Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/b41ad4-8500-4f26-9019-0f0bc9f629d3/1/PUjQicx3aGIIcAX0I7jufyNeft4.roa
File: PUjQicx3aGIIcAX0I7jufyNeft4.roa (raw, json)
Hash identifier: B0tyaEfK5LnBDfHjIMmlLpvcE2oLQSpoku5GgiXfKWo=
Subject key identifier: 3D:48:D0:89:CC:77:68:62:08:70:05:F4:23:B8:EE:7F:23:5E:7E:DE
Certificate issuer: /CN=07217c0634c102c71ba3e444f0688abdd1af4ce8
Certificate serial: 131439FD
Authority key identifier: 07:21:7C:06:34:C1:02:C7:1B:A3:E4:44:F0:68:8A:BD:D1:AF:4C:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ByF8BjTBAscbo-RE8GiKvdGvTOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/b41ad4-8500-4f26-9019-0f0bc9f629d3/1/PUjQicx3aGIIcAX0I7jufyNeft4.roa
Signing time: Sat 01 Jan 2022 04:56:27 +0000
ROA not before: Sat 01 Jan 2022 04:56:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50319
IP address blocks: 185.84.196.0/23 maxlen: 23
185.84.198.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 320092669 (0x131439fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07217c0634c102c71ba3e444f0688abdd1af4ce8
Validity
Not Before: Jan 1 04:56:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d48d089cc776862087005f423b8ee7f235e7ede
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:42:db:0b:25:19:7b:a4:8c:c3:69:55:4c:4b:
43:14:da:d7:79:35:64:6e:83:fb:14:86:fc:a6:fe:
b2:5d:d9:fe:86:e9:2b:85:a7:65:53:28:93:2d:ed:
63:cf:b0:fc:de:b3:78:87:a3:34:08:dd:f6:a5:e5:
c7:1a:54:f6:48:b5:61:60:48:4e:38:8c:12:db:4b:
98:65:f8:21:e8:ea:9e:b3:0a:e4:75:f9:db:d6:cb:
5a:4f:96:95:c1:d3:4e:11:bb:80:4b:b8:65:95:73:
56:4e:d9:b6:c8:96:0a:b4:19:81:68:a5:26:9c:03:
7d:17:56:17:6a:b5:af:06:4e:b3:ac:46:2c:e7:9f:
4a:f0:d1:2b:a3:74:c2:ff:cf:91:b1:7b:65:42:02:
1f:b3:91:b8:6e:fd:51:9a:40:c8:15:18:80:40:ba:
ac:74:c9:aa:1f:c4:2d:fd:4f:c8:f9:ea:8b:fa:d7:
96:ba:4d:da:aa:36:6e:0d:bc:b1:5f:43:51:5f:03:
1d:a1:66:f0:eb:7c:dc:bc:49:75:0b:8d:10:4e:19:
09:9a:cb:e5:9f:c0:7c:50:5c:13:a7:0b:9f:c9:a0:
6c:d8:3b:b1:c9:8c:5d:81:a9:c9:c5:01:23:c9:f9:
4c:7c:27:d4:61:c0:8f:2f:c8:e9:30:a9:05:df:6d:
17:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:48:D0:89:CC:77:68:62:08:70:05:F4:23:B8:EE:7F:23:5E:7E:DE
X509v3 Authority Key Identifier:
keyid:07:21:7C:06:34:C1:02:C7:1B:A3:E4:44:F0:68:8A:BD:D1:AF:4C:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ByF8BjTBAscbo-RE8GiKvdGvTOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/b41ad4-8500-4f26-9019-0f0bc9f629d3/1/PUjQicx3aGIIcAX0I7jufyNeft4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/b41ad4-8500-4f26-9019-0f0bc9f629d3/1/ByF8BjTBAscbo-RE8GiKvdGvTOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.196.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:a7:57:32:f5:88:6d:89:d1:ca:bf:69:dd:b8:3f:8d:8c:d9:
92:33:f6:d0:8c:10:9a:14:50:ff:50:24:13:cd:ad:d1:b1:46:
f7:22:64:cf:9d:ec:4c:0f:d4:55:cb:c3:0e:ae:78:b5:a0:8b:
c0:b1:5b:55:07:c8:b3:b3:72:cf:db:98:e1:89:d1:32:0b:09:
70:a8:e3:60:ea:38:5a:1a:86:c4:63:f8:5a:5e:72:17:89:15:
a0:f7:d6:50:69:ff:1a:cc:74:dc:99:3d:88:c0:5b:67:25:1e:
98:39:f0:c9:da:ee:14:39:66:56:05:c2:5d:4d:d3:81:af:a3:
e5:4a:9a:10:2d:21:e9:53:91:20:b3:bc:e6:ca:2c:de:14:d7:
a4:88:fe:47:95:93:59:2a:2a:ad:e4:30:69:7b:2e:db:bf:d6:
74:c8:3f:92:9a:c6:17:de:0b:08:07:c9:13:04:bf:8a:1a:d8:
f8:6a:73:1c:b7:9a:f3:fb:2f:81:61:13:55:73:10:e5:a7:b5:
07:de:d3:65:56:e7:73:10:e9:8c:2d:08:ee:36:08:d1:23:12:
48:3f:1c:2b:2d:d7:14:0f:18:f9:86:26:52:1b:0f:30:fa:e9:
f4:36:85:50:31:12:d2:e6:b5:2f:22:84:f4:86:fe:c7:f8:fa:
aa:4d:77:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:11 2023 by rpki-client on console-fra.rpki-client.org