Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/PDzfeyIQ40Vn5iD5SS189tksLGw.roa
File: PDzfeyIQ40Vn5iD5SS189tksLGw.roa (raw, json)
Hash identifier: jKDHma23eFdGLh77BuCKXZcQvpYZYI/l4ssI6Zjq9Eg=
Subject key identifier: 3C:3C:DF:7B:22:10:E3:45:67:E6:20:F9:49:2D:7C:F6:D9:2C:2C:6C
Certificate issuer: /CN=219527c224f00a28b2f4cb4e1312d748d5ca5169
Certificate serial: 0726F778
Authority key identifier: 21:95:27:C2:24:F0:0A:28:B2:F4:CB:4E:13:12:D7:48:D5:CA:51:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IZUnwiTwCiiy9MtOExLXSNXKUWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/PDzfeyIQ40Vn5iD5SS189tksLGw.roa
Signing time: Sat 01 Jan 2022 14:07:42 +0000
ROA not before: Sat 01 Jan 2022 14:07:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208092
IP address blocks: 193.9.156.0/23 maxlen: 23
193.16.40.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119994232 (0x726f778)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=219527c224f00a28b2f4cb4e1312d748d5ca5169
Validity
Not Before: Jan 1 14:07:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c3cdf7b2210e34567e620f9492d7cf6d92c2c6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:80:61:8e:8b:3f:2f:50:4b:cd:06:22:d5:24:
f7:95:17:ae:f5:14:e1:81:4f:36:60:93:cc:00:48:
64:ce:ef:9d:5e:0e:bd:cf:c5:6c:4a:c4:10:9e:a8:
e8:a2:be:a6:40:d5:68:c0:3b:eb:6f:19:42:b5:0b:
99:30:da:d4:69:f5:30:f6:bc:fb:ca:39:f9:6d:c5:
a4:60:10:67:9b:5a:5c:98:21:61:c1:6d:e3:96:05:
e7:90:79:0d:0c:7d:5d:ec:84:be:65:44:81:66:6a:
36:ae:e1:3c:3d:6c:ce:e7:9e:78:cf:28:09:35:3c:
f6:17:cb:08:05:e7:2d:78:ee:f5:bd:26:ee:d6:dc:
ad:99:32:43:97:ba:59:f5:a5:5c:3a:a3:e7:82:7e:
80:1a:9a:15:73:14:8b:ee:0b:69:e5:e9:15:86:62:
8f:51:48:48:69:f2:a1:46:03:a4:ea:ba:75:43:9d:
62:d5:9c:f6:65:55:2b:d7:f7:54:91:94:c9:89:18:
3d:4f:87:16:99:32:8e:d7:e3:cd:74:cf:65:f5:44:
9e:57:cc:f8:b6:1a:87:a7:c6:6e:2b:1f:49:1e:7d:
16:15:e5:04:cc:3a:82:62:f8:e7:bc:b1:61:b4:54:
ca:ac:fa:a4:f6:0d:5d:94:ec:3a:f2:58:10:f5:df:
af:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:3C:DF:7B:22:10:E3:45:67:E6:20:F9:49:2D:7C:F6:D9:2C:2C:6C
X509v3 Authority Key Identifier:
keyid:21:95:27:C2:24:F0:0A:28:B2:F4:CB:4E:13:12:D7:48:D5:CA:51:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IZUnwiTwCiiy9MtOExLXSNXKUWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/PDzfeyIQ40Vn5iD5SS189tksLGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.9.156.0/23
193.16.40.0/23
Signature Algorithm: sha256WithRSAEncryption
30:aa:f6:ab:5d:3f:68:b7:33:f1:7d:9a:4b:aa:79:2c:39:55:
5c:87:3d:a8:2d:63:2b:cd:a4:ed:b9:63:e1:dc:5a:ad:5b:ad:
49:9a:6b:a4:a0:cd:e7:b3:aa:74:be:9d:f4:8d:21:2e:66:3b:
e7:6d:eb:33:e3:d8:90:a0:22:1d:f2:72:ac:58:a8:f6:b1:ef:
5f:ab:ad:4e:27:41:c3:18:86:c7:e5:e8:79:cb:0e:3b:48:e0:
de:ae:6f:ac:f1:ab:cc:4a:31:1d:30:f6:63:fe:e7:12:45:06:
61:52:ab:bd:52:f7:48:8d:53:b6:88:38:0b:99:41:2b:bc:9e:
57:4c:42:b9:6d:b0:63:25:9d:2c:8f:b1:d9:8e:6c:6a:62:6a:
0e:a5:e7:dc:8f:72:56:bd:1a:76:fc:5d:94:d0:00:d3:14:07:
bc:7c:e6:ea:80:35:92:e1:18:51:4e:95:d3:ea:a9:7f:1e:f7:
c7:20:fa:9c:db:85:79:1d:13:7e:f2:68:33:15:92:27:61:81:
0d:fe:2e:37:63:f3:5d:94:ab:e9:77:ce:00:4c:0c:6d:ca:54:
2c:95:52:2b:01:63:6f:b4:c2:3a:7f:3c:6f:99:ee:c1:fc:7e:
71:be:cf:8e:d4:9f:06:6e:55:3d:8c:2d:ef:0e:b3:cc:84:ad:
b5:4a:93:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:57 2023 by rpki-client on console-ams.rpki-client.org