Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/PwNEASZs9tJr2Os56hoF0swUQ2U.roa
File: PwNEASZs9tJr2Os56hoF0swUQ2U.roa (raw, json)
Hash identifier: oPO2nCeDwfKCQBlT4OFtEsrIkjJvWaWeHtajXe6yZJM=
Subject key identifier: 3F:03:44:01:26:6C:F6:D2:6B:D8:EB:39:EA:1A:05:D2:CC:14:43:65
Certificate issuer: /CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Certificate serial: 10B8AC8D
Authority key identifier: 17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/PwNEASZs9tJr2Os56hoF0swUQ2U.roa
Signing time: Sat 01 Jan 2022 13:02:16 +0000
ROA not before: Sat 01 Jan 2022 13:02:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60528
IP address blocks: 78.131.156.0/23 maxlen: 23
88.199.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 280538253 (0x10b8ac8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Validity
Not Before: Jan 1 13:02:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f034401266cf6d26bd8eb39ea1a05d2cc144365
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c4:d0:fe:99:61:41:06:03:d8:b3:8d:f2:ab:
35:04:50:ac:20:79:a4:bb:83:94:4a:43:3e:7f:be:
91:e0:d2:75:58:3b:d6:0d:52:7f:b6:8f:41:67:22:
53:96:f8:91:db:0c:3b:ab:ba:8d:1c:d1:f2:33:97:
9e:9b:66:0a:09:35:a7:0d:bd:e9:7a:e3:4a:b3:17:
a9:de:fd:65:80:4b:e2:2f:9a:a0:15:e9:c8:29:3e:
05:28:76:3f:a2:f6:63:ce:cb:83:04:5c:86:83:20:
20:a9:4a:de:8a:ae:d5:79:fe:b8:c9:c7:67:14:5c:
a9:89:a0:43:ef:59:0d:31:26:d4:e2:0c:53:21:32:
40:f2:d3:3b:b6:c9:ff:ce:2e:7d:ea:41:fe:c0:d2:
7f:d7:7f:eb:36:00:10:05:ee:aa:94:24:7b:6e:35:
ef:13:62:ef:95:28:5d:4b:3a:33:95:c8:f6:07:0a:
09:9d:14:a1:21:fd:bb:27:03:8d:6d:97:f9:7d:99:
e9:3a:23:71:07:db:b3:96:0c:dc:0c:84:6d:83:0c:
93:43:0f:ae:39:5f:de:41:8e:8e:35:d9:a9:5d:b8:
4e:f8:5b:1c:a4:f2:24:4b:66:05:53:e1:24:a1:d0:
f9:b3:8a:15:02:02:eb:86:a2:d0:fb:8f:0a:92:3c:
3d:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:03:44:01:26:6C:F6:D2:6B:D8:EB:39:EA:1A:05:D2:CC:14:43:65
X509v3 Authority Key Identifier:
keyid:17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/PwNEASZs9tJr2Os56hoF0swUQ2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/F5MB3Mf65PfOAeSYenfLgqM2q_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.131.156.0/23
88.199.83.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:4e:87:aa:9c:ab:d0:57:ef:cb:63:e9:2b:f6:fc:2c:e6:ae:
14:9a:5a:df:d7:80:e1:07:c0:0a:7f:25:ae:35:86:53:6f:2c:
cd:7e:24:9c:22:17:8f:1c:5c:3e:88:29:f4:e4:24:16:49:3a:
8b:08:63:84:10:7e:a3:c0:55:23:3b:22:83:90:3e:7d:13:99:
2f:a8:36:af:f4:b9:50:5f:71:18:ab:91:b6:c3:4d:72:4f:3b:
7b:cc:cb:7a:b5:34:97:06:7f:c9:0a:b5:90:1e:54:4c:e2:4b:
b1:65:ad:10:1f:d4:8d:4c:6f:ca:bd:0e:d7:e4:75:44:c0:c4:
a3:b8:33:fe:87:20:f1:07:dc:2f:c9:ff:b3:38:a1:48:4b:92:
e1:4d:f5:3e:1a:70:9f:88:e5:71:05:1f:95:26:4b:5c:75:5c:
fa:19:d9:f0:68:35:7e:32:f1:e1:c9:57:fd:5b:27:9d:8a:36:
0a:78:57:d2:47:2a:e1:03:ad:47:38:ce:41:85:27:90:c6:69:
da:f1:c3:b0:73:83:6b:1c:c5:52:2b:e3:d3:75:2c:86:21:64:
b7:53:9a:f8:f2:13:b0:f3:a0:25:9f:08:84:94:91:a2:7e:51:
ca:b6:d4:91:4a:b7:65:03:e8:18:38:8e:81:ef:01:8d:53:ce:
25:51:1b:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:56 2023 by rpki-client on console-ams.rpki-client.org