Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/PPGDbcMUnLrYjLg-w1w3kK7EU4I.roa
File: PPGDbcMUnLrYjLg-w1w3kK7EU4I.roa (raw, json)
Hash identifier: Ee9ZjuJx4x788QPPEibgGMGWEZ4I2m64IEFNSsEal8M=
Subject key identifier: 3C:F1:83:6D:C3:14:9C:BA:D8:8C:B8:3E:C3:5C:37:90:AE:C4:53:82
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 0184C2A1985E5D15E3FF1C39DD01342B9B5D
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/PPGDbcMUnLrYjLg-w1w3kK7EU4I.roa
Signing time: Tue 29 Nov 2022 09:04:40 +0000
ROA not before: Tue 29 Nov 2022 09:04:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43350
IP address blocks: 94.74.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c2:a1:98:5e:5d:15:e3:ff:1c:39:dd:01:34:2b:9b:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Nov 29 09:04:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3cf1836dc3149cbad88cb83ec35c3790aec45382
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:10:2c:ba:e2:fd:c3:eb:35:89:a2:96:20:34:
90:95:f0:0e:8b:03:45:c9:50:47:86:46:70:a6:73:
58:e5:f0:84:38:ef:12:b5:33:1e:38:d9:fd:34:28:
b9:e8:fa:94:5e:ac:db:63:0a:06:bf:82:a2:67:71:
9a:4b:47:5a:49:21:26:ce:29:61:c2:76:16:cf:58:
18:9f:f0:ae:37:9a:66:34:d5:46:1a:05:ab:25:cc:
44:7c:d4:b7:55:45:a5:b9:ce:7d:f4:98:37:16:33:
4b:f9:9d:0a:50:85:e8:75:63:c4:c9:4a:f5:61:61:
e1:96:97:22:9d:e9:36:c1:67:03:76:0b:f3:21:1d:
5a:ab:c6:6a:b5:8c:be:41:aa:45:44:e6:98:72:87:
86:f4:af:ec:bc:23:29:b3:cb:f0:01:bf:ac:3e:65:
c5:42:57:f3:1a:af:08:84:eb:42:b8:e8:0f:c4:ba:
71:7b:63:d2:ac:b2:ef:95:90:00:02:0d:52:15:99:
a0:10:ac:1a:b7:9e:60:e3:87:4a:17:81:97:42:1b:
be:a8:72:9e:67:53:f7:b6:94:25:8d:bc:0f:ec:74:
f6:2e:2d:17:9d:58:f2:02:2c:d4:b7:b2:6c:c5:b7:
7e:4e:c7:49:40:15:a8:aa:cc:f4:1b:4c:00:61:76:
74:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:F1:83:6D:C3:14:9C:BA:D8:8C:B8:3E:C3:5C:37:90:AE:C4:53:82
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/PPGDbcMUnLrYjLg-w1w3kK7EU4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.74.157.0/24
Signature Algorithm: sha256WithRSAEncryption
72:75:e4:53:55:8b:b2:a4:84:5b:87:c4:cb:54:34:8e:1a:df:
15:f4:7d:db:8a:69:70:7f:8e:42:18:b4:23:96:7e:df:da:87:
18:a7:2d:16:15:e2:ce:de:c3:81:d7:0a:d8:8e:63:18:27:86:
d8:35:41:4f:6a:0f:8d:3b:09:d4:d4:ad:41:7e:08:64:e1:5d:
9f:2e:78:f4:94:a5:db:3c:6c:4e:74:20:79:99:84:17:53:35:
6d:24:3b:fe:99:91:e8:57:19:84:cd:cf:14:e7:45:0b:59:42:
ad:07:81:69:ff:29:68:fd:7b:4e:0c:96:9e:8d:10:81:fb:c1:
a2:2c:de:30:61:3f:19:af:cd:14:cf:7a:a5:5a:2c:5e:f9:a2:
af:35:3d:37:d3:4a:40:e3:a0:bd:d8:f1:83:c4:7d:e2:f9:18:
95:86:3b:6d:62:2e:fa:0f:c6:5d:1a:68:75:61:d5:5d:87:bf:
d1:ef:59:35:34:d1:80:31:42:ca:5e:ef:f9:00:2f:7d:be:2a:
da:f9:90:91:60:df:1a:02:94:28:96:72:70:b5:89:5e:39:26:
a2:ab:27:2b:24:61:63:0d:75:72:ab:c2:c8:87:ad:93:b3:d2:
15:31:28:a8:8b:13:5f:6a:0d:7e:28:12:d4:f7:2a:f3:f8:d7:
cc:f5:86:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:02:16 2025 by rpki-client