Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/605f1c-0d7a-4bd3-88b6-2f0a6bdbbe51/1/PpNpw-10KVJrYUvmsofW-Q1U2jU.roa
File: PpNpw-10KVJrYUvmsofW-Q1U2jU.roa (raw, json)
Hash identifier: j4RPKOy5OXYagqbFLhYQXDtIAZeV2HH9T3ISN2OxQVc=
Subject key identifier: 3E:93:69:C3:ED:74:29:52:6B:61:4B:E6:B2:87:D6:F9:0D:54:DA:35
Certificate issuer: /CN=10f1d0dbe093c722350618f4045c25ba94317f87
Certificate serial: 0E62FB79
Authority key identifier: 10:F1:D0:DB:E0:93:C7:22:35:06:18:F4:04:5C:25:BA:94:31:7F:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EPHQ2-CTxyI1Bhj0BFwlupQxf4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/605f1c-0d7a-4bd3-88b6-2f0a6bdbbe51/1/PpNpw-10KVJrYUvmsofW-Q1U2jU.roa
Signing time: Sat 01 Jan 2022 15:00:36 +0000
ROA not before: Sat 01 Jan 2022 15:00:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213054
IP address blocks: 185.221.244.0/24 maxlen: 24
2a04:3f83:44::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 241367929 (0xe62fb79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10f1d0dbe093c722350618f4045c25ba94317f87
Validity
Not Before: Jan 1 15:00:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e9369c3ed7429526b614be6b287d6f90d54da35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:73:8e:34:16:32:aa:a3:48:0e:5f:5f:41:ad:
db:93:23:7c:e4:10:ce:1a:b7:0a:6b:74:6e:55:c2:
b7:6c:ce:86:72:38:93:e2:ec:72:71:92:ca:67:a0:
89:aa:d7:bf:8d:24:24:2f:a6:bd:19:b8:e3:59:38:
30:ab:db:9b:0d:65:24:65:ea:df:53:67:78:29:be:
8e:3f:f0:78:d3:76:65:c0:e3:e0:a1:01:a5:d0:f6:
04:44:73:66:9f:ef:f8:e0:82:87:7b:a3:ef:f9:57:
14:6d:80:e8:2a:87:61:5b:db:12:83:9c:88:5f:28:
05:9e:5e:af:aa:39:71:48:95:7b:fd:23:bf:10:63:
54:f5:65:53:36:dc:dc:c1:79:c3:7f:8f:99:ac:91:
bb:2b:99:fb:97:31:13:bf:17:a9:3a:76:fe:9d:7a:
06:0f:26:8e:2b:0e:32:ab:9b:74:f8:9b:05:f5:c9:
6a:7a:c5:8b:37:3a:d8:4a:b1:7b:ed:de:9b:65:a4:
08:df:5d:50:9d:10:f5:26:c8:f7:17:38:67:d4:1f:
08:05:f8:2a:7c:2c:3b:af:5a:11:bf:33:62:02:5b:
93:89:1c:35:1c:58:f8:08:71:9b:c7:1d:34:f9:15:
2c:c2:eb:c4:19:b6:a0:64:1f:d3:c0:71:68:3f:df:
3c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:93:69:C3:ED:74:29:52:6B:61:4B:E6:B2:87:D6:F9:0D:54:DA:35
X509v3 Authority Key Identifier:
keyid:10:F1:D0:DB:E0:93:C7:22:35:06:18:F4:04:5C:25:BA:94:31:7F:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EPHQ2-CTxyI1Bhj0BFwlupQxf4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/605f1c-0d7a-4bd3-88b6-2f0a6bdbbe51/1/PpNpw-10KVJrYUvmsofW-Q1U2jU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/605f1c-0d7a-4bd3-88b6-2f0a6bdbbe51/1/EPHQ2-CTxyI1Bhj0BFwlupQxf4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.244.0/24
IPv6:
2a04:3f83:44::/48
Signature Algorithm: sha256WithRSAEncryption
51:f2:f8:19:b2:77:a9:76:c6:aa:9c:6c:7a:5d:18:3d:a5:0c:
ab:df:09:39:36:b3:c0:ad:24:22:fb:18:61:b1:a4:e0:4b:c5:
fd:2e:85:f7:b1:48:be:08:37:fd:2f:6c:bb:aa:5d:7d:bf:93:
d2:a3:2b:ee:02:a0:ab:11:5a:db:73:f3:14:98:b5:e8:3c:28:
51:62:99:38:12:a0:7e:52:6f:17:fd:af:4e:80:53:55:34:0b:
d6:88:53:a4:7c:b3:3c:ba:1c:e8:e1:85:79:f5:24:37:a9:79:
c6:80:51:f0:9a:f1:9a:b5:fa:51:01:d7:c1:12:dc:4d:eb:51:
68:7c:12:8a:34:18:a1:2b:f0:2d:4d:9e:42:13:51:87:73:fd:
4e:90:38:17:b1:b7:27:a3:df:6c:4b:0e:59:d1:4a:84:b1:a3:
26:38:ad:8d:ee:9f:4e:fa:43:93:10:65:43:6d:a0:46:f2:bc:
1d:d4:45:f2:6b:b5:71:a2:62:67:9c:f6:8b:b1:32:9f:8b:3b:
73:61:78:b4:44:05:1a:bb:87:07:3f:10:7b:93:2d:62:cb:c5:
40:b8:16:f3:b7:c8:42:dd:47:72:b5:d5:10:db:de:4f:1d:7e:
7a:e2:40:03:14:0f:2b:bb:b5:30:42:31:d3:2b:98:c7:dd:e1:
8b:51:a4:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:59 2023 by rpki-client on console-ams.rpki-client.org