Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/bd4566-ac27-46f8-94f9-19d1bb61d9a7/1/PBrtDpFBsHJ4XGhn5Rzcjkqfyck.roa
File: PBrtDpFBsHJ4XGhn5Rzcjkqfyck.roa (raw, json)
Hash identifier: r4bGuGLOF9sAXYubUbpdLcksK6c2RfD1ADttPfERZx0=
Subject key identifier: 3C:1A:ED:0E:91:41:B0:72:78:5C:68:67:E5:1C:DC:8E:4A:9F:C9:C9
Certificate issuer: /CN=50182bee9aa010c1ffd2d804f6aa7b14bddb91f7
Certificate serial: 018436FEF85F076AE09789D0CFFFA46307B4
Authority key identifier: 50:18:2B:EE:9A:A0:10:C1:FF:D2:D8:04:F6:AA:7B:14:BD:DB:91:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UBgr7pqgEMH_0tgE9qp7FL3bkfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/bd4566-ac27-46f8-94f9-19d1bb61d9a7/1/PBrtDpFBsHJ4XGhn5Rzcjkqfyck.roa
Signing time: Wed 02 Nov 2022 06:19:50 +0000
ROA not before: Wed 02 Nov 2022 06:19:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 36892
IP address blocks: 81.199.14.0/24 maxlen: 24
62.56.138.0/24 maxlen: 24
81.199.89.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:36:fe:f8:5f:07:6a:e0:97:89:d0:cf:ff:a4:63:07:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50182bee9aa010c1ffd2d804f6aa7b14bddb91f7
Validity
Not Before: Nov 2 06:19:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c1aed0e9141b072785c6867e51cdc8e4a9fc9c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:2f:e6:f0:df:3c:53:12:72:df:8d:ef:29:8f:
c4:2c:bd:9d:2c:0c:96:15:93:63:c3:3b:8b:53:68:
b5:6f:6f:b4:ee:d9:dd:59:1a:67:97:e2:96:18:01:
e9:d0:30:8b:e1:3c:2e:2f:44:08:dc:6d:89:c7:de:
aa:69:db:73:fe:0a:cf:87:93:45:2e:f5:71:f6:c8:
1a:1a:6a:57:2c:3e:9a:4a:f6:a3:98:cd:0e:ec:42:
dd:4f:79:a7:9f:63:be:ad:50:19:6b:cd:5a:56:e4:
ab:5f:82:2c:2d:6b:19:cf:9b:fe:f0:54:43:1e:63:
06:4d:70:98:01:28:72:28:bf:5b:80:af:93:23:94:
a6:82:69:c2:1f:89:79:a7:68:9e:5e:7b:fd:06:b8:
02:f7:4e:7d:4e:0c:fd:59:84:1e:6c:ee:77:99:bd:
cb:e9:f5:e9:3c:6f:4c:02:73:ca:66:24:a6:0c:13:
2f:d6:4b:4a:b5:30:27:af:64:12:1a:52:e5:8e:9f:
e7:20:c2:a1:8f:ca:9f:78:cc:ac:73:91:63:ff:c9:
d6:b1:9c:f1:a6:77:fd:eb:4c:bd:6c:87:ab:08:2f:
fd:3f:e7:93:39:89:4a:63:f5:4b:b1:2f:9b:05:80:
46:96:5e:2c:e6:e5:21:de:d2:f3:98:28:3f:55:24:
0b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:1A:ED:0E:91:41:B0:72:78:5C:68:67:E5:1C:DC:8E:4A:9F:C9:C9
X509v3 Authority Key Identifier:
keyid:50:18:2B:EE:9A:A0:10:C1:FF:D2:D8:04:F6:AA:7B:14:BD:DB:91:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UBgr7pqgEMH_0tgE9qp7FL3bkfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/bd4566-ac27-46f8-94f9-19d1bb61d9a7/1/PBrtDpFBsHJ4XGhn5Rzcjkqfyck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/bd4566-ac27-46f8-94f9-19d1bb61d9a7/1/UBgr7pqgEMH_0tgE9qp7FL3bkfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.56.138.0/24
81.199.14.0/24
81.199.89.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:46:48:bd:3c:d9:3d:36:e6:43:e3:18:c1:2e:db:ba:1e:fd:
45:b6:62:27:12:f6:c9:19:12:a1:71:27:6f:da:80:49:b0:39:
f0:b8:5c:2e:d4:87:56:7a:ca:1a:9b:90:76:42:80:11:4f:9f:
a9:8b:a6:fe:77:d8:ee:ec:77:6a:e5:7e:a1:b6:14:b9:0c:21:
c1:59:8e:17:fc:f9:12:ef:4c:04:5b:23:11:b5:a7:4e:94:da:
f8:de:16:59:6e:7d:34:26:ef:9f:29:f7:62:c1:a0:ee:18:5b:
45:32:80:c7:67:ad:0f:e5:b3:77:fd:36:71:7f:14:15:6c:17:
f9:0f:31:24:64:4c:eb:d0:df:f5:70:25:2e:da:9b:40:5d:d8:
d0:96:be:28:58:e9:5a:58:78:fc:c4:9b:9f:6a:81:49:94:da:
67:1c:00:eb:a0:f4:ad:37:65:ac:88:c1:4d:ad:15:4e:93:12:
fd:31:6e:31:2f:6c:87:19:01:2b:3b:92:cf:70:7b:6f:a4:d5:
ba:0a:3f:9d:71:58:b5:16:e7:50:cf:56:71:b1:6f:16:0d:0a:
87:9d:30:ed:ff:78:89:55:70:b5:0a:a8:0a:68:f0:80:60:24:
ce:b2:e5:aa:27:e4:da:66:5a:0a:d6:65:29:7c:d8:1f:a7:70:
80:a3:0f:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:41 2024 by rpki-client on console-fra.rpki-client.org