Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/PmDEJuFbWukbuUTsUxsaXO0eUbg.roa
File: PmDEJuFbWukbuUTsUxsaXO0eUbg.roa (raw, json)
Hash identifier: S97l25K7Y3eM9iIXzHXOVQ0Nxx1IaUCKsD3qVvKXjTo=
Subject key identifier: 3E:60:C4:26:E1:5B:5A:E9:1B:B9:44:EC:53:1B:1A:5C:ED:1E:51:B8
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 3A8185E7
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/PmDEJuFbWukbuUTsUxsaXO0eUbg.roa
Signing time: Sat 01 Jan 2022 06:00:00 +0000
ROA not before: Sat 01 Jan 2022 06:00:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43957
IP address blocks: 144.208.192.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 981566951 (0x3a8185e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jan 1 06:00:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e60c426e15b5ae91bb944ec531b1a5ced1e51b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c9:ee:40:38:92:62:2c:50:3a:f8:d3:75:fe:
25:d7:f1:31:6e:70:c8:67:c3:d0:68:e7:8f:ff:c9:
63:6c:d0:3d:1b:7a:09:de:cd:0d:59:80:65:3c:b6:
88:8d:2b:86:63:d3:4e:4e:6b:ef:c9:0c:6b:01:2b:
e4:9e:f3:25:f0:ea:8d:bc:da:64:23:bd:19:d7:f0:
70:1d:01:06:2c:cb:ed:29:1d:5f:50:8c:e8:63:d8:
0e:65:d2:83:3e:e4:ef:d8:19:5d:a5:10:a2:ef:c0:
f4:70:5e:0b:32:d4:7e:44:93:b6:50:2d:12:72:c5:
f1:5b:d2:90:1c:d3:79:7f:1c:61:04:f0:6d:70:24:
ff:e0:cc:1c:75:eb:7d:0a:4b:15:76:81:f6:c4:1f:
98:90:e3:c1:ca:56:0f:c6:07:05:37:39:15:76:ed:
85:88:50:5c:94:88:5f:c2:d9:c2:55:7c:97:d1:e6:
3b:5c:e6:d7:35:58:09:b1:a7:6a:25:53:f1:89:08:
65:2e:de:14:c3:ff:cd:b1:e3:ac:cc:f0:c6:a6:4e:
b3:92:67:14:df:ab:e3:5c:c1:0c:2b:68:18:a0:4a:
48:44:f0:f4:2f:02:80:d6:d1:8b:3e:71:d1:ef:78:
f6:87:1b:a9:be:2b:d8:d3:c8:71:b7:d9:fa:cd:f6:
23:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:60:C4:26:E1:5B:5A:E9:1B:B9:44:EC:53:1B:1A:5C:ED:1E:51:B8
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/PmDEJuFbWukbuUTsUxsaXO0eUbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.208.192.0/22
Signature Algorithm: sha256WithRSAEncryption
61:dd:a9:78:b4:59:cf:4d:e8:5b:e4:1b:74:bf:53:bc:b8:2a:
94:f8:66:fe:c3:4f:eb:4d:0e:1c:0e:76:a5:f1:23:23:07:98:
b0:53:20:15:10:3c:68:37:9d:9a:ea:5d:06:1e:d6:16:69:15:
df:cf:85:ae:93:07:4a:21:91:42:7b:2f:8a:5a:bd:a1:1a:ff:
d6:11:88:d5:91:89:03:7d:2c:f6:6d:dc:d2:f4:05:a2:a3:13:
ff:bb:d8:3c:51:78:02:4f:d5:da:45:cf:54:63:bf:80:7a:12:
73:1a:7f:46:f7:b3:e2:9c:1a:75:3f:18:ce:f8:0e:45:7e:a3:
db:fa:3e:db:c6:ad:5a:bf:b4:43:3f:d4:6e:ba:db:e2:1c:99:
e7:de:b3:9f:3a:48:59:c0:8c:2e:58:61:b7:d9:54:2b:2e:7e:
0c:61:0b:c4:01:8e:67:e5:ae:e4:3f:f2:d2:4c:9b:22:fb:4e:
48:a8:a9:89:58:ea:f1:5c:8b:0d:0a:a5:3f:6d:6e:57:75:9c:
6b:73:83:da:df:60:3a:68:86:12:a6:51:9a:c6:9d:d1:ca:26:
15:34:e4:8d:c1:d0:97:e8:21:bd:18:04:00:4e:aa:a1:3f:7d:
ed:4b:23:a6:67:64:7c:3c:9c:52:2e:e9:87:ff:d2:43:9e:f4:
71:fd:59:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:14 2024 by rpki-client on console-fra.rpki-client.org