Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/PMz7VJHjOwdKFQ3-gOkQ-tNz3r4.roa
File: PMz7VJHjOwdKFQ3-gOkQ-tNz3r4.roa (raw, json)
Hash identifier: uHp7yHR3gBQQV95qJ/J7PMdY7iHG3+F88AxcAW5pztw=
Subject key identifier: 3C:CC:FB:54:91:E3:3B:07:4A:15:0D:FE:80:E9:10:FA:D3:73:DE:BE
Certificate issuer: /CN=27e0f7bbbe4031a24ef1b9db196aab0642e84a06
Certificate serial: 1E17CD9F
Authority key identifier: 27:E0:F7:BB:BE:40:31:A2:4E:F1:B9:DB:19:6A:AB:06:42:E8:4A:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J-D3u75AMaJO8bnbGWqrBkLoSgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/PMz7VJHjOwdKFQ3-gOkQ-tNz3r4.roa
Signing time: Sat 01 Jan 2022 07:01:39 +0000
ROA not before: Sat 01 Jan 2022 07:01:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8758
IP address blocks: 185.104.84.0/22 maxlen: 24
146.185.64.0/19 maxlen: 24
185.63.64.0/22 maxlen: 24
2a04:f340::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 504876447 (0x1e17cd9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27e0f7bbbe4031a24ef1b9db196aab0642e84a06
Validity
Not Before: Jan 1 07:01:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3cccfb5491e33b074a150dfe80e910fad373debe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f1:15:2c:51:b3:09:ba:29:64:77:e2:ed:c6:
48:ea:ea:8b:ad:21:e3:b0:90:b2:2e:ca:4c:92:34:
86:c6:6c:d4:4c:12:7b:a6:02:8a:a2:d6:e3:6e:11:
d7:e1:13:c2:c9:b2:17:47:f4:97:e1:fa:ff:ec:c0:
aa:6e:26:4a:ff:5f:34:19:24:80:e0:e7:72:32:de:
ac:c5:0a:f6:45:43:78:bf:e2:a4:ed:3b:e8:03:f8:
a8:b1:23:d4:87:66:ee:73:af:7d:96:0b:19:5f:61:
ee:fe:25:55:78:59:b2:24:cf:31:00:bb:53:97:e4:
a9:7f:de:f1:73:fd:8e:28:07:72:9f:ec:8c:8d:5f:
87:bd:f5:2b:28:d7:34:12:04:41:0a:ad:8a:8e:f3:
b5:0c:2d:40:f8:6f:4e:e3:65:1b:56:4f:18:35:93:
e4:c2:61:4e:0c:89:1c:34:ce:a6:4a:2c:cd:3f:44:
53:e7:21:01:f9:e6:7a:99:a9:a2:c3:48:ad:6c:68:
c9:4b:b6:ca:a8:36:63:2b:43:04:e6:09:48:fe:e1:
eb:71:47:4a:74:22:78:23:71:33:90:64:4a:52:4e:
a5:ce:be:c3:c7:ea:82:f6:d7:b7:3c:90:16:b8:4d:
d8:2d:f1:a3:4f:68:84:3c:5c:d7:a9:3a:55:31:bf:
e1:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:CC:FB:54:91:E3:3B:07:4A:15:0D:FE:80:E9:10:FA:D3:73:DE:BE
X509v3 Authority Key Identifier:
keyid:27:E0:F7:BB:BE:40:31:A2:4E:F1:B9:DB:19:6A:AB:06:42:E8:4A:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J-D3u75AMaJO8bnbGWqrBkLoSgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/PMz7VJHjOwdKFQ3-gOkQ-tNz3r4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/J-D3u75AMaJO8bnbGWqrBkLoSgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.185.64.0/19
185.63.64.0/22
185.104.84.0/22
IPv6:
2a04:f340::/29
Signature Algorithm: sha256WithRSAEncryption
a5:8a:92:99:52:64:4a:ff:ab:ed:d4:55:65:c3:ae:94:a5:4b:
0d:5c:5d:62:d9:b1:c1:2e:ff:db:b8:21:0b:b9:72:72:9d:b4:
36:31:45:0d:87:ef:47:0c:7a:35:c0:ac:89:b4:5d:f0:6e:b5:
d4:a6:af:5a:58:bb:9f:1e:43:ee:16:b9:d5:39:9e:11:5d:5f:
4a:86:c4:d3:84:ab:8f:6d:21:18:90:2e:17:e7:64:8b:8c:f4:
80:12:c1:a0:ac:96:82:b7:8e:e6:f3:8e:b0:e2:69:f2:a4:24:
66:d9:ac:17:1c:9e:51:1a:60:91:f5:bd:a8:6f:ed:95:ce:ae:
99:75:0c:c5:f2:fd:1b:5f:c1:34:11:2c:0e:c0:f7:91:03:52:
33:e3:31:35:98:92:5b:23:4c:ff:a0:c1:e8:28:9a:4b:06:77:
32:2e:d9:1f:49:e8:81:fb:a3:64:56:56:a7:4a:92:7d:4f:97:
ed:2f:54:a0:a6:ee:e1:92:e7:a4:53:85:9d:3a:59:44:6b:4e:
58:77:52:6d:30:17:40:fe:41:1b:38:4f:7d:bc:ac:76:00:73:
07:e7:2f:b0:2d:9a:e2:8f:b4:a5:84:0e:4c:1c:14:25:5c:6b:
01:29:a5:a2:a4:38:8e:d6:91:6a:e9:65:3f:7c:1a:7c:fb:70:
94:08:98:75
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:31 2024 by rpki-client on console-ams.rpki-client.org