Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/6e0cfa-205e-4d66-ae3a-c743d7c0bb22/1/PzyRvx6ktrwlFrj9Z_y46dm9vIs.roa
File: PzyRvx6ktrwlFrj9Z_y46dm9vIs.roa (raw, json)
Hash identifier: u6qxqqjWKJ4XbxnRc3S5V7haJX0VBSmxC44bOgyTE+k=
Subject key identifier: 3F:3C:91:BF:1E:A4:B6:BC:25:16:B8:FD:67:FC:B8:E9:D9:BD:BC:8B
Certificate issuer: /CN=8c32a6e57ec81cc5cb43bb503749b360f2b05c3b
Certificate serial: 04E8C707
Authority key identifier: 8C:32:A6:E5:7E:C8:1C:C5:CB:43:BB:50:37:49:B3:60:F2:B0:5C:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jDKm5X7IHMXLQ7tQN0mzYPKwXDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/6e0cfa-205e-4d66-ae3a-c743d7c0bb22/1/PzyRvx6ktrwlFrj9Z_y46dm9vIs.roa
Signing time: Sat 01 Jan 2022 02:57:26 +0000
ROA not before: Sat 01 Jan 2022 02:57:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203797
IP address blocks: 185.123.72.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82364167 (0x4e8c707)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c32a6e57ec81cc5cb43bb503749b360f2b05c3b
Validity
Not Before: Jan 1 02:57:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f3c91bf1ea4b6bc2516b8fd67fcb8e9d9bdbc8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:8d:53:4a:a1:50:97:aa:8d:64:f7:ca:fc:ae:
ba:45:b4:ee:3a:55:8a:ec:08:9f:06:da:46:e3:db:
3e:9f:a6:bf:b2:b3:cc:93:43:1d:b6:ba:88:aa:cb:
cd:14:3c:51:aa:9f:8b:92:b7:f3:6d:6c:6a:7b:f9:
aa:a5:f4:6e:9d:11:44:3d:b0:ef:83:5a:57:51:74:
87:a4:ac:3f:29:4c:ad:6a:3f:93:b0:4b:19:5b:7b:
ac:7c:eb:ca:49:20:60:5c:60:ae:e0:90:be:c8:2a:
0e:bf:5c:7b:56:3a:e5:f8:c9:de:81:40:6f:35:02:
08:90:a7:aa:04:93:7b:53:66:df:83:e0:7f:f1:07:
7d:77:2f:55:aa:ef:89:13:74:e3:b5:b0:04:58:d7:
38:e1:7b:1d:54:9f:fb:e6:96:25:e9:d9:93:be:d5:
e7:9c:b6:1e:6f:4d:62:b0:f7:f2:32:dd:15:bb:f6:
f7:fc:d0:f1:c9:9e:c1:cb:7a:97:86:6d:7c:eb:94:
f3:2c:08:4f:26:1b:e8:d4:d0:56:f6:83:b4:5d:95:
2d:91:49:55:1d:09:d8:05:ea:7f:24:c6:3e:f3:3e:
40:02:f7:61:41:e1:72:7b:f4:16:27:cc:32:05:7b:
85:e1:d4:36:51:e9:52:7f:be:61:21:6c:d4:ba:6f:
9a:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:3C:91:BF:1E:A4:B6:BC:25:16:B8:FD:67:FC:B8:E9:D9:BD:BC:8B
X509v3 Authority Key Identifier:
keyid:8C:32:A6:E5:7E:C8:1C:C5:CB:43:BB:50:37:49:B3:60:F2:B0:5C:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jDKm5X7IHMXLQ7tQN0mzYPKwXDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/6e0cfa-205e-4d66-ae3a-c743d7c0bb22/1/PzyRvx6ktrwlFrj9Z_y46dm9vIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/6e0cfa-205e-4d66-ae3a-c743d7c0bb22/1/jDKm5X7IHMXLQ7tQN0mzYPKwXDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.123.72.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:4b:75:7b:05:f9:f4:8c:58:c4:f6:c1:a3:90:0f:fd:9c:02:
1f:8d:8e:ae:67:e3:48:61:6d:a4:86:d2:26:41:b7:ce:48:2e:
af:74:09:76:04:d2:a1:61:f8:80:fc:9f:8b:c2:33:b9:49:2d:
f7:c0:51:a8:44:0f:a4:03:c5:f1:96:a5:c4:0d:c2:ca:88:03:
53:fc:e2:99:c9:14:87:57:86:24:9b:07:c0:17:62:46:46:75:
cc:19:e8:22:34:69:5b:7f:13:a7:77:67:98:5a:78:63:79:94:
9c:6f:c7:36:7d:61:35:31:73:46:15:b0:cc:e4:e2:ce:af:b6:
d1:6e:a9:dc:59:cb:c0:7a:1f:18:f8:e0:31:e1:5b:9f:13:8e:
9e:bc:92:ee:fc:a3:76:24:b5:3b:19:00:d3:f4:7b:0e:8a:c9:
69:88:4b:00:71:04:41:bc:e1:b4:85:dc:2c:c6:bc:f9:45:84:
b2:51:00:5f:8e:fa:b6:45:73:31:9d:3d:3d:95:7d:8c:10:eb:
cc:01:53:18:4c:9a:c4:63:2f:cb:3f:13:d6:1a:c0:cd:17:11:
e0:54:43:22:ef:a0:e1:2f:a6:5f:a1:76:d3:ce:64:23:38:86:
a7:3a:ae:6e:f4:08:9b:2c:b8:1a:8b:97:7f:8a:c6:0e:0d:b4:
fd:9a:53:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:00 2023 by rpki-client on console-fra.rpki-client.org