Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/de3041-9536-492e-a9cd-f2ae7bc7ecc5/1/pjWB7mk6DmZzBdMqmA-FmN6O7g0.roa
File: pjWB7mk6DmZzBdMqmA-FmN6O7g0.roa (raw, json)
Hash identifier: d2O6+u4E25d2ABqWRqHh+WutumSYq2MXsWK5FSr/oDA=
Subject key identifier: A6:35:81:EE:69:3A:0E:66:73:05:D3:2A:98:0F:85:98:DE:8E:EE:0D
Certificate issuer: /CN=2909fffcd81a66bc98b629d4c0579247645f0fe4
Certificate serial: 018313CCF7FFA4F76913B0A40B5C89CF5E6E
Authority key identifier: 29:09:FF:FC:D8:1A:66:BC:98:B6:29:D4:C0:57:92:47:64:5F:0F:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQn__NgaZryYtinUwFeSR2RfD-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/de3041-9536-492e-a9cd-f2ae7bc7ecc5/1/pjWB7mk6DmZzBdMqmA-FmN6O7g0.roa
Signing time: Tue 06 Sep 2022 17:15:43 +0000
ROA not before: Tue 06 Sep 2022 17:15:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 149794
IP address blocks: 2.57.57.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:13:cc:f7:ff:a4:f7:69:13:b0:a4:0b:5c:89:cf:5e:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2909fffcd81a66bc98b629d4c0579247645f0fe4
Validity
Not Before: Sep 6 17:15:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a63581ee693a0e667305d32a980f8598de8eee0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5a:3a:85:07:87:1b:e1:8c:92:d4:d7:76:39:
98:b3:8b:da:22:72:ed:39:82:d9:f5:21:a4:85:84:
9c:6e:c6:94:04:c2:01:9c:ba:d8:89:4c:a8:ef:3c:
64:e4:81:62:47:f9:f9:11:6b:10:66:90:5a:a4:7d:
fb:f3:b0:70:cf:f6:3a:7c:b4:58:92:d2:dd:a5:5d:
fc:17:59:9c:51:ac:99:05:2f:20:4c:ad:27:32:28:
df:58:9e:f9:19:d3:e9:c0:df:e7:c8:3a:55:c9:aa:
7b:ab:ba:4b:d4:3c:cc:d8:5b:dc:7c:a4:94:cf:17:
6a:78:cf:cb:72:90:7d:2e:d5:f4:d2:f1:56:77:e8:
29:da:9a:ce:49:e9:95:96:f0:32:7b:94:0d:ec:77:
1c:cc:12:8a:cf:26:7d:72:ec:6f:19:7a:5d:a2:93:
21:3f:56:d2:37:4d:e7:96:c3:11:a9:2c:67:4d:09:
a8:7a:8b:17:03:e8:ba:b1:02:38:48:24:7f:f7:0e:
9b:b6:00:34:68:08:d5:8f:56:e4:b5:71:4b:08:5e:
cf:2f:e8:5b:40:66:0b:00:1d:a3:f8:74:bd:50:e0:
0e:aa:62:35:28:ac:88:d2:c9:7a:62:50:a1:7f:30:
1d:a4:a7:9e:96:cd:e3:48:74:e6:6e:49:d7:d2:07:
03:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:35:81:EE:69:3A:0E:66:73:05:D3:2A:98:0F:85:98:DE:8E:EE:0D
X509v3 Authority Key Identifier:
keyid:29:09:FF:FC:D8:1A:66:BC:98:B6:29:D4:C0:57:92:47:64:5F:0F:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQn__NgaZryYtinUwFeSR2RfD-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/de3041-9536-492e-a9cd-f2ae7bc7ecc5/1/pjWB7mk6DmZzBdMqmA-FmN6O7g0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/de3041-9536-492e-a9cd-f2ae7bc7ecc5/1/KQn__NgaZryYtinUwFeSR2RfD-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.57.0/24
Signature Algorithm: sha256WithRSAEncryption
80:99:df:8f:4d:23:5a:d5:62:f1:91:1b:fe:b9:65:3a:2b:78:
a9:ca:df:62:80:8e:39:53:a7:27:30:d8:c2:a6:00:5e:04:82:
10:80:6f:d5:43:9a:e8:0d:5f:1f:ba:8a:73:8b:7a:31:d9:6c:
36:62:54:d5:be:ed:3e:69:bc:b3:e2:0d:10:1d:93:6c:8d:06:
38:8a:2c:18:75:e8:f4:7e:fc:ec:92:11:a1:1e:7f:bc:8b:28:
56:d9:be:21:70:64:49:22:2b:88:ac:1f:01:5e:4d:26:21:ef:
65:07:15:ce:43:55:17:68:21:11:48:11:78:f4:cc:61:d1:92:
9e:c3:aa:41:f0:34:53:cd:bf:75:71:58:c6:0d:2e:3a:6c:96:
65:e3:5c:0b:91:0b:f9:89:66:7d:f6:1a:c0:6c:1c:a6:c8:e1:
f6:27:69:39:81:d2:54:20:b7:e6:08:79:f1:c7:28:18:59:91:
6c:90:01:8d:46:72:4a:91:67:99:eb:38:ff:9b:57:49:fd:e1:
10:f0:5c:87:eb:6f:83:5e:c1:49:a9:16:6a:40:f8:a0:ca:e1:
c0:de:b6:ce:e4:f1:07:74:14:91:71:e9:29:c6:40:9a:99:6b:
87:00:ba:5c:0d:58:d4:a9:f7:ea:b5:6e:14:53:73:77:c4:5d:
ae:9b:c7:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:11 2024 by rpki-client on console-ams.rpki-client.org