Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/e06713-d6da-401c-bae5-65d33f1b58c8/1/PmUUjTjiODQPOdmx-Wsg6AxtwvE.roa
File: PmUUjTjiODQPOdmx-Wsg6AxtwvE.roa (raw, json)
Hash identifier: 33GIgxfcEwYq9MeXO8z0QWHH54bEzcCuezV4rJvNCP4=
Subject key identifier: 3E:65:14:8D:38:E2:38:34:0F:39:D9:B1:F9:6B:20:E8:0C:6D:C2:F1
Certificate issuer: /CN=9b9319025733da87ed8fca2032e3f8a660495a71
Certificate serial: 048E4E66
Authority key identifier: 9B:93:19:02:57:33:DA:87:ED:8F:CA:20:32:E3:F8:A6:60:49:5A:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m5MZAlcz2oftj8ogMuP4pmBJWnE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/e06713-d6da-401c-bae5-65d33f1b58c8/1/PmUUjTjiODQPOdmx-Wsg6AxtwvE.roa
Signing time: Sat 01 Jan 2022 07:57:29 +0000
ROA not before: Sat 01 Jan 2022 07:57:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49233
IP address blocks: 185.251.108.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76435046 (0x48e4e66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b9319025733da87ed8fca2032e3f8a660495a71
Validity
Not Before: Jan 1 07:57:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e65148d38e238340f39d9b1f96b20e80c6dc2f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e9:3e:31:d4:0b:56:0e:f3:8a:64:16:ca:65:
54:ef:61:9c:74:2b:de:d7:2f:fb:54:3c:c0:8f:38:
a7:d0:78:6d:82:ae:2d:9b:fd:bd:9e:a5:9a:af:cb:
d1:4c:3e:9f:bf:94:09:18:a2:3f:82:ec:f5:f1:c1:
01:f3:6f:05:48:25:04:25:8c:df:ba:92:62:4e:55:
a8:80:97:61:64:26:6b:6d:ca:15:75:2a:e9:c1:fa:
46:12:34:2d:13:82:54:4a:1c:0a:66:03:2a:b2:5c:
d2:ac:3a:79:16:12:b1:1a:1f:35:b0:ed:b0:a0:23:
3d:47:df:f8:5b:57:22:9e:62:31:80:af:1c:40:e7:
b6:c1:a1:43:e6:bb:5b:25:25:d2:5b:8d:72:3b:cd:
3a:28:ee:c2:8f:8e:76:8a:fa:21:dd:88:3e:9e:d4:
1a:06:1b:21:fc:36:c9:b6:eb:6e:6f:c4:85:bd:58:
13:e7:24:56:ba:d0:2d:de:dc:0f:63:23:c0:a9:94:
a0:1e:e4:8b:eb:8d:f9:ad:4a:d9:e7:3f:43:a6:72:
71:da:d6:df:29:e9:b1:8f:1d:5d:5b:e3:31:f7:98:
d3:27:3c:ce:b0:a1:fc:e7:8e:b8:2a:a5:d9:3f:de:
a4:81:5e:f9:f7:77:c7:02:c6:60:ee:f8:b2:66:20:
ff:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:65:14:8D:38:E2:38:34:0F:39:D9:B1:F9:6B:20:E8:0C:6D:C2:F1
X509v3 Authority Key Identifier:
keyid:9B:93:19:02:57:33:DA:87:ED:8F:CA:20:32:E3:F8:A6:60:49:5A:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m5MZAlcz2oftj8ogMuP4pmBJWnE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/e06713-d6da-401c-bae5-65d33f1b58c8/1/PmUUjTjiODQPOdmx-Wsg6AxtwvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/e06713-d6da-401c-bae5-65d33f1b58c8/1/m5MZAlcz2oftj8ogMuP4pmBJWnE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.108.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:85:7b:de:47:77:6e:49:81:49:83:5a:90:08:fa:00:15:64:
5c:06:14:52:72:43:c5:42:ef:75:17:5a:33:66:6d:03:42:b4:
d5:bb:cf:31:81:8e:70:8b:80:0a:d5:90:8f:7e:7c:24:e1:e6:
9d:9c:1a:ab:03:a5:8a:0f:40:d5:63:58:ef:bf:f8:b9:f9:ae:
25:d6:88:bc:02:63:43:aa:0f:94:ac:5a:12:6b:12:e1:71:7c:
a2:74:a6:57:5e:7a:68:1e:19:d2:9e:28:7d:49:6a:10:b9:0f:
65:4d:f5:0f:da:c1:01:c6:cb:17:a0:83:bb:f2:5a:d9:db:98:
fb:14:d5:82:be:ad:fd:a6:ea:83:f2:13:d6:45:79:2c:82:35:
e5:b6:f8:46:aa:d2:71:89:3c:51:f1:88:a2:c9:07:c4:6a:ec:
4d:38:30:8d:48:54:98:0d:38:3d:8c:68:39:1e:65:94:65:3c:
c8:e9:49:50:76:10:e1:78:92:2d:3d:e4:c2:f5:b5:02:fa:c5:
d4:e4:d3:32:c6:54:4d:22:64:dd:cd:a2:82:a0:4c:36:f0:75:
8f:84:85:7f:d2:e7:96:2b:b6:af:ba:61:2f:dd:0a:6e:11:56:
11:9c:35:52:a0:d9:05:8c:13:5d:d0:ed:d7:67:a8:6c:0f:37:
c8:2e:0b:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:49 2024 by rpki-client on console-fra.rpki-client.org