Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/0c01c5-157d-40a7-8fcc-5c7723460223/1/PUHsPgtohrVRX-2OwqK8X0NeCMY.roa
File: PUHsPgtohrVRX-2OwqK8X0NeCMY.roa (raw, json)
Hash identifier: C5/UzDdLI9/bMjztTNG6JULWkOKkSpu/IBDhTMGzC+Y=
Subject key identifier: 3D:41:EC:3E:0B:68:86:B5:51:5F:ED:8E:C2:A2:BC:5F:43:5E:08:C6
Certificate issuer: /CN=db186422279d9d8b4e68e69b1296e532d4da0c3f
Certificate serial: 06C1E2E4
Authority key identifier: DB:18:64:22:27:9D:9D:8B:4E:68:E6:9B:12:96:E5:32:D4:DA:0C:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2xhkIiednYtOaOabEpblMtTaDD8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/0c01c5-157d-40a7-8fcc-5c7723460223/1/PUHsPgtohrVRX-2OwqK8X0NeCMY.roa
Signing time: Sat 01 Jan 2022 14:08:09 +0000
ROA not before: Sat 01 Jan 2022 14:08:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203441
IP address blocks: 185.132.224.0/22 maxlen: 22
193.105.103.0/24 maxlen: 24
2a03:a660::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113369828 (0x6c1e2e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db186422279d9d8b4e68e69b1296e532d4da0c3f
Validity
Not Before: Jan 1 14:08:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d41ec3e0b6886b5515fed8ec2a2bc5f435e08c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:dd:9c:72:c7:cf:4d:ba:b5:73:4d:59:5f:82:
9b:fb:df:9d:a0:b6:60:db:5b:e2:50:47:85:41:b6:
7f:c2:64:ff:a9:69:7f:a5:6c:24:f1:84:33:65:ea:
ea:9b:9a:73:ed:f0:8b:12:01:4d:fc:4e:f1:ee:11:
7b:2e:82:83:00:f4:ee:43:67:08:8e:32:7d:1f:20:
ed:8d:da:12:00:4a:28:3b:33:9e:1e:a7:08:54:29:
60:43:fd:5c:37:c0:c8:7a:92:16:99:50:e8:fc:81:
63:36:f6:e9:93:5b:9f:26:d0:d4:8c:62:1d:bc:4e:
41:dc:86:03:07:3c:20:62:d9:f9:14:a7:10:c8:56:
d9:82:05:dc:c5:a6:aa:17:f0:98:61:d2:e5:63:50:
c9:2d:36:2c:9b:12:78:a4:be:96:d1:67:fe:2f:6b:
55:71:fe:04:69:7c:c0:0b:38:58:f8:61:81:fb:ed:
ba:82:f3:e2:ed:a2:6b:22:39:b7:df:de:8a:43:94:
51:7f:b7:b4:9b:cb:1b:03:7c:4e:fa:a6:b3:8a:82:
53:3d:cb:e6:c9:8a:69:52:e7:72:1a:df:5a:a1:7d:
6e:f0:26:f8:d0:35:c4:5f:b8:8b:af:00:f4:78:f6:
3b:32:b6:6d:58:85:aa:55:1f:cc:b7:46:5d:1e:24:
b7:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:41:EC:3E:0B:68:86:B5:51:5F:ED:8E:C2:A2:BC:5F:43:5E:08:C6
X509v3 Authority Key Identifier:
keyid:DB:18:64:22:27:9D:9D:8B:4E:68:E6:9B:12:96:E5:32:D4:DA:0C:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2xhkIiednYtOaOabEpblMtTaDD8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/0c01c5-157d-40a7-8fcc-5c7723460223/1/PUHsPgtohrVRX-2OwqK8X0NeCMY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/0c01c5-157d-40a7-8fcc-5c7723460223/1/2xhkIiednYtOaOabEpblMtTaDD8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.132.224.0/22
193.105.103.0/24
IPv6:
2a03:a660::/32
Signature Algorithm: sha256WithRSAEncryption
60:83:07:e6:f5:52:9f:25:9a:f6:46:82:36:64:b9:84:51:f8:
82:7e:fe:bd:ae:74:4e:e3:47:b8:d8:56:7f:d7:9d:fd:e7:c4:
d1:c7:0e:e4:74:d2:f5:91:fc:bc:59:a2:84:c9:e8:c4:a8:d7:
cd:05:67:f1:83:81:13:1d:87:a0:e6:93:fb:56:c0:ec:91:5c:
2f:33:c3:d1:b3:15:b0:15:47:ef:09:05:26:a8:ac:a1:17:c6:
5b:8b:6b:5b:37:bb:63:b7:06:83:02:2b:a6:ad:d8:62:a8:e3:
3c:7a:ee:cd:69:25:df:77:5a:48:2b:e5:af:f0:d8:b6:cb:ec:
45:34:53:34:d7:32:8c:fc:6a:e2:08:cd:a6:72:b0:ca:d2:e8:
08:98:ff:53:fb:83:1d:97:e6:53:e3:f3:2b:f9:55:ba:fb:9e:
b5:1a:b5:1c:a2:76:23:77:02:40:d6:9e:2e:50:a2:bc:9e:6f:
7a:36:09:e6:23:02:8e:91:90:78:82:ca:1f:53:88:38:24:9d:
02:7e:64:fa:03:a2:2d:c1:0b:03:be:3a:cc:94:03:b2:32:77:
d6:ca:17:0d:66:02:01:ef:64:34:30:7a:d7:ea:81:a1:a1:58:
bc:ec:93:1d:d0:b5:cc:08:2c:69:ff:a4:6a:56:de:b2:61:71:
cd:d4:6a:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:59 2023 by rpki-client on console-ams.rpki-client.org