:a3:31:ae:73:cc:35:
3e:33:5c:b4:18:17:49:a4:84:90:81:38:e2:d8:21:
cb:d4:bd:7e:36:3f:08:24:52:c5:21:7d:aa:e1:62:
6a:79:11:5e:5d:5a:51:5f:4d:35:d8:b7:d5:05:2c:
a9:39:66:db:d3:82:bf:ce:cb:91:8b:20:aa:ea:fc:
c9:eb:2c:63:cb:3d:93:01:2b:e5:04:23:ef:3e:8e:
9b:46:0f:d9:e3:61:29:52:48:c3:fa:17:3a:80:d2:
01:b8:dd:fa:96:5e:ca:05:bb:90:58:7f:3c:be:fa:
18:8b:3a:f7:4f:4d:b9:f7:35:4a:3a:5e:9f:8c:65:
8d:11:2e:2c:66:51:c2:b8:f4:66:7d:3c:17:ca:64:
33:fd:88:5b:17:52:16:fb:22:b4:c0:7b:f8:ed:2e:
5d:64:15:e5:75:72:f7:71:45:d8:60:bd:05:65:59:
7a:f9:6b:24:3e:d5:1f:26:51:46:7f:d3:8b:79:2e:
b1:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:FB:0D:AB:12:56:D2:7C:B0:30:9B:CC:07:20:6D:A4:AB:2C:86:42
X509v3 Authority Key Identifier:
keyid:DC:AA:27:44:45:82:6E:3D:79:5C:3E:D1:8C:27:70:0E:EA:C1:CA:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3KonREWCbj15XD7RjCdwDurBymI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/188218-9ee7-40cc-8d12-9a8243e84e54/1/PPsNqxJW0nywMJvMByBtpKsshkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/188218-9ee7-40cc-8d12-9a8243e84e54/1/3KonREWCbj15XD7RjCdwDurBymI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.163.132.0/22
Signature Algorithm: sha256WithRSAEncryption
06:9d:35:16:79:37:52:79:6d:cd:a2:aa:ca:a4:88:17:28:15:
e6:25:c7:78:03:1a:21:ba:61:a5:f8:f7:8c:c7:62:0a:9a:35:
05:2b:e7:c4:cc:f4:01:c2:fd:5e:59:6f:6d:16:80:17:e4:3a:
4e:dd:c3:c8:b1:8f:e6:d6:70:4c:1b:1a:d9:ca:9b:c4:16:7a:
86:7a:ee:a8:38:d8:0b:33:28:6e:a3:89:6c:03:49:a1:59:c3:
89:7f:78:1f:88:de:a8:6c:b5:61:64:4a:04:af:b4:ce:ea:34:
89:7b:1a:ca:ca:5e:5c:6a:62:84:d0:45:cc:95:a5:3b:5a:bf:
16:50:7c:f7:76:42:01:ac:9a:a0:c4:d6:05:6f:0b:b9:26:0f:
89:f0:bb:45:af:f9:7a:18:33:1d:72:28:d5:7d:27:e2:e1:d5:
26:00:02:d8:d4:c2:f4:0b:ea:2f:19:52:f8:db:cf:2c:ec:c2:
fc:5f:c2:78:03:3b:54:9f:92:70:17:78:f8:ac:a3:c7:d9:4b:
17:78:52:37:70:a7:f4:1c:80:95:06:7d:ca:48:49:87:a1:5b:
39:38:4f:f2:8c:00:d4:ec:cf:25:bf:d4:27:e5:95:a1:dd:c0:
93:fa:29:74:3b:c9:80:87:25:27:7f:9e:ab:25:2c:13:21:7e:
ee:c8:7e:38
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAi44MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGRj
YWEyNzQ0NDU4MjZlM2Q3OTVjM2VkMThjMjc3MDBlZWFjMWNhNjIwHhcNMjIwMzI5
MDYyNjEwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygzY2ZiMGRhYjEyNTZk
MjdjYjAzMDliY2MwNzIwNmRhNGFiMmM4NjQyMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAzuKu8OxID7rykgU4ZwXq4pKhLwGvri7/EKIyBam9QWg6ElFh
PXHOjFXrTYDHpaLHbaFJGMaYDoBWJCw6h4FlgNsHs7KjMa5zzDU+M1y0GBdJpISQ
gTji2CHL1L1+Nj8IJFLFIX2q4WJqeRFeXVpRX0012LfVBSypOWbb04K/zsuRiyCq
6vzJ6yxjyz2TASvlBCPvPo6bRg/Z42EpUkjD+hc6gNIBuN36ll7KBbuQWH88vvoY
izr3T0259zVKOl6fjGWNES4sZlHCuPRmfTwXymQz/YhbF1IW+yK0wHv47S5dZBXl
dXL3cUXYYL0FZVl6+WskPtUfJlFGf9OLeS6xWwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFDz7DasSVtJ8sDCbzAcgbaSrLIZCMB8GA1UdIwQYMBaAFNyqJ0RFgm49eVw+
0YwncA7qwcpiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
M0tvblJFV0NiajE1WEQ3UmpDZHdEdXJCeW1JLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8yNi8xODgyMTgtOWVlNy00MGNjLThkMTItOWE4MjQzZTg0ZTU0LzEv
UFBzTnF4Slcwbnl3TUp2TUJ5QnRwS3NzaGtJLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8x
ODgyMTgtOWVlNy00MGNjLThkMTItOWE4MjQzZTg0ZTU0LzEvM0tvblJFV0NiajE1
WEQ3UmpDZHdEdXJCeW1JLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuaOEMA0GCSqGSIb3DQEBCwUAA4IB
AQAGnTUWeTdSeW3NoqrKpIgXKBXmJcd4AxohumGl+PeMx2IKmjUFK+fEzPQBwv1e
WW9tFoAX5DpO3cPIsY/m1nBMGxrZypvEFnqGeu6oONgLMyhuo4lsA0mhWcOJf3gf
iN6obLVhZEoEr7TO6jSJexrKyl5camKE0EXMlaU7Wr8WUHz3dkIBrJqgxNYFbwu5
Jg+J8LtFr/l6GDMdcijVfSfi4dUmAALY1ML0C+ovGVL4288s7ML8X8J4AztUn5Jw
F3j4rKPH2UsXeFI3cKf0HICVBn3KSEmHoVs5OE/yjADU7M8lv9Qn5ZWh3cCT+il0
O8mAhyUnf56rJSwTIX7uyH44
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:15 2023 by rpki-client on console-ams.rpki-client.org