Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/3ad7cc-3c08-4b72-870a-6c305a6dbab9/1/PUa6SC7VGPigaq_ZGh2O8tymF7Q.roa
File: PUa6SC7VGPigaq_ZGh2O8tymF7Q.roa (raw, json)
Hash identifier: uZJZrAO6LwomoIax/5NjhcDz9z3lFBKCHIBajt8HCwI=
Subject key identifier: 3D:46:BA:48:2E:D5:18:F8:A0:6A:AF:D9:1A:1D:8E:F2:DC:A6:17:B4
Certificate issuer: /CN=b3d5ec1516ee6dc19d1e5c3998cb7e7a646f715a
Certificate serial: 01849E793B822CD577BDFADB73551EC8AB0D
Authority key identifier: B3:D5:EC:15:16:EE:6D:C1:9D:1E:5C:39:98:CB:7E:7A:64:6F:71:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s9XsFRbubcGdHlw5mMt-emRvcVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/3ad7cc-3c08-4b72-870a-6c305a6dbab9/1/PUa6SC7VGPigaq_ZGh2O8tymF7Q.roa
Signing time: Tue 22 Nov 2022 08:34:15 +0000
ROA not before: Tue 22 Nov 2022 08:34:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202755
IP address blocks: 185.155.172.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9e:79:3b:82:2c:d5:77:bd:fa:db:73:55:1e:c8:ab:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3d5ec1516ee6dc19d1e5c3998cb7e7a646f715a
Validity
Not Before: Nov 22 08:34:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d46ba482ed518f8a06aafd91a1d8ef2dca617b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:11:8b:2f:f6:0f:f7:84:b4:87:1e:9f:b2:fd:
df:06:2e:52:92:28:3b:3f:b1:b8:61:4b:e9:26:51:
22:d8:be:b9:06:6a:ac:a1:6b:53:54:ac:04:97:ae:
23:6c:f5:da:49:38:07:d8:9d:c4:60:e2:ce:52:90:
4d:9e:77:37:07:35:fb:47:6e:c6:87:21:c9:16:e7:
05:1b:44:06:d3:b9:31:6b:e6:81:2c:dd:51:ac:c2:
87:d6:64:8c:0f:2d:9d:94:b9:ff:6b:32:3b:04:1a:
02:a6:df:d0:2b:35:17:1b:c0:46:17:66:95:6f:a4:
aa:71:8f:d1:28:c2:10:99:08:74:94:79:78:3f:7d:
09:49:53:2e:f5:8e:b0:82:12:7f:19:97:c6:a2:92:
9e:b4:8e:2b:75:63:cc:b3:a9:e6:af:a2:35:3a:59:
5b:3d:2b:84:17:b9:d9:22:c7:fa:6b:35:29:88:66:
37:de:c7:b3:86:a2:59:33:92:c2:e2:34:d7:1f:d8:
5e:d9:6b:42:fb:0b:c0:96:18:5c:43:0a:91:62:58:
17:51:89:ed:34:23:ba:56:eb:89:33:73:bd:e2:f8:
79:2f:2b:b1:a9:78:27:e8:75:f8:1c:20:26:0a:c3:
32:ee:72:14:3e:05:06:c8:86:e5:44:18:9c:c6:c1:
7c:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:46:BA:48:2E:D5:18:F8:A0:6A:AF:D9:1A:1D:8E:F2:DC:A6:17:B4
X509v3 Authority Key Identifier:
keyid:B3:D5:EC:15:16:EE:6D:C1:9D:1E:5C:39:98:CB:7E:7A:64:6F:71:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s9XsFRbubcGdHlw5mMt-emRvcVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/3ad7cc-3c08-4b72-870a-6c305a6dbab9/1/PUa6SC7VGPigaq_ZGh2O8tymF7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/3ad7cc-3c08-4b72-870a-6c305a6dbab9/1/s9XsFRbubcGdHlw5mMt-emRvcVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.172.0/22
Signature Algorithm: sha256WithRSAEncryption
08:06:75:e1:96:91:e5:d5:c0:1a:8b:67:18:c3:ef:c6:04:35:
f9:10:b4:98:ee:17:e3:05:39:0a:65:5c:26:37:0d:8c:2c:14:
0a:e5:20:16:2c:d0:10:6c:61:0a:43:8f:d5:62:98:da:75:90:
15:2f:4f:59:b9:f1:1c:6b:4b:1c:2b:aa:27:fc:bc:c3:46:cf:
0f:8f:0d:7d:25:cf:c8:ff:f0:b4:54:12:90:62:56:6f:66:87:
8c:7e:1b:85:11:fe:fa:4b:e7:0a:eb:6d:e4:d9:1b:94:9c:33:
c9:64:1c:f7:4b:3b:77:f9:e8:6d:f1:14:cd:b2:79:38:c0:c9:
1f:a1:1d:87:01:52:b9:a8:76:7c:0d:a8:d8:6b:df:13:22:45:
e4:51:4a:87:0f:25:b4:de:3b:28:f1:a8:79:43:68:3b:12:37:
92:fb:95:0c:47:b0:d9:b5:af:11:5d:f0:cc:73:df:2e:40:af:
0c:28:44:c2:14:51:df:56:d5:e5:1c:81:ac:49:93:70:c2:53:
b7:66:ac:99:f7:c2:67:aa:c4:74:1e:87:31:df:3a:2f:1a:db:
25:dd:4d:f0:c2:42:a3:28:7f:9b:2b:4c:4b:15:72:b8:fd:93:
47:75:17:a7:19:3d:49:ed:7d:e8:3a:bb:6a:da:c4:b0:72:98:
97:30:7e:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:18 2024 by rpki-client on console-ams.rpki-client.org