Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/PdKU_tB0bynPamJ-39Tl9NAD2FA.roa
File: PdKU_tB0bynPamJ-39Tl9NAD2FA.roa (raw, json)
Hash identifier: icD20NE0ovkYOHvrpEBx7+H2hyEoMhZQv+bGEAHIJ9g=
Subject key identifier: 3D:D2:94:FE:D0:74:6F:29:CF:6A:62:7E:DF:D4:E5:F4:D0:03:D8:50
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 38C2A3A0
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/PdKU_tB0bynPamJ-39Tl9NAD2FA.roa
Signing time: Sat 01 Jan 2022 07:55:05 +0000
ROA not before: Sat 01 Jan 2022 07:55:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 702
IP address blocks: 145.4.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 952279968 (0x38c2a3a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 1 07:55:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3dd294fed0746f29cf6a627edfd4e5f4d003d850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:3e:7e:b3:bb:03:5c:fc:e2:7f:a7:eb:99:4e:
11:81:5b:cf:b3:5a:e5:b8:c8:d5:e8:4f:69:c5:b3:
f5:4e:b2:a0:11:c8:2e:40:7b:56:e3:87:7d:9d:f2:
28:25:b2:b5:9e:d4:0f:e5:bb:d9:70:43:bc:2f:cd:
5b:ea:03:72:a8:bd:57:22:f0:4a:73:a8:b7:b9:ba:
4d:26:cf:51:56:bb:be:c6:67:65:a5:aa:90:f8:dc:
e7:f1:94:1c:b7:67:78:41:98:f7:36:ca:18:37:47:
b4:ef:92:9a:83:ba:bb:00:86:c4:1d:36:76:fb:3f:
3a:d5:ab:2d:cb:6c:70:2a:e7:02:17:a6:e0:9a:fc:
7b:5b:e3:46:5c:52:55:b8:2e:dc:94:32:3c:48:f5:
5c:50:2b:1e:b2:27:44:47:8d:5e:37:4e:22:eb:46:
21:f3:ca:cd:e8:c3:07:51:aa:40:a5:eb:2e:5a:65:
c8:e6:1c:23:2b:12:04:4c:28:dd:71:8e:3d:ff:7a:
56:05:42:8c:bb:ee:4d:52:59:cc:87:50:8d:f0:7c:
cb:1a:64:ed:69:ca:8a:e3:78:3b:c5:53:32:8d:86:
ff:b6:6c:be:a1:3e:8e:72:9e:32:89:14:c1:bd:7a:
5b:0b:36:79:b4:16:60:90:0f:13:ad:36:87:4d:3c:
a7:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:D2:94:FE:D0:74:6F:29:CF:6A:62:7E:DF:D4:E5:F4:D0:03:D8:50
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/PdKU_tB0bynPamJ-39Tl9NAD2FA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.4.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a5:8d:6e:02:ac:0b:cb:cf:be:8c:77:0b:ca:51:0c:97:79:33:
8d:85:84:df:10:cf:86:17:57:4d:5f:d6:fd:cc:67:aa:fd:1a:
b5:ff:6b:14:15:8b:6d:6b:49:26:f6:39:62:5a:29:1f:49:3b:
b9:24:3e:f7:0b:76:45:75:f8:cb:58:01:f2:6f:34:ba:ab:0b:
f2:cd:00:9d:f2:47:45:94:30:cd:d3:53:d0:93:3e:38:59:cd:
31:78:cb:ae:dd:79:de:ce:64:d4:23:63:54:ea:d4:22:56:52:
b4:a0:cd:e2:40:34:87:35:ef:b0:e8:9d:10:e5:db:27:eb:94:
09:9d:f5:26:dd:2b:0e:8d:64:b3:67:1c:de:02:6d:f4:e3:92:
b2:8c:fb:00:29:aa:f6:fd:09:56:12:8f:37:04:6e:bd:6c:d5:
68:c2:82:ec:3c:01:f3:bb:50:71:06:1f:62:93:a0:f8:3c:f7:
4d:81:85:33:b9:78:6b:c5:0c:f6:25:e8:84:d9:cd:a9:90:9d:
cc:2f:e6:f0:29:2a:09:bb:06:42:60:a0:db:0b:9b:9c:77:78:
7d:04:7f:f5:09:0c:44:7d:d5:7d:75:a7:53:00:d2:58:4b:d3:
75:9d:f5:bb:c9:46:34:a1:4e:62:28:6c:3a:b3:a9:59:4f:6d:
25:e7:35:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:09 2024 by rpki-client on console-fra.rpki-client.org