Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/PRPToMPn_0-Ro7kUrs7KywwBnwk.roa
File: PRPToMPn_0-Ro7kUrs7KywwBnwk.roa (raw, json)
Hash identifier: nqQjO+9ln39u5DJXuMifQr9+2NJ83QKf2BXl/XgGpsg=
Subject key identifier: 3D:13:D3:A0:C3:E7:FF:4F:91:A3:B9:14:AE:CE:CA:CB:0C:01:9F:09
Certificate issuer: /CN=f4b9ea4d9d83a728dd41029e86af8a130d389ed4
Certificate serial: 0E6199B5
Authority key identifier: F4:B9:EA:4D:9D:83:A7:28:DD:41:02:9E:86:AF:8A:13:0D:38:9E:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LnqTZ2DpyjdQQKehq-KEw04ntQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/PRPToMPn_0-Ro7kUrs7KywwBnwk.roa
Signing time: Mon 02 May 2022 11:11:23 +0000
ROA not before: Mon 02 May 2022 11:11:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196957
IP address blocks: 193.107.172.0/22 maxlen: 22
91.234.40.0/22 maxlen: 22
2001:67c:13b8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 241277365 (0xe6199b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4b9ea4d9d83a728dd41029e86af8a130d389ed4
Validity
Not Before: May 2 11:11:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d13d3a0c3e7ff4f91a3b914aececacb0c019f09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:46:cb:7e:66:6b:ed:6a:69:7f:2a:dd:6e:24:
71:3b:76:37:b5:eb:77:b8:e8:67:1a:3c:c8:ac:34:
da:6c:22:c0:cf:9e:f2:37:4a:37:b8:88:d6:75:48:
b3:93:78:8e:6c:7a:c6:7b:41:f9:c0:67:b5:a6:29:
95:79:d4:e9:cf:e0:1a:0a:f4:74:ce:2b:f3:1b:35:
50:26:c4:e2:a7:16:50:48:59:83:16:27:6f:89:92:
e9:7f:50:58:77:4e:25:16:ed:a5:72:8c:da:81:aa:
cf:16:55:1a:81:e5:5e:6c:95:ef:27:78:a2:c2:65:
9e:f5:b5:6a:ea:75:c7:15:3f:a8:64:4b:3c:97:8e:
b7:6c:1c:75:c8:66:22:7c:78:78:a1:c8:68:aa:06:
a4:3f:70:12:e7:66:ed:80:c9:dc:f4:a1:92:23:85:
02:04:a5:b1:2c:3c:96:35:bc:fc:68:5f:e2:ff:99:
22:d3:27:68:c7:47:de:3a:ec:b0:fc:68:eb:25:d5:
ef:5d:ac:3b:ea:b2:a6:16:93:6e:1f:fa:c0:3b:df:
70:d8:10:07:61:d7:3f:a8:4e:1c:8a:ec:6a:1f:c8:
0b:76:ad:8b:4e:fc:a9:22:83:b1:17:17:03:2d:46:
1b:30:4a:bc:58:8b:a1:6e:76:a5:29:61:78:eb:6f:
ab:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:13:D3:A0:C3:E7:FF:4F:91:A3:B9:14:AE:CE:CA:CB:0C:01:9F:09
X509v3 Authority Key Identifier:
keyid:F4:B9:EA:4D:9D:83:A7:28:DD:41:02:9E:86:AF:8A:13:0D:38:9E:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LnqTZ2DpyjdQQKehq-KEw04ntQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/PRPToMPn_0-Ro7kUrs7KywwBnwk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/9LnqTZ2DpyjdQQKehq-KEw04ntQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.40.0/22
193.107.172.0/22
IPv6:
2001:67c:13b8::/48
Signature Algorithm: sha256WithRSAEncryption
6e:b8:5e:0c:47:91:2a:88:e1:74:bb:43:2d:5f:58:96:35:e2:
47:62:04:6c:9a:49:0d:e6:34:8a:2e:a4:e8:2f:85:2f:80:7d:
c5:16:f3:61:4b:78:78:35:bf:73:04:5a:c6:39:aa:fa:ca:24:
5b:bf:0a:73:d6:08:52:f9:2e:e0:41:cb:0d:20:ae:61:99:22:
ea:c9:53:6f:e9:bd:6e:c2:0a:a7:ca:82:4e:b6:8f:ec:3c:bd:
a4:a5:37:41:98:5f:99:0f:3b:f6:4a:55:02:88:8b:de:7e:a5:
ef:a2:0a:3f:9c:03:85:30:cf:37:1a:e8:6d:6f:43:38:67:77:
9b:ec:4d:53:81:1a:7a:dd:08:57:c1:62:f2:54:2a:8d:47:87:
17:6e:5f:a5:b2:b1:c8:0a:63:3b:4f:36:c6:dc:4d:5c:09:08:
bd:78:f5:68:ea:02:d6:1a:ce:9d:a4:84:00:6c:49:d6:28:09:
4f:ea:9d:21:52:3e:99:c8:21:f6:7a:ab:42:e1:d1:a5:78:15:
cf:5e:09:0f:27:22:12:1b:88:e2:38:ef:10:70:86:0a:c5:b6:
23:c6:34:4a:ce:18:b1:9e:46:de:e5:96:14:43:41:b8:1d:00:
f5:61:17:a8:40:25:5d:9c:0e:39:21:c9:b1:02:59:4a:fb:8f:
5e:a2:5b:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:45 2023 by rpki-client on console-ams.rpki-client.org