Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/PJtCs1UsAM-hBqnCflrqtVbRPFc.roa
File: PJtCs1UsAM-hBqnCflrqtVbRPFc.roa (raw, json)
Hash identifier: MnjjQmcZU2sQGmg09oRmNq2wt5DcLkF+GZCPzlt4isc=
Subject key identifier: 3C:9B:42:B3:55:2C:00:CF:A1:06:A9:C2:7E:5A:EA:B5:56:D1:3C:57
Certificate issuer: /CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Certificate serial: 050CF897
Authority key identifier: A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/PJtCs1UsAM-hBqnCflrqtVbRPFc.roa
Signing time: Mon 06 Jun 2022 08:57:20 +0000
ROA not before: Mon 06 Jun 2022 08:57:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42233
IP address blocks: 81.19.134.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84736151 (0x50cf897)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Validity
Not Before: Jun 6 08:57:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c9b42b3552c00cfa106a9c27e5aeab556d13c57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:3e:9a:dc:9a:f8:33:88:99:cc:ea:bd:39:53:
7d:ef:5d:0d:f8:92:0c:7a:e1:57:93:04:9c:81:b8:
00:42:f4:c7:a9:2f:71:6e:bb:04:a9:25:21:85:46:
c5:8b:f1:a5:0c:32:41:4d:56:af:bc:b7:73:5d:d8:
52:71:da:5e:fc:0c:a3:83:a7:0a:8b:c7:ca:40:ab:
b7:d0:b3:75:b4:85:a7:e7:5c:a9:90:63:24:7e:34:
ca:d1:6d:d1:1b:9a:7b:a1:43:b0:2d:c5:9a:00:7a:
e9:cb:01:30:bc:25:b3:8f:3f:32:55:b0:d9:04:69:
ad:9b:d9:c2:89:c4:43:71:27:69:c5:9e:74:35:ac:
c0:d5:3d:0e:2c:32:52:60:be:1d:08:f3:43:4c:b4:
15:e3:8f:f6:2e:ae:4f:ad:e3:c9:aa:6f:ae:f6:3e:
0f:a2:97:ea:6f:5e:66:f5:bc:71:5a:8f:b7:b7:43:
ea:56:71:d2:58:5f:b4:e6:d5:f1:c0:aa:63:d5:a5:
99:fe:c8:ec:4a:11:c8:90:f0:78:f4:e4:a3:40:ea:
ce:ee:86:93:ea:92:82:c6:38:6d:6e:2d:8e:bb:12:
f3:1a:7b:8b:94:d8:02:3d:db:a5:92:fe:c7:84:72:
0b:42:84:ad:4c:83:14:f2:99:c5:a6:ef:a3:aa:4d:
f9:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:9B:42:B3:55:2C:00:CF:A1:06:A9:C2:7E:5A:EA:B5:56:D1:3C:57
X509v3 Authority Key Identifier:
keyid:A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/PJtCs1UsAM-hBqnCflrqtVbRPFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.134.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:1c:64:f8:fa:25:ff:c8:5b:66:c5:59:4c:6a:a4:79:77:fb:
b9:d6:8a:43:96:3a:90:f1:c6:de:27:6e:82:66:be:6f:5a:c9:
5b:87:51:f8:85:3d:ba:b7:7d:62:25:a1:b3:32:cd:f9:a1:9f:
1a:34:59:5d:78:d7:2f:75:bf:7a:51:03:93:e3:8a:df:db:06:
21:a4:a3:d4:ee:78:6e:4a:8f:bb:cc:d3:06:6d:e9:4b:04:a2:
05:8f:ae:62:56:8a:c7:d8:27:39:b2:5b:a0:5c:ad:55:11:c1:
2f:bf:c2:6e:eb:26:0b:ce:30:37:08:07:4d:1e:46:a4:25:2b:
42:71:c1:31:f7:2f:0e:0e:7a:ae:9f:c8:3f:72:b7:5a:86:7c:
af:1d:0c:33:da:6c:c6:49:bd:27:32:f5:91:2a:16:34:e7:9b:
a6:06:ab:9d:4c:24:1e:4f:31:be:af:d8:78:9d:d4:66:d1:82:
d8:58:7a:86:17:74:80:76:6a:f3:2b:8e:c8:f3:d4:ca:c6:03:
86:47:06:63:84:4f:b4:10:b0:ed:16:07:16:6e:b2:c3:d1:3c:
6f:0b:bd:c1:d9:3c:7c:c8:e4:7d:88:00:2c:a9:90:26:75:9b:
9f:9c:ad:98:35:35:64:a8:ee:3f:e8:22:b5:5e:7a:9a:8b:68:
35:05:9e:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:24 2024 by rpki-client on console-fra.rpki-client.org