Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/PzE8oRhoHBzcaM7F08FkRt2ClZ4.roa
File: PzE8oRhoHBzcaM7F08FkRt2ClZ4.roa (raw, json)
Hash identifier: hFJCI1XUM0Vg+FDQCvk0xPG5zoXWIjYd0wABiTwGZD8=
Subject key identifier: 3F:31:3C:A1:18:68:1C:1C:DC:68:CE:C5:D3:C1:64:46:DD:82:95:9E
Certificate issuer: /CN=4292b5da4b4ffeaf720649518fbaaa10c5cb2811
Certificate serial: 047FDD5B
Authority key identifier: 42:92:B5:DA:4B:4F:FE:AF:72:06:49:51:8F:BA:AA:10:C5:CB:28:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpK12ktP_q9yBklRj7qqEMXLKBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/PzE8oRhoHBzcaM7F08FkRt2ClZ4.roa
Signing time: Mon 28 Mar 2022 14:12:36 +0000
ROA not before: Mon 28 Mar 2022 14:12:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44854
IP address blocks: 185.219.6.0/24 maxlen: 24
93.114.180.0/23 maxlen: 24
2a10:e300:35::/48 maxlen: 48
2a10:e300::/32 maxlen: 48
2a10:e300:26::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75488603 (0x47fdd5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4292b5da4b4ffeaf720649518fbaaa10c5cb2811
Validity
Not Before: Mar 28 14:12:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f313ca118681c1cdc68cec5d3c16446dd82959e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:f0:13:8d:1c:39:56:cd:84:36:fb:fd:d3:8e:
dd:c4:55:6f:79:4f:ff:ae:c0:62:2c:c1:b5:91:ee:
3a:3b:22:ae:f9:f7:9d:9b:37:56:f1:1b:9c:f0:3e:
d7:c8:f3:4a:a8:d5:10:dd:43:5e:9d:72:71:ec:96:
1c:e6:c7:90:14:ae:86:44:3f:b1:cf:1b:32:9d:88:
3b:ee:ee:a7:34:14:f8:94:bf:ce:2e:96:82:48:0b:
10:e4:b8:15:dd:7e:23:11:f3:b2:d3:1f:f4:f9:a7:
1a:09:98:c5:2c:a4:03:a3:5d:ad:68:11:67:e4:38:
54:dc:fd:59:43:d8:6a:cd:63:43:bb:29:cb:da:e0:
69:86:1b:e7:8c:50:95:30:c3:8f:9a:8b:4f:e0:72:
f4:ee:78:a9:81:a8:39:31:40:88:82:b3:f4:68:4c:
34:64:92:4e:cc:45:c1:22:26:c1:ff:9d:41:8a:d1:
66:29:bb:78:1f:c6:31:73:02:01:24:c2:de:27:af:
a1:b1:a6:71:ac:4a:db:b2:6b:0d:72:76:8e:87:80:
5d:24:85:b8:c2:76:21:01:25:d6:f5:e7:79:cb:1d:
88:b9:4b:7f:ba:89:79:3f:a5:bc:bb:32:c2:fc:1e:
b0:01:11:c0:b9:83:3a:75:6a:13:4c:34:58:9f:dd:
6b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:31:3C:A1:18:68:1C:1C:DC:68:CE:C5:D3:C1:64:46:DD:82:95:9E
X509v3 Authority Key Identifier:
keyid:42:92:B5:DA:4B:4F:FE:AF:72:06:49:51:8F:BA:AA:10:C5:CB:28:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpK12ktP_q9yBklRj7qqEMXLKBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/PzE8oRhoHBzcaM7F08FkRt2ClZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/QpK12ktP_q9yBklRj7qqEMXLKBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.114.180.0/23
185.219.6.0/24
IPv6:
2a10:e300::/32
Signature Algorithm: sha256WithRSAEncryption
39:5b:db:c1:59:27:bc:dc:fd:cb:cc:c1:2f:6d:2f:bc:5d:05:
59:d5:02:57:86:c3:2e:5e:c1:a5:cd:08:c4:8f:21:75:2f:bc:
0f:ad:0a:c1:85:f4:bc:e0:dc:a7:24:fe:5b:b7:af:9a:2f:3b:
a1:27:5b:b5:61:1a:d4:79:c5:48:99:22:6f:34:b3:32:03:9d:
48:9a:0f:e2:e1:95:f3:96:c9:24:03:72:b2:f7:1a:0d:07:f6:
0b:35:6c:0d:23:b6:5f:d4:c3:4c:2c:44:ab:b0:42:ab:17:04:
05:80:95:b1:ec:74:69:83:ce:ab:de:00:67:ca:f5:6c:5e:84:
66:bb:d5:1b:4f:eb:b6:af:80:2d:dc:af:7d:d0:08:c5:67:58:
95:92:c5:55:58:36:29:38:94:21:fd:70:41:cc:bf:0e:2a:6b:
88:86:ab:a4:80:07:86:2a:15:25:7c:7d:92:74:78:c8:be:8f:
74:39:28:b8:6e:a7:08:2b:ee:ad:66:29:98:16:d7:c8:8c:cd:
e2:0b:37:d3:df:cb:68:ff:55:14:f7:15:68:25:3a:bb:86:25:
5c:6a:a6:39:36:a2:72:28:4f:a0:45:0f:8c:3a:58:c2:5f:86:
47:d6:1f:8f:de:2c:da:68:ce:1b:43:8c:fe:06:a4:5c:d6:c1:
6a:cf:82:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:15 2024 by rpki-client on console-ams.rpki-client.org