Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/0580b2-f6a4-4de6-9103-a01d729b0a21/1/PRh04Is8PIRHnG5pTLW5CD3jbGQ.roa
File: PRh04Is8PIRHnG5pTLW5CD3jbGQ.roa (raw, json)
Hash identifier: AYAUhVBbPUBo8fo9PSek5ORnO0mi29D26vCMtOOjFU8=
Subject key identifier: 3D:18:74:E0:8B:3C:3C:84:47:9C:6E:69:4C:B5:B9:08:3D:E3:6C:64
Certificate issuer: /CN=9a3ce5c5a730cd8e2ff1f55d180f1a81b3000cc8
Certificate serial: 29C78365
Authority key identifier: 9A:3C:E5:C5:A7:30:CD:8E:2F:F1:F5:5D:18:0F:1A:81:B3:00:0C:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mjzlxacwzY4v8fVdGA8agbMADMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/0580b2-f6a4-4de6-9103-a01d729b0a21/1/PRh04Is8PIRHnG5pTLW5CD3jbGQ.roa
Signing time: Sat 01 Jan 2022 10:55:07 +0000
ROA not before: Sat 01 Jan 2022 10:55:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5432
IP address blocks: 213.137.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 700941157 (0x29c78365)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a3ce5c5a730cd8e2ff1f55d180f1a81b3000cc8
Validity
Not Before: Jan 1 10:55:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d1874e08b3c3c84479c6e694cb5b9083de36c64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:af:3a:e9:7d:07:61:1b:e9:c2:5e:97:58:9a:
25:a9:0a:bf:23:72:4b:e1:6e:c7:1c:34:6c:62:e1:
27:8e:4a:a8:eb:91:74:4a:fc:d9:78:ea:ed:cb:62:
00:17:6b:11:82:77:95:35:a4:7b:94:ce:50:e5:9d:
80:73:99:65:5b:fe:af:03:0b:bc:4e:fd:dc:a5:8b:
97:70:2a:3e:8b:c8:05:27:b8:ed:e0:b8:0b:97:0b:
13:8a:a6:85:2c:d7:ea:4f:4c:26:4b:c9:15:7b:f5:
73:0c:f2:3a:73:c5:64:29:b7:46:2f:37:be:f9:e8:
0b:b9:98:04:2c:39:97:71:1e:97:b4:d8:8b:4b:db:
ca:d8:cf:4a:c8:91:f2:f2:60:61:b9:ae:71:04:8e:
36:57:cb:36:15:ea:f8:ea:47:f9:bb:f2:19:fe:ab:
8b:8e:57:e3:34:af:e9:4e:82:7c:38:35:0b:e8:fe:
24:b6:f2:1c:f5:b2:4e:c9:19:77:f6:77:b7:84:cc:
53:05:65:68:4d:78:65:0e:96:e0:e6:5a:08:1f:cc:
58:0f:20:49:6f:92:28:9f:c1:80:10:6a:5d:04:e4:
be:6b:0c:2a:f0:0a:e4:80:b1:eb:2f:6f:c6:f1:39:
cc:c4:57:89:bd:c8:fe:01:27:d6:ce:03:60:1b:31:
1d:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:18:74:E0:8B:3C:3C:84:47:9C:6E:69:4C:B5:B9:08:3D:E3:6C:64
X509v3 Authority Key Identifier:
keyid:9A:3C:E5:C5:A7:30:CD:8E:2F:F1:F5:5D:18:0F:1A:81:B3:00:0C:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mjzlxacwzY4v8fVdGA8agbMADMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/0580b2-f6a4-4de6-9103-a01d729b0a21/1/PRh04Is8PIRHnG5pTLW5CD3jbGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/0580b2-f6a4-4de6-9103-a01d729b0a21/1/mjzlxacwzY4v8fVdGA8agbMADMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.137.157.0/24
Signature Algorithm: sha256WithRSAEncryption
15:a4:b7:3f:a0:35:84:5f:0e:50:9f:2d:c3:51:8e:d0:8d:92:
60:6f:19:c7:e5:58:a8:ba:a4:6a:87:9d:35:88:b6:ff:d7:9c:
ac:a8:9b:83:8e:f4:8b:cb:9d:c6:90:d5:6a:7b:86:13:cb:d2:
bf:95:f6:d5:4b:b4:60:86:1d:07:2e:8e:e1:77:0c:80:e9:7b:
1a:94:66:58:0c:35:1c:aa:c3:50:36:15:9f:ba:04:9d:ac:ef:
2b:d4:c2:b7:50:a9:a2:6d:a1:d6:79:5e:52:b7:d2:47:cf:65:
18:4f:22:33:69:b4:38:1e:ac:9b:68:51:4b:99:af:a2:98:81:
96:e0:bb:14:ee:35:24:f5:d8:25:4b:50:55:2b:37:b9:53:29:
b9:4f:92:88:9f:c4:a7:3e:bb:9a:c3:d9:47:8d:06:73:45:99:
75:2a:e6:e3:5a:b4:a9:90:74:6b:aa:03:62:87:b0:58:b6:cf:
20:ad:95:7d:cc:35:2f:5b:b0:14:41:e2:6c:0b:41:04:03:60:
30:f6:9e:24:28:20:50:e2:59:9d:ef:f3:f6:5d:64:43:3a:fb:
b7:30:c0:95:3e:5a:fc:f8:ed:b8:fb:91:79:bb:58:94:ae:9b:
40:10:ae:a1:e2:2f:69:a6:1a:c8:0b:7b:b9:eb:25:5d:b3:5a:
cf:84:21:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:21 2023 by rpki-client on console-ams.rpki-client.org