Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/PsQQLGBPZq3N0Sa1vpqoI0lH2lk.roa
File: PsQQLGBPZq3N0Sa1vpqoI0lH2lk.roa (raw, json)
Hash identifier: yS8j6abhRu5slFH0JRzYWCS5/UUjGwnJc+7ZMbre3c0=
Subject key identifier: 3E:C4:10:2C:60:4F:66:AD:CD:D1:26:B5:BE:9A:A8:23:49:47:DA:59
Certificate issuer: /CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Certificate serial: 0184B818E8541DF6129CCA01A7D17CF64FCC
Authority key identifier: B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/PsQQLGBPZq3N0Sa1vpqoI0lH2lk.roa
Signing time: Sun 27 Nov 2022 07:59:10 +0000
ROA not before: Sun 27 Nov 2022 07:59:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 185.63.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:b8:18:e8:54:1d:f6:12:9c:ca:01:a7:d1:7c:f6:4f:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Validity
Not Before: Nov 27 07:59:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ec4102c604f66adcdd126b5be9aa8234947da59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:4a:84:0f:12:e1:ab:c6:94:41:9a:6b:ff:86:
51:a9:d7:92:26:bd:c9:d6:69:b2:c9:58:09:88:ca:
92:16:1c:4c:8b:28:2d:c8:db:aa:2b:ca:7c:d9:b2:
8e:59:4f:10:15:0c:ea:1e:0f:ad:50:e0:70:3b:ea:
89:d1:d7:8b:36:0b:2b:2c:4b:0b:48:56:36:22:68:
a9:fc:79:a3:e3:79:3f:f0:80:20:c9:9b:e5:50:49:
bd:d8:0a:f4:43:8f:53:29:6d:80:07:4c:ce:1b:a5:
00:31:8b:4c:ee:1a:7e:ad:b5:3e:8a:c6:c2:74:4d:
ce:2d:bc:3b:c4:25:bc:6b:74:ce:76:ea:f2:c6:34:
9f:92:ba:eb:d3:6e:1b:00:f8:8b:85:64:ab:f1:4e:
7d:81:ee:00:15:4a:a6:ff:53:ff:26:cc:9d:8a:5e:
fd:68:c3:31:8a:cd:c3:b4:6e:87:b0:22:8d:82:26:
a6:91:c0:3a:50:48:d4:11:67:1e:05:fe:49:d1:df:
8b:b6:39:48:d1:6a:50:0b:27:71:44:71:90:08:ba:
4f:6f:41:7d:53:eb:9c:77:67:81:fc:59:30:d3:b9:
7c:39:f4:19:73:71:6d:ab:83:67:09:7d:54:06:26:
29:ef:0d:55:cc:eb:5a:27:6e:b0:e5:06:94:70:db:
78:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:C4:10:2C:60:4F:66:AD:CD:D1:26:B5:BE:9A:A8:23:49:47:DA:59
X509v3 Authority Key Identifier:
keyid:B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/PsQQLGBPZq3N0Sa1vpqoI0lH2lk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.34.0/24
Signature Algorithm: sha256WithRSAEncryption
58:30:0d:59:f5:97:c9:83:29:4e:5c:08:92:e5:11:ea:ff:cd:
a8:31:9e:bc:88:6b:0c:45:70:22:f4:d1:bb:3c:36:ea:4f:2e:
8c:8c:26:ae:ec:cc:fc:63:39:ad:31:39:f3:f0:d2:bb:39:1d:
66:25:50:04:2c:3b:3a:57:cb:e6:70:98:1e:26:22:4e:64:77:
24:fc:fb:10:15:07:d9:84:1a:23:2d:1c:55:69:19:6a:e9:24:
19:62:cb:e1:e5:f8:66:0b:ab:bf:05:3e:6f:fe:9a:e6:30:74:
f8:29:ee:53:be:54:f5:b8:b5:cd:a5:2b:aa:b1:33:7f:05:16:
f9:1c:c6:d6:d7:1d:81:1f:58:1b:c4:bb:b8:cc:33:f3:b1:0d:
6d:be:8e:cf:b9:32:f1:75:39:05:f7:c4:0d:b0:1b:60:f9:cd:
56:94:e4:e2:25:a2:d8:f5:70:8e:21:c0:b5:3b:1c:a3:5c:a1:
63:65:15:6d:33:55:d6:27:0a:3c:05:7f:46:f1:69:ea:68:25:
3b:e9:24:02:61:63:c4:7b:f5:3c:3d:04:da:b6:38:36:85:44:
c7:d8:86:d6:84:bc:33:0d:6e:d3:0a:21:20:47:b2:6d:e4:dd:
ed:b0:ea:02:7e:64:f4:3e:5a:52:64:22:3f:66:8f:e8:07:54:
bb:71:f0:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:48 2024 by rpki-client on console-fra.rpki-client.org