Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/PZ4SX-p6Wx07dl0tA5pjXhtbAbw.roa
File: PZ4SX-p6Wx07dl0tA5pjXhtbAbw.roa (raw, json)
Hash identifier: 5do2mDZ/KXAWwB0mIrFuHoIw97jrQH/q1Y82yb8IUek=
Subject key identifier: 3D:9E:12:5F:EA:7A:5B:1D:3B:76:5D:2D:03:9A:63:5E:1B:5B:01:BC
Certificate issuer: /CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Certificate serial: 0183ECAF41845BBE7625C3EB00723748FCA4
Authority key identifier: 74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/PZ4SX-p6Wx07dl0tA5pjXhtbAbw.roa
Signing time: Tue 18 Oct 2022 20:00:52 +0000
ROA not before: Tue 18 Oct 2022 20:00:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211398
IP address blocks: 31.24.249.0/24 maxlen: 32
2001:678:f30::/48 maxlen: 48
2a12:4942:174::/48 maxlen: 48
2a12:4946:46::/48 maxlen: 48
2a12:4940::/32 maxlen: 48
2a12:4946:1655::/48 maxlen: 48
2a12:4946:3005::/48 maxlen: 48
2a12:4946:1650::/48 maxlen: 48
2a12:4946:1600::/48 maxlen: 48
2a12:4946:1700::/48 maxlen: 48
2a12:4946:1800::/48 maxlen: 48
2a12:4946:1900::/48 maxlen: 48
2a12:4946:3000::/48 maxlen: 48
2a12:4942::/31 maxlen: 48
2a12:4946:6960::/44 maxlen: 48
2a12:4946:1658::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ec:af:41:84:5b:be:76:25:c3:eb:00:72:37:48:fc:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Validity
Not Before: Oct 18 20:00:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d9e125fea7a5b1d3b765d2d039a635e1b5b01bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3d:05:82:51:4a:05:0b:20:4a:cc:72:df:b9:
9a:b9:70:5a:93:89:76:f6:37:b2:eb:19:61:bb:8e:
76:3b:bd:2e:89:4d:5a:17:76:b8:f6:88:5b:01:d6:
e8:9e:ee:e5:f1:d0:4c:9d:c1:cb:61:04:08:6f:03:
dd:45:21:ee:e9:a7:38:05:89:e7:b6:65:a9:0c:29:
9a:69:b3:07:0e:d5:d3:ee:2b:3c:00:00:68:5f:29:
76:f0:d8:64:f2:fc:bf:a7:72:cb:53:0c:ed:25:fb:
e6:02:f4:47:1d:80:a5:9c:13:d4:5d:5b:57:a1:e1:
82:a7:78:af:7e:f3:24:ce:45:59:fc:10:da:c8:60:
5d:bc:23:b4:25:0d:cd:bf:26:2b:73:0d:a1:92:51:
a6:14:b3:72:b8:6f:57:c5:21:c7:6b:8c:1d:22:7d:
a7:a0:26:85:3c:dc:1b:38:d5:9f:dd:4f:e7:be:04:
f1:f1:22:91:47:86:39:4f:b3:1e:10:cf:b5:f2:6d:
48:95:76:8e:2c:ab:87:42:4d:25:58:76:fa:20:61:
ce:aa:ae:7d:98:3e:33:1d:60:04:bb:c1:0a:d0:0d:
2b:22:11:ce:d5:66:0f:b2:4b:42:a6:cb:7c:94:d3:
36:1a:95:1b:cb:a5:2f:e2:14:20:2a:47:f7:5c:60:
86:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:9E:12:5F:EA:7A:5B:1D:3B:76:5D:2D:03:9A:63:5E:1B:5B:01:BC
X509v3 Authority Key Identifier:
keyid:74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/PZ4SX-p6Wx07dl0tA5pjXhtbAbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.249.0/24
IPv6:
2001:678:f30::/48
2a12:4940::/32
2a12:4942::/31
2a12:4946:46::/48
2a12:4946:1600::/48
2a12:4946:1650::/48
2a12:4946:1655::/48
2a12:4946:1658::/48
2a12:4946:1700::/48
2a12:4946:1800::/48
2a12:4946:1900::/48
2a12:4946:3000::/48
2a12:4946:3005::/48
2a12:4946:6960::/44
Signature Algorithm: sha256WithRSAEncryption
1c:95:44:18:d4:00:0d:01:39:d1:aa:4e:3d:94:2a:06:6b:2c:
91:76:31:40:8a:71:8c:be:96:4d:08:ea:72:89:e3:b8:4d:b5:
65:f5:15:e6:ef:e6:5b:71:d2:db:82:da:85:3d:e0:f1:08:25:
6b:5b:c6:4e:93:1d:83:5f:f9:ee:1a:9e:bf:af:1b:12:80:7b:
e3:5d:62:68:76:a4:28:2c:ca:ae:68:09:18:18:43:a5:f4:89:
cc:3c:a3:05:7a:8f:4c:c1:3b:15:53:84:6c:3e:80:0d:33:5e:
4d:b3:56:cb:e1:2a:3e:b5:55:b2:96:f3:2f:66:0d:88:f5:16:
8a:3d:08:6a:a8:12:7b:ee:3a:c1:cb:f0:89:a5:20:56:3a:c7:
da:77:16:5a:27:67:49:06:50:6a:73:04:8d:dc:9c:64:04:00:
12:5c:2d:74:a9:80:7e:eb:25:a8:b8:1f:fc:5c:8a:58:a0:28:
7f:63:6c:75:6b:c7:f9:96:e2:02:fd:7c:d0:f9:e0:8c:f7:3a:
bc:1c:c4:e6:93:8c:e4:5d:34:53:66:56:00:92:48:6c:97:93:
b1:22:5c:97:6e:01:bf:53:9a:85:70:e0:bb:50:6f:11:7d:ae:
8f:a4:c0:e0:f9:40:53:38:68:91:69:b0:71:c9:ff:c4:7e:25:
80:50:0e:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:44 2023 by rpki-client on console-ams.rpki-client.org