Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d05a2e-c281-4dab-8373-a1779904b1c5/1/PMHPOqWEEaIrPAPgVS_a7QPZv7o.roa
File: PMHPOqWEEaIrPAPgVS_a7QPZv7o.roa (raw, json)
Hash identifier: uY6Qo4kWfxfgIVg1lCOgkv16P07/7oeXAiTeFmh3pTU=
Subject key identifier: 3C:C1:CF:3A:A5:84:11:A2:2B:3C:03:E0:55:2F:DA:ED:03:D9:BF:BA
Certificate issuer: /CN=b252dda27226a275e3e79b374c8f263cd2d8ecd1
Certificate serial: 018499B3EBCC1B36C897B09E4BEA54B7FFEF
Authority key identifier: B2:52:DD:A2:72:26:A2:75:E3:E7:9B:37:4C:8F:26:3C:D2:D8:EC:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/slLdonImonXj55s3TI8mPNLY7NE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d05a2e-c281-4dab-8373-a1779904b1c5/1/PMHPOqWEEaIrPAPgVS_a7QPZv7o.roa
Signing time: Mon 21 Nov 2022 10:20:15 +0000
ROA not before: Mon 21 Nov 2022 10:20:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211440
IP address blocks: 185.156.168.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:99:b3:eb:cc:1b:36:c8:97:b0:9e:4b:ea:54:b7:ff:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b252dda27226a275e3e79b374c8f263cd2d8ecd1
Validity
Not Before: Nov 21 10:20:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3cc1cf3aa58411a22b3c03e0552fdaed03d9bfba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:4f:8c:62:43:9d:1f:d7:57:ef:ea:f8:41:ee:
15:71:ac:06:5c:83:34:c8:9e:66:f9:be:18:4b:09:
c4:20:17:92:a1:0e:f4:42:4b:8d:6e:8b:ff:f2:11:
6b:34:0e:f9:93:81:c5:97:97:74:46:50:bc:24:eb:
b7:63:e7:9d:ca:4e:e6:59:7c:fe:4a:a8:77:32:15:
6c:82:92:4c:ba:a7:22:ed:fa:90:2d:a5:48:ad:68:
f4:6f:81:7f:86:59:f1:39:4d:22:a3:b1:e8:e7:db:
d1:b5:b6:70:36:f3:4a:ed:31:a2:23:b1:25:b1:71:
8d:fa:37:6c:18:c2:89:1e:c5:45:5c:21:72:cb:09:
0c:eb:a0:f2:d3:3d:a7:6c:9c:ef:66:b6:0f:24:d2:
ca:7d:50:29:f6:4a:ac:50:85:ba:a4:1a:99:89:ec:
50:a2:97:8f:96:92:00:ef:d0:0b:3c:02:78:b9:af:
2e:26:b0:9c:95:d6:6e:41:05:63:26:e0:08:7f:de:
7c:f7:95:97:68:c7:ff:2d:4f:04:f3:31:7b:77:c4:
97:c9:39:fc:5a:42:62:d9:78:7c:4b:de:b0:ef:86:
01:ca:42:b5:7f:8c:bc:df:52:22:a5:be:20:52:33:
82:ee:a0:6f:b6:14:1f:b5:26:ef:df:ab:ce:69:05:
1d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:C1:CF:3A:A5:84:11:A2:2B:3C:03:E0:55:2F:DA:ED:03:D9:BF:BA
X509v3 Authority Key Identifier:
keyid:B2:52:DD:A2:72:26:A2:75:E3:E7:9B:37:4C:8F:26:3C:D2:D8:EC:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/slLdonImonXj55s3TI8mPNLY7NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d05a2e-c281-4dab-8373-a1779904b1c5/1/PMHPOqWEEaIrPAPgVS_a7QPZv7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d05a2e-c281-4dab-8373-a1779904b1c5/1/slLdonImonXj55s3TI8mPNLY7NE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.156.168.0/23
Signature Algorithm: sha256WithRSAEncryption
30:94:f9:ea:c4:20:7b:02:42:ce:3e:3a:d8:25:6a:0d:78:19:
5b:1c:17:74:b6:ba:67:16:6a:72:01:8b:e3:61:d0:f9:44:69:
38:6a:11:94:b8:d6:01:22:0b:35:ed:2d:5a:32:dd:51:36:20:
d7:8f:7a:ad:9b:bd:76:54:67:6d:99:25:f6:9f:eb:c4:c4:c2:
8f:0d:ad:d1:97:bb:79:cf:b9:a7:c2:10:9c:86:3a:26:7f:ca:
03:87:2d:bf:f8:96:0a:9c:6f:10:74:23:de:b6:05:2d:93:50:
9e:5f:76:5a:b9:3a:0b:3e:bc:41:dc:d6:d2:c3:6b:38:52:30:
22:06:d0:96:c9:68:0c:42:43:dd:e6:0a:e1:b1:4f:dc:bb:6e:
35:2c:9f:60:64:4d:84:38:23:7d:84:1c:f4:75:58:b5:a5:71:
b7:53:07:fa:4f:01:7b:fb:b9:83:07:e6:a4:91:d3:d5:00:45:
ba:18:62:ca:e6:53:f9:91:46:f8:4c:94:91:9c:93:2f:15:3c:
94:5c:88:81:8c:cc:de:68:ab:3d:e7:08:d1:2f:cd:ac:fe:0f:
41:1b:fa:8a:8d:df:a9:50:99:6a:93:fd:af:d6:01:df:b0:67:
f9:f9:d9:03:81:7a:dc:ff:ba:79:73:c4:ee:03:4f:c0:61:f2:
ce:be:ea:3e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYSZs+vMGzbIl7CeS+pUt//vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyNTJkZGEyNzIyNmEyNzVlM2U3OWIzNzRjOGYyNjNjZDJk
OGVjZDEwHhcNMjIxMTIxMTAyMDE1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzY2MxY2YzYWE1ODQxMWEyMmIzYzAzZTA1NTJmZGFlZDAzZDliZmJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsE+MYkOdH9dX7+r4Qe4VcawGXIM0
yJ5m+b4YSwnEIBeSoQ70QkuNbov/8hFrNA75k4HFl5d0RlC8JOu3Y+edyk7mWXz+
Sqh3MhVsgpJMuqci7fqQLaVIrWj0b4F/hlnxOU0io7Ho59vRtbZwNvNK7TGiI7El
sXGN+jdsGMKJHsVFXCFyywkM66Dy0z2nbJzvZrYPJNLKfVAp9kqsUIW6pBqZiexQ
opePlpIA79ALPAJ4ua8uJrCcldZuQQVjJuAIf95895WXaMf/LU8E8zF7d8SXyTn8
WkJi2Xh8S96w74YBykK1f4y831Iipb4gUjOC7qBvthQftSbv36vOaQUdKQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDzBzzqlhBGiKzwD4FUv2u0D2b+6MB8GA1UdIwQY
MBaAFLJS3aJyJqJ14+ebN0yPJjzS2OzRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2xMZG9uSW1vblhqNTVzM1RJOG1QTkxZN05FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC9kMDVhMmUtYzI4MS00ZGFiLTgzNzMt
YTE3Nzk5MDRiMWM1LzEvUE1IUE9xV0VFYUlyUEFQZ1ZTX2E3UVBadjdvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC9kMDVhMmUtYzI4MS00ZGFiLTgzNzMtYTE3Nzk5MDRiMWM1
LzEvc2xMZG9uSW1vblhqNTVzM1RJOG1QTkxZN05FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuZyoMA0G
CSqGSIb3DQEBCwUAA4IBAQAwlPnqxCB7AkLOPjrYJWoNeBlbHBd0trpnFmpyAYvj
YdD5RGk4ahGUuNYBIgs17S1aMt1RNiDXj3qtm712VGdtmSX2n+vExMKPDa3Rl7t5
z7mnwhCchjomf8oDhy2/+JYKnG8QdCPetgUtk1CeX3ZauToLPrxB3NbSw2s4UjAi
BtCWyWgMQkPd5grhsU/cu241LJ9gZE2EOCN9hBz0dVi1pXG3Uwf6TwF7+7mDB+ak
kdPVAEW6GGLK5lP5kUb4TJSRnJMvFTyUXIiBjMzeaKs95wjRL82s/g9BG/qKjd+p
UJlqk/2v1gHfsGf5+dkDgXrc/7p5c8TuA0/AYfLOvuo+
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:39 2023 by rpki-client on console-ams.rpki-client.org