Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/a765da-4aa1-47a2-8b5d-ebe43905eb81/1/PLrecMXf23uhDLq3gQ53So9afHI.roa
File: PLrecMXf23uhDLq3gQ53So9afHI.roa (raw, json)
Hash identifier: AYaOX2ssnLOUZkog72HmKT/KQnlraIJ8wN/5ajVy8KA=
Subject key identifier: 3C:BA:DE:70:C5:DF:DB:7B:A1:0C:BA:B7:81:0E:77:4A:8F:5A:7C:72
Certificate issuer: /CN=c15ee2d909c9b75c6d2084e3379bf03274b776f4
Certificate serial: 02F1D41C
Authority key identifier: C1:5E:E2:D9:09:C9:B7:5C:6D:20:84:E3:37:9B:F0:32:74:B7:76:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wV7i2QnJt1xtIITjN5vwMnS3dvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/a765da-4aa1-47a2-8b5d-ebe43905eb81/1/PLrecMXf23uhDLq3gQ53So9afHI.roa
Signing time: Sat 01 Jan 2022 03:52:13 +0000
ROA not before: Sat 01 Jan 2022 03:52:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 193.135.216.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49402908 (0x2f1d41c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c15ee2d909c9b75c6d2084e3379bf03274b776f4
Validity
Not Before: Jan 1 03:52:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3cbade70c5dfdb7ba10cbab7810e774a8f5a7c72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:84:07:96:1e:9b:2d:4a:98:d3:d2:c6:4b:cd:
a1:6e:ec:0c:4d:07:ac:86:7e:9f:3c:1b:44:7d:44:
28:02:b5:8a:af:f2:a3:6d:74:ef:b9:30:6f:b9:58:
e9:58:a2:56:64:6c:58:57:d0:f2:88:be:f4:54:88:
89:2d:d9:cc:c5:a2:55:58:0a:72:b5:d5:81:38:01:
3f:2b:40:e6:66:7d:07:1b:6d:1e:e4:66:e7:fe:a9:
2b:88:44:74:8c:56:68:ee:eb:68:ba:ec:a0:99:a4:
b3:c4:84:e6:e1:2f:03:e6:a2:58:de:12:8b:4e:02:
0a:ce:21:70:c8:37:40:36:73:70:3d:56:03:6e:4b:
18:e1:10:aa:93:b9:8d:7c:ce:a3:ea:9c:4b:7e:0d:
ec:02:dd:17:cf:ce:38:4e:2e:bf:9d:ab:0c:dd:35:
68:c1:e0:1b:c6:60:23:db:2a:27:3a:34:50:0f:ff:
c8:20:5a:75:b6:c0:44:d8:95:cb:c3:79:21:ab:98:
f2:01:5f:13:4a:0c:ae:85:7f:cf:d5:75:86:cf:53:
f4:f6:29:b3:b3:8a:c0:f2:52:ae:76:46:80:d3:d5:
7f:3b:69:a5:38:09:45:cf:29:dc:a7:e2:0c:ed:8c:
7c:81:bc:07:da:9f:6e:97:eb:33:66:5d:86:ab:0b:
35:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:BA:DE:70:C5:DF:DB:7B:A1:0C:BA:B7:81:0E:77:4A:8F:5A:7C:72
X509v3 Authority Key Identifier:
keyid:C1:5E:E2:D9:09:C9:B7:5C:6D:20:84:E3:37:9B:F0:32:74:B7:76:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wV7i2QnJt1xtIITjN5vwMnS3dvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/a765da-4aa1-47a2-8b5d-ebe43905eb81/1/PLrecMXf23uhDLq3gQ53So9afHI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/a765da-4aa1-47a2-8b5d-ebe43905eb81/1/wV7i2QnJt1xtIITjN5vwMnS3dvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.135.216.0/23
Signature Algorithm: sha256WithRSAEncryption
82:e4:31:6f:54:5c:41:1c:69:e6:03:a1:89:d0:82:e8:f0:3d:
88:11:6e:75:e9:c6:71:cf:8d:63:5e:a4:4f:47:5b:b5:1d:e8:
89:b2:b4:7d:13:e3:84:8a:a6:35:14:c3:50:1e:40:4b:27:21:
42:2d:1c:85:b7:86:09:cc:0c:06:a2:af:e7:98:19:a2:fa:2d:
fc:b7:19:79:a4:a9:07:ba:2a:95:5d:ba:84:1a:f1:ad:67:41:
28:03:87:99:2c:c1:dc:7a:aa:8a:0d:38:f3:34:de:11:f5:49:
94:1c:cb:66:3e:c3:12:9d:31:59:f4:ac:14:73:0d:a7:ef:3b:
f5:4f:22:d6:f7:b0:7d:9d:83:c2:a0:68:bf:59:0e:b0:39:b2:
fb:2f:ba:d9:b3:3c:97:46:d2:01:56:32:51:50:1b:83:06:03:
c6:a3:e6:ed:7f:ba:84:55:ce:c0:67:d0:f7:69:50:65:3b:01:
16:23:01:61:02:0a:4c:4d:96:66:77:fb:48:86:41:5d:05:a0:
0d:68:58:5a:ff:46:8f:02:86:dc:a6:63:12:21:f3:cf:c2:55:
93:e6:54:46:fe:eb:d4:25:95:bb:5e:39:28:34:64:b2:54:39:
6c:94:68:9f:23:90:07:d6:94:09:3c:c7:e5:1f:3b:7d:29:32:
43:e6:08:48
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAvHUHDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
MTVlZTJkOTA5YzliNzVjNmQyMDg0ZTMzNzliZjAzMjc0Yjc3NmY0MB4XDTIyMDEw
MTAzNTIxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2NiYWRlNzBjNWRm
ZGI3YmExMGNiYWI3ODEwZTc3NGE4ZjVhN2M3MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMeEB5Yemy1KmNPSxkvNoW7sDE0HrIZ+nzwbRH1EKAK1iq/y
o21077kwb7lY6ViiVmRsWFfQ8oi+9FSIiS3ZzMWiVVgKcrXVgTgBPytA5mZ9Bxtt
HuRm5/6pK4hEdIxWaO7raLrsoJmks8SE5uEvA+aiWN4Si04CCs4hcMg3QDZzcD1W
A25LGOEQqpO5jXzOo+qcS34N7ALdF8/OOE4uv52rDN01aMHgG8ZgI9sqJzo0UA//
yCBadbbARNiVy8N5IauY8gFfE0oMroV/z9V1hs9T9PYps7OKwPJSrnZGgNPVfztp
pTgJRc8p3KfiDO2MfIG8B9qfbpfrM2ZdhqsLNWsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ8ut5wxd/be6EMureBDndKj1p8cjAfBgNVHSMEGDAWgBTBXuLZCcm3XG0g
hOM3m/AydLd29DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3dWN2kyUW5KdDF4dElJVGpONXZ3TW5TM2R2US5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDQvYTc2NWRhLTRhYTEtNDdhMi04YjVkLWViZTQzOTA1ZWI4MS8x
L1BMcmVjTVhmMjN1aERMcTNnUTUzU285YWZISS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDQv
YTc2NWRhLTRhYTEtNDdhMi04YjVkLWViZTQzOTA1ZWI4MS8xL3dWN2kyUW5KdDF4
dElJVGpONXZ3TW5TM2R2US5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcGH2DANBgkqhkiG9w0BAQsFAAOC
AQEAguQxb1RcQRxp5gOhidCC6PA9iBFudenGcc+NY16kT0dbtR3oibK0fRPjhIqm
NRTDUB5ASychQi0chbeGCcwMBqKv55gZovot/LcZeaSpB7oqlV26hBrxrWdBKAOH
mSzB3Hqqig048zTeEfVJlBzLZj7DEp0xWfSsFHMNp+879U8i1vewfZ2DwqBov1kO
sDmy+y+62bM8l0bSAVYyUVAbgwYDxqPm7X+6hFXOwGfQ92lQZTsBFiMBYQIKTE2W
Znf7SIZBXQWgDWhYWv9GjwKG3KZjEiHzz8JVk+ZURv7r1CWVu145KDRkslQ5bJRo
nyOQB9aUCTzH5R87fSkyQ+YISA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:15 2023 by rpki-client on console-fra.rpki-client.org