Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/PL0v5S21rlHe_htVHnxieqZkaMk.roa
File: PL0v5S21rlHe_htVHnxieqZkaMk.roa (raw, json)
Hash identifier: YnYy7C1yympOqDvXVeIg9OCcGIyZmibJyvyZ9inTQ4w=
Subject key identifier: 3C:BD:2F:E5:2D:B5:AE:51:DE:FE:1B:55:1E:7C:62:7A:A6:64:68:C9
Certificate issuer: /CN=327b3420c25013795e822a2ae50d38dc1d382793
Certificate serial: 018C7D05DFDF93DF66C843F71FF53AC2B66D
Authority key identifier: 32:7B:34:20:C2:50:13:79:5E:82:2A:2A:E5:0D:38:DC:1D:38:27:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mns0IMJQE3legioq5Q043B04J5M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/PL0v5S21rlHe_htVHnxieqZkaMk.roa
Signing time: Mon 18 Dec 2023 13:03:06 +0000
ROA not before: Mon 18 Dec 2023 13:03:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207582
IP address blocks: 185.248.59.0/24 maxlen: 24
91.205.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:7d:05:df:df:93:df:66:c8:43:f7:1f:f5:3a:c2:b6:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=327b3420c25013795e822a2ae50d38dc1d382793
Validity
Not Before: Dec 18 13:03:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3cbd2fe52db5ae51defe1b551e7c627aa66468c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:2d:fa:24:49:42:9d:89:5c:c1:e9:81:38:6c:
91:1d:e8:6d:a7:a3:64:16:df:bf:88:4c:f2:20:c1:
16:be:fa:91:07:b5:58:68:71:f3:4c:7f:fd:78:c0:
d4:66:5d:1d:e4:5d:e0:99:b6:50:42:05:5b:14:cf:
85:ed:8a:f8:f5:6b:57:6e:9e:5e:56:3e:e1:c2:21:
ef:bc:40:3b:c6:55:eb:84:5d:7f:5f:40:ca:3b:68:
b5:1a:2f:a5:43:a7:0e:52:e9:f8:8b:0c:1b:4b:bd:
17:1b:ce:d6:c9:6f:45:e8:58:69:6b:ce:bc:46:cf:
48:73:00:22:01:3f:d8:d7:02:1e:15:71:db:2b:d3:
1e:ca:c9:43:a8:82:22:ff:75:d9:8e:ef:2e:c7:10:
b3:a4:67:7c:e8:2d:33:7e:18:16:54:c8:8f:71:1e:
3e:03:70:c5:05:4c:6e:9b:45:e9:44:81:cb:f2:8f:
09:c8:81:94:81:34:9b:ed:86:c1:6c:4c:a3:dd:2a:
4e:62:f0:8d:59:99:67:fa:33:dc:40:c6:d6:93:2d:
19:81:ea:34:46:d4:4e:82:9d:95:75:51:e0:b3:eb:
06:27:7c:70:fa:f6:15:7e:43:ab:51:82:3f:39:2b:
d0:45:97:2c:23:7f:ff:94:ff:b5:23:18:c3:f3:69:
9b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:BD:2F:E5:2D:B5:AE:51:DE:FE:1B:55:1E:7C:62:7A:A6:64:68:C9
X509v3 Authority Key Identifier:
keyid:32:7B:34:20:C2:50:13:79:5E:82:2A:2A:E5:0D:38:DC:1D:38:27:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mns0IMJQE3legioq5Q043B04J5M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/PL0v5S21rlHe_htVHnxieqZkaMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.41.0/24
185.248.59.0/24
Signature Algorithm: sha256WithRSAEncryption
00:a2:de:fd:0d:31:3d:56:50:cd:73:09:18:fa:eb:af:96:ff:
c3:c4:52:17:1a:c4:21:b5:f4:3f:8d:fd:4c:8b:31:33:18:8e:
8a:b6:77:4b:b2:85:b0:9c:29:de:ef:ec:8e:48:18:19:93:fb:
95:73:ed:2c:8c:5a:8a:06:7a:5a:75:c0:1e:69:29:c8:17:9e:
fe:25:4a:4a:4d:86:60:5a:ef:a2:ac:b1:47:bd:58:dd:73:be:
67:76:ab:08:d6:ed:cf:1d:d3:bc:a3:06:2a:b4:05:a1:48:3b:
99:47:69:66:81:a6:78:89:6b:4e:c6:e8:66:cb:a5:c6:ff:c8:
36:dc:ae:7e:13:b1:af:8a:d0:55:69:f3:5a:0c:ad:4e:3f:40:
fa:ee:22:f9:7f:70:55:8d:ba:29:fb:b2:eb:92:dc:1f:a6:34:
03:76:91:df:0a:5e:f4:a4:85:16:81:a1:7c:6c:fb:2f:68:7b:
53:2a:55:8d:4e:74:41:89:dd:b2:28:bc:6f:6d:f4:34:f4:97:
60:81:1b:c6:0c:76:5b:07:e7:52:02:c1:93:e2:a0:88:00:93:
57:fd:29:3a:f8:66:86:f6:5e:18:6c:0d:59:4b:a6:44:37:14:
1c:24:91:eb:0e:21:61:de:0b:21:09:fa:da:e1:b0:16:3d:e7:
de:93:af:02
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYx9Bd/fk99myEP3H/U6wrZtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyN2IzNDIwYzI1MDEzNzk1ZTgyMmEyYWU1MGQzOGRjMWQz
ODI3OTMwHhcNMjMxMjE4MTMwMzA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzY2JkMmZlNTJkYjVhZTUxZGVmZTFiNTUxZTdjNjI3YWE2NjQ2OGM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiy36JElCnYlcwemBOGyRHehtp6Nk
Ft+/iEzyIMEWvvqRB7VYaHHzTH/9eMDUZl0d5F3gmbZQQgVbFM+F7Yr49WtXbp5e
Vj7hwiHvvEA7xlXrhF1/X0DKO2i1Gi+lQ6cOUun4iwwbS70XG87WyW9F6Fhpa868
Rs9IcwAiAT/Y1wIeFXHbK9MeyslDqIIi/3XZju8uxxCzpGd86C0zfhgWVMiPcR4+
A3DFBUxum0XpRIHL8o8JyIGUgTSb7YbBbEyj3SpOYvCNWZln+jPcQMbWky0Zgeo0
RtROgp2VdVHgs+sGJ3xw+vYVfkOrUYI/OSvQRZcsI3//lP+1IxjD82mbiwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFDy9L+Utta5R3v4bVR58YnqmZGjJMB8GA1UdIwQY
MBaAFDJ7NCDCUBN5XoIqKuUNONwdOCeTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTW5zMElNSlFFM2xlZ2lvcTVRMDQzQjA0SjVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My8zNjMxZTAtNTZkNy00YzI5LTk1YzQt
NjY4MmIwN2ZhOTQ3LzEvUEwwdjVTMjFybEhlX2h0VkhueGllcVprYU1rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My8zNjMxZTAtNTZkNy00YzI5LTk1YzQtNjY4MmIwN2ZhOTQ3
LzEvTW5zMElNSlFFM2xlZ2lvcTVRMDQzQjA0SjVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW80pAwQA
ufg7MA0GCSqGSIb3DQEBCwUAA4IBAQAAot79DTE9VlDNcwkY+uuvlv/DxFIXGsQh
tfQ/jf1MizEzGI6KtndLsoWwnCne7+yOSBgZk/uVc+0sjFqKBnpadcAeaSnIF57+
JUpKTYZgWu+irLFHvVjdc75ndqsI1u3PHdO8owYqtAWhSDuZR2lmgaZ4iWtOxuhm
y6XG/8g23K5+E7GvitBVafNaDK1OP0D67iL5f3BVjbop+7LrktwfpjQDdpHfCl70
pIUWgaF8bPsvaHtTKlWNTnRBid2yKLxvbfQ09JdggRvGDHZbB+dSAsGT4qCIAJNX
/Sk6+GaG9l4YbA1ZS6ZENxQcJJHrDiFh3gshCfra4bAWPefek68C
-----END CERTIFICATE-----
Generated at Sun Apr 20 03:29:31 2025 by rpki-client