Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/PFTUDtrn7ycNVr3rHkDSrUKRv38.roa
File: PFTUDtrn7ycNVr3rHkDSrUKRv38.roa (raw, json)
Hash identifier: ZAn4cm5zmq2IxTfOnNgNECWmNLYN1uNcqjrVc0NuFD4=
Subject key identifier: 3C:54:D4:0E:DA:E7:EF:27:0D:56:BD:EB:1E:40:D2:AD:42:91:BF:7F
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 05A4B742
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/PFTUDtrn7ycNVr3rHkDSrUKRv38.roa
Signing time: Tue 19 Apr 2022 03:53:31 +0000
ROA not before: Tue 19 Apr 2022 03:53:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212461
IP address blocks: 193.37.69.0/24 maxlen: 24
194.113.235.0/24 maxlen: 24
87.251.68.0/24 maxlen: 24
87.251.78.0/24 maxlen: 24
87.251.85.0/24 maxlen: 24
87.251.84.0/24 maxlen: 24
87.251.86.0/24 maxlen: 24
80.66.65.0/24 maxlen: 24
80.66.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94680898 (0x5a4b742)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Apr 19 03:53:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c54d40edae7ef270d56bdeb1e40d2ad4291bf7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:b5:e6:fe:0c:91:37:70:20:bd:cf:5b:d4:43:
55:ea:5e:48:47:97:da:91:89:f1:95:96:56:70:b1:
6d:b0:e7:36:03:e9:c1:ea:eb:6a:41:d4:a6:39:23:
d0:76:35:55:a3:59:04:26:b6:0c:72:ff:ce:2b:a0:
a1:0a:97:cd:f9:17:12:98:ae:20:8c:66:cb:79:e8:
13:42:45:21:a5:92:a5:70:6f:62:e5:73:4c:89:27:
8e:74:0c:4b:3d:57:73:49:ef:57:62:3a:73:4b:2e:
b0:8a:00:1f:3b:9a:88:46:b2:a8:dc:4f:31:a1:03:
2e:02:8a:b6:70:4b:4d:a4:38:4e:77:ee:77:42:c5:
ff:bc:e8:a8:c6:0d:88:91:79:08:d4:d3:6b:7a:38:
a7:ab:5c:94:66:a9:12:7f:8b:58:74:42:5a:99:fe:
5b:58:26:d1:2c:42:14:10:cc:b7:38:21:75:4f:7a:
75:da:c5:26:40:50:03:e6:fa:a7:d4:b6:65:ad:3c:
89:c5:1b:4e:f4:db:97:d2:bb:75:99:d5:c1:b6:ec:
20:50:cd:15:5c:67:63:3d:95:0f:43:49:a2:4d:39:
9a:f7:e1:a9:89:5a:f6:5d:0e:db:04:62:de:c0:b3:
d7:73:33:01:94:0f:cd:e8:b2:04:6a:67:f3:52:7d:
f1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:54:D4:0E:DA:E7:EF:27:0D:56:BD:EB:1E:40:D2:AD:42:91:BF:7F
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/PFTUDtrn7ycNVr3rHkDSrUKRv38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.65.0/24
80.66.78.0/24
87.251.68.0/24
87.251.78.0/24
87.251.84.0-87.251.86.255
193.37.69.0/24
194.113.235.0/24
Signature Algorithm: sha256WithRSAEncryption
36:d8:ec:b9:84:44:c8:09:bb:9d:35:0b:c0:1e:a4:0e:4e:77:
7a:c7:de:4a:91:3e:4f:c6:b8:38:e2:f1:f3:95:62:4d:f0:03:
6c:88:cc:18:6d:56:7c:cb:2b:a7:ef:e4:e9:eb:99:d9:6f:7a:
50:0d:87:30:90:0f:0d:6c:b9:73:eb:48:76:5f:63:38:37:d0:
b2:4f:ed:25:6b:82:3d:42:d0:4b:8e:e0:b5:43:42:35:71:53:
2b:08:ad:af:5e:0a:7f:35:b6:2c:ef:de:be:97:ff:b6:d4:21:
0b:b0:d0:b4:4a:63:f8:56:20:88:fa:57:7b:6d:07:46:62:7f:
b7:c4:b9:a8:58:fe:ea:c0:ce:8b:c8:84:02:a0:39:f3:01:70:
37:ba:d2:e1:c0:35:cc:2d:94:3a:67:d4:4b:82:c3:9d:30:eb:
f1:b7:fc:a3:a7:53:64:0f:4b:13:5d:ba:c9:7a:96:39:1e:38:
34:3b:5b:aa:22:f4:98:35:a9:83:aa:37:95:04:78:77:0e:88:
db:d8:6a:5b:b3:db:e9:22:b7:cd:40:d4:75:f9:a1:f7:40:7b:
d0:23:27:1e:4a:cf:5a:ce:b5:b1:4a:f0:86:50:ac:e5:41:53:
b7:44:29:93:a3:b7:33:df:9e:84:95:96:ba:24:2a:54:58:b0:
11:4d:25:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:53 2023 by rpki-client on console-fra.rpki-client.org