Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/149bc5-51aa-4e7b-8f03-b73a36d939b2/1/PGAWFJ4H0KDoj2uO3jkM2bAjE0U.roa
File: PGAWFJ4H0KDoj2uO3jkM2bAjE0U.roa (raw, json)
Hash identifier: PiwRzc/AiNYRnVTH7bu8iUc1tU9Zp2LloFunH2IdKHo=
Subject key identifier: 3C:60:16:14:9E:07:D0:A0:E8:8F:6B:8E:DE:39:0C:D9:B0:23:13:45
Certificate issuer: /CN=15ffa042114301368b4069abd68a1efbac47fdce
Certificate serial: 1AE535FB
Authority key identifier: 15:FF:A0:42:11:43:01:36:8B:40:69:AB:D6:8A:1E:FB:AC:47:FD:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ff-gQhFDATaLQGmr1ooe-6xH_c4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/149bc5-51aa-4e7b-8f03-b73a36d939b2/1/PGAWFJ4H0KDoj2uO3jkM2bAjE0U.roa
Signing time: Sat 01 Jan 2022 07:54:28 +0000
ROA not before: Sat 01 Jan 2022 07:54:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60661
IP address blocks: 83.96.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 451229179 (0x1ae535fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15ffa042114301368b4069abd68a1efbac47fdce
Validity
Not Before: Jan 1 07:54:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c6016149e07d0a0e88f6b8ede390cd9b0231345
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:1c:8d:d3:24:30:0a:9b:65:1b:51:da:2d:82:
0b:ab:46:01:4e:0c:77:d5:9e:ec:58:a5:aa:45:9d:
8b:aa:df:2e:e9:92:52:d9:b5:d2:76:fb:c4:11:10:
07:23:ec:59:69:65:5e:e2:6b:39:6a:05:d4:24:39:
92:ff:26:1b:8c:72:16:38:e3:f8:3c:2c:12:05:2a:
9d:49:19:d1:4a:72:a3:ca:b7:2d:3b:36:b6:95:c0:
24:28:2c:4a:20:0c:74:de:1b:dc:01:c3:83:7d:66:
5f:cc:ce:82:29:e6:17:89:7d:0e:8e:6e:b8:58:dd:
69:b6:5f:01:56:91:8b:64:85:c5:91:8a:ff:73:24:
90:91:60:df:6a:68:8a:f3:a2:22:8a:4a:dc:e6:80:
18:39:3e:c2:a1:83:94:0d:dc:e7:cc:85:df:31:41:
e5:32:a5:2f:87:58:f8:61:cb:8a:3c:4d:bb:e3:0c:
a2:72:67:87:a7:a9:53:77:61:2e:49:75:90:91:0b:
45:40:f1:bb:8d:d5:4b:6c:58:f0:e3:84:e4:cf:13:
cc:6b:c6:f6:06:0d:af:9c:d3:b1:ed:7d:8a:d5:20:
c3:fe:f7:8f:36:c5:7c:24:5e:c4:f9:6f:a7:4c:b0:
10:b8:3f:b9:9e:43:c9:ab:23:fe:a7:b6:87:4e:8a:
3e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:60:16:14:9E:07:D0:A0:E8:8F:6B:8E:DE:39:0C:D9:B0:23:13:45
X509v3 Authority Key Identifier:
keyid:15:FF:A0:42:11:43:01:36:8B:40:69:AB:D6:8A:1E:FB:AC:47:FD:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ff-gQhFDATaLQGmr1ooe-6xH_c4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/149bc5-51aa-4e7b-8f03-b73a36d939b2/1/PGAWFJ4H0KDoj2uO3jkM2bAjE0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/149bc5-51aa-4e7b-8f03-b73a36d939b2/1/Ff-gQhFDATaLQGmr1ooe-6xH_c4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.96.31.0/24
Signature Algorithm: sha256WithRSAEncryption
47:12:3d:0d:79:4c:a5:2a:38:81:6f:57:5f:fd:a3:e6:71:28:
88:3f:e6:3b:73:f5:d8:91:a9:20:aa:cb:d7:2a:c1:2d:15:2f:
73:0b:ec:95:3c:83:64:18:e8:b1:31:be:56:6f:24:3a:14:85:
d1:14:8b:f1:c2:35:16:94:c2:37:fc:4f:26:00:c2:0e:81:f2:
0c:0d:9c:5c:56:e7:85:27:ec:9a:09:15:a5:dc:d5:8b:3a:5f:
01:3f:9d:6b:a2:1b:07:c0:65:ce:9b:d3:2f:6d:38:bb:09:41:
42:8a:af:a8:e3:7f:d9:ea:57:de:f2:83:3c:7f:ce:25:3a:55:
9d:65:95:91:c1:cd:99:ae:47:97:fe:bc:b4:bb:47:a7:48:f6:
36:a5:2b:bf:77:44:0e:94:fb:9c:3f:46:d3:33:2b:d2:20:cf:
76:9b:fa:70:cf:5d:d7:36:a0:50:74:03:d7:4b:5d:88:72:34:
f4:e2:66:ec:41:48:a9:75:30:8c:cd:87:b5:bf:80:1e:d7:5f:
45:94:c7:64:ec:52:32:54:30:22:16:ea:b3:9d:58:98:f7:c7:
1e:c2:03:9a:3d:78:01:08:28:fe:01:fe:c2:0d:4d:28:64:9e:
8c:d6:cf:ce:49:45:88:72:2f:79:64:63:8c:77:53:9c:77:4c:
1f:aa:19:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:34 2023 by rpki-client on console-ams.rpki-client.org