Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/6448d2-fe07-4fc4-9624-028fe5255bbe/1/PeIMFAUNKAGjdJJ2ppCrf_AJjb8.roa
File: PeIMFAUNKAGjdJJ2ppCrf_AJjb8.roa (raw, json)
Hash identifier: VJ66cmbJ+qIeydpb8HJAe7EaVNvvTaXiKTXFcChk2vQ=
Subject key identifier: 3D:E2:0C:14:05:0D:28:01:A3:74:92:76:A6:90:AB:7F:F0:09:8D:BF
Certificate issuer: /CN=edbd0f2905e0abc0642031656a3a569ef737b4d0
Certificate serial: 01CE33E4
Authority key identifier: ED:BD:0F:29:05:E0:AB:C0:64:20:31:65:6A:3A:56:9E:F7:37:B4:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7b0PKQXgq8BkIDFlajpWnvc3tNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/6448d2-fe07-4fc4-9624-028fe5255bbe/1/PeIMFAUNKAGjdJJ2ppCrf_AJjb8.roa
Signing time: Sat 01 Jan 2022 09:00:27 +0000
ROA not before: Sat 01 Jan 2022 09:00:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211699
IP address blocks: 194.113.156.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30290916 (0x1ce33e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edbd0f2905e0abc0642031656a3a569ef737b4d0
Validity
Not Before: Jan 1 09:00:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3de20c14050d2801a3749276a690ab7ff0098dbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:17:d1:4e:9d:d3:77:b4:69:6e:98:78:9f:06:
d2:63:bc:02:bf:39:72:e2:fe:91:d9:48:bc:43:1e:
b8:33:52:9a:a1:ee:50:21:37:50:12:fd:6d:0d:ae:
86:07:c1:37:43:79:1e:9f:5d:25:ad:09:04:10:93:
b9:43:41:0c:ba:62:7d:1e:88:67:db:7a:b6:74:ba:
ef:45:3e:bd:d2:07:65:6d:81:3f:73:a4:b8:fc:75:
01:73:65:99:7c:0a:5b:79:97:21:6b:e5:f2:89:96:
2f:1f:74:1c:05:4e:5d:c7:81:ba:94:5b:40:b3:11:
a0:fa:36:fa:27:f5:90:05:8c:8d:a0:06:cf:a0:2a:
bb:71:6b:6b:41:f3:74:bd:b3:2c:2a:d5:4f:a5:a7:
d1:69:f5:32:18:ed:a4:ec:98:3f:c8:cd:2d:3a:ad:
e0:e3:81:dc:5c:ad:e4:8b:85:77:e6:f5:84:b9:3e:
aa:62:1b:b6:79:9a:ed:2a:8f:5d:4f:07:e2:3a:9d:
44:f6:2a:c6:10:30:34:e7:e4:cb:69:98:80:bd:63:
91:b5:d1:51:59:15:8c:a8:3e:1e:f4:e0:d1:88:ff:
aa:ef:71:60:87:1a:8e:4e:28:a0:9c:d9:48:cd:83:
c2:67:e8:0b:68:9a:a9:e2:ce:55:85:87:b2:f4:98:
0c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:E2:0C:14:05:0D:28:01:A3:74:92:76:A6:90:AB:7F:F0:09:8D:BF
X509v3 Authority Key Identifier:
keyid:ED:BD:0F:29:05:E0:AB:C0:64:20:31:65:6A:3A:56:9E:F7:37:B4:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b0PKQXgq8BkIDFlajpWnvc3tNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6448d2-fe07-4fc4-9624-028fe5255bbe/1/PeIMFAUNKAGjdJJ2ppCrf_AJjb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6448d2-fe07-4fc4-9624-028fe5255bbe/1/7b0PKQXgq8BkIDFlajpWnvc3tNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.113.156.0/22
Signature Algorithm: sha256WithRSAEncryption
68:69:f9:4a:0f:26:3c:1b:fa:a6:ad:9d:bf:c6:bd:d9:6a:79:
2f:1f:f0:a6:63:27:dc:ef:0a:98:76:d5:fb:89:83:d7:e9:52:
32:1a:34:0f:88:d9:47:62:ca:5c:23:63:6e:70:61:1a:be:cb:
da:7b:33:15:35:d5:58:6a:8a:05:47:06:cb:26:8c:6c:bb:0d:
e1:c8:15:a3:04:19:bc:f0:46:df:17:df:2c:7b:b4:e8:44:ce:
76:e2:50:6b:01:15:bb:f7:43:cf:19:56:66:0e:4d:10:d1:08:
d2:b6:78:01:45:b9:8e:9c:f9:de:7c:29:e2:10:17:6d:be:88:
00:90:83:ef:66:ac:fc:13:49:9d:59:2e:9c:59:d2:a6:53:07:
f0:1e:52:ea:8d:c1:a9:2b:a3:c2:b4:8f:cd:f6:5c:db:00:11:
d9:7f:f4:de:9d:27:60:9c:23:05:67:a5:8c:fc:5f:8c:06:72:
c4:e7:bd:61:2f:9f:85:91:b8:26:fc:76:d5:a8:1e:3a:13:f7:
c2:28:62:06:38:12:33:f5:c4:23:52:29:66:8b:42:4b:35:a0:
ac:fb:7a:65:b9:e2:ff:39:77:63:ea:e0:e8:fa:13:af:b3:c1:
43:73:12:50:06:a7:2c:22:9a:a8:0c:20:93:31:b5:06:2b:5b:
99:07:06:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:52 2023 by rpki-client on console-ams.rpki-client.org