Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/e6b617-76e2-426a-8071-34c76d9756dd/1/pjmdCWoOejYDxrsgeiji5z2Uovg.roa
File: pjmdCWoOejYDxrsgeiji5z2Uovg.roa (raw, json)
Hash identifier: 6viRue81DV7iyLEAcZYPqqYrGFWxUNgpqIEzY1WPw3E=
Subject key identifier: A6:39:9D:09:6A:0E:7A:36:03:C6:BB:20:7A:28:E2:E7:3D:94:A2:F8
Certificate issuer: /CN=7b2bdfebe459221dda35f52c5a3995020e4fbb7a
Certificate serial: 09312FF9
Authority key identifier: 7B:2B:DF:EB:E4:59:22:1D:DA:35:F5:2C:5A:39:95:02:0E:4F:BB:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eyvf6-RZIh3aNfUsWjmVAg5Pu3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/e6b617-76e2-426a-8071-34c76d9756dd/1/pjmdCWoOejYDxrsgeiji5z2Uovg.roa
Signing time: Sat 01 Jan 2022 06:56:56 +0000
ROA not before: Sat 01 Jan 2022 06:56:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31531
IP address blocks: 193.16.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154218489 (0x9312ff9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b2bdfebe459221dda35f52c5a3995020e4fbb7a
Validity
Not Before: Jan 1 06:56:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a6399d096a0e7a3603c6bb207a28e2e73d94a2f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:34:4b:a9:e3:9f:0f:6f:7d:35:96:ad:83:98:
e6:08:5e:53:5a:e8:d0:4f:b3:e3:46:5a:e2:ea:7c:
78:24:25:79:3c:87:0c:bd:78:c5:81:5e:a0:a4:c1:
3c:e0:1a:f6:0c:52:d7:72:e4:2c:4e:f8:45:ca:83:
0d:6b:01:15:b9:ef:51:23:b2:b8:9a:2b:76:9a:63:
c9:80:67:b2:a5:d6:c8:57:ad:60:af:6b:00:5b:f3:
88:74:06:49:63:24:29:3b:3e:dd:55:f5:30:52:0d:
3a:bb:f8:56:58:41:f2:88:e1:eb:cb:98:f9:b0:9e:
68:46:60:fc:ca:73:4a:0d:86:7a:03:6b:42:91:d0:
48:a7:89:0a:1d:76:2e:23:2a:b6:d5:a2:56:26:48:
08:b8:4c:47:f7:9c:b9:ca:bb:55:30:fd:be:ef:38:
f4:86:4c:8f:24:b4:29:dd:da:47:09:4e:a5:57:69:
15:e7:22:c1:4a:e8:d5:9b:c4:ab:59:16:51:84:91:
50:d8:25:61:66:db:9b:fb:5c:82:22:76:f7:34:be:
17:6a:2c:fc:96:a9:82:f2:ca:92:eb:d9:e0:39:5a:
d7:1f:b1:7d:b9:e1:89:eb:7a:de:a0:01:4f:db:bb:
68:13:e4:cb:95:e3:2b:05:9d:d8:99:5c:bf:51:99:
f3:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:39:9D:09:6A:0E:7A:36:03:C6:BB:20:7A:28:E2:E7:3D:94:A2:F8
X509v3 Authority Key Identifier:
keyid:7B:2B:DF:EB:E4:59:22:1D:DA:35:F5:2C:5A:39:95:02:0E:4F:BB:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eyvf6-RZIh3aNfUsWjmVAg5Pu3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/e6b617-76e2-426a-8071-34c76d9756dd/1/pjmdCWoOejYDxrsgeiji5z2Uovg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/e6b617-76e2-426a-8071-34c76d9756dd/1/eyvf6-RZIh3aNfUsWjmVAg5Pu3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.16.101.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:a8:eb:5e:58:06:2a:7b:fd:5b:9b:6c:86:8c:b4:62:6a:13:
05:19:4a:f0:97:85:3f:27:82:3d:14:98:43:39:20:78:06:ed:
17:ad:09:4d:4e:9a:60:1e:68:78:dc:71:e6:89:6c:28:3c:f5:
56:fd:40:a1:18:74:4b:02:e5:01:5c:ee:db:97:8e:d0:5c:7a:
be:c6:62:96:a5:82:16:24:ba:8d:4c:59:c0:4b:4a:23:c6:ba:
98:52:45:32:3b:64:90:b2:e6:b6:8c:45:35:db:11:4e:b3:7d:
87:6c:2b:38:e0:b3:ef:14:0d:d4:cd:0e:14:cf:0c:8f:80:78:
a1:c5:6c:7b:da:7f:a2:1a:29:08:16:56:86:5c:99:f9:a3:bf:
43:d7:7a:a9:24:e9:f7:00:2f:87:a5:ee:da:8d:b1:70:ad:ad:
03:e2:86:ec:75:47:07:4d:8d:73:25:06:39:f8:9d:03:77:ee:
52:2b:45:89:e3:11:a9:c1:6e:26:d4:74:81:35:76:ef:6f:2f:
e8:d0:5b:76:28:c0:4d:72:d3:3b:5e:2c:46:3f:16:dd:df:90:
b8:b3:11:7e:cd:f4:40:54:89:54:6c:d5:45:aa:81:b8:4c:78:
01:6d:44:1a:b4:84:86:4f:3f:af:bf:a7:ab:da:e8:10:e0:dd:
92:f1:8e:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:18 2024 by rpki-client on console-ams.rpki-client.org