Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/d7d04c-3175-43ad-9e3d-10a4e537226e/1/PVejuxWg2TIGeuaU-fNdxWuVdV8.roa
File: PVejuxWg2TIGeuaU-fNdxWuVdV8.roa (raw, json)
Hash identifier: wxcH/aYrJFK8m+IxyWeSL7/44UWEbgild9i5jMrGOrs=
Subject key identifier: 3D:57:A3:BB:15:A0:D9:32:06:7A:E6:94:F9:F3:5D:C5:6B:95:75:5F
Certificate issuer: /CN=1af91dcedfdefdce59bdb05002b1cb6c52f0c5d3
Certificate serial: 1301D6F1
Authority key identifier: 1A:F9:1D:CE:DF:DE:FD:CE:59:BD:B0:50:02:B1:CB:6C:52:F0:C5:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gvkdzt_e_c5ZvbBQArHLbFLwxdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/d7d04c-3175-43ad-9e3d-10a4e537226e/1/PVejuxWg2TIGeuaU-fNdxWuVdV8.roa
Signing time: Sat 01 Jan 2022 08:00:30 +0000
ROA not before: Sat 01 Jan 2022 08:00:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34270
IP address blocks: 85.91.224.0/19 maxlen: 19
2a01:3f8::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 318887665 (0x1301d6f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1af91dcedfdefdce59bdb05002b1cb6c52f0c5d3
Validity
Not Before: Jan 1 08:00:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d57a3bb15a0d932067ae694f9f35dc56b95755f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f4:c2:c7:85:e3:d6:89:aa:b8:d3:db:40:aa:
b1:19:16:f6:62:f3:71:17:87:65:cd:ad:81:18:8a:
8c:77:70:fb:03:d9:b0:51:2a:e4:c7:e0:09:5b:22:
a0:16:2d:63:f8:74:2a:6d:75:a3:6b:14:8b:05:57:
80:92:cd:77:60:ba:aa:0e:be:51:ea:6f:ea:45:f3:
a7:1e:bd:51:5d:aa:78:07:a1:16:0e:28:33:bf:39:
d3:03:25:94:40:38:6c:3a:e6:62:ef:59:80:7c:7e:
44:d9:7a:1d:ac:52:72:ec:72:37:b3:cc:30:90:47:
68:b5:d7:88:10:f9:8b:79:d8:ef:d5:17:43:f1:ce:
8b:b6:3a:9f:7e:8e:d5:bc:64:a3:6a:f6:5a:0f:ab:
91:01:29:b3:67:bb:2b:b7:36:48:94:f4:b1:57:8d:
c8:7a:89:6d:07:a5:f8:aa:41:67:9b:ee:e8:03:fb:
b1:c4:52:2f:96:f2:88:f3:c1:08:b6:10:41:f3:29:
9f:52:24:31:1a:8f:18:45:b9:14:fa:53:cd:f8:c4:
f4:77:83:53:e0:39:18:77:13:fb:f2:95:1f:fc:e1:
a9:e2:4a:ed:00:75:2d:9d:6c:4a:c0:00:cd:d3:75:
21:47:0b:cc:57:65:ed:bc:48:95:39:06:d3:a6:ac:
88:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:57:A3:BB:15:A0:D9:32:06:7A:E6:94:F9:F3:5D:C5:6B:95:75:5F
X509v3 Authority Key Identifier:
keyid:1A:F9:1D:CE:DF:DE:FD:CE:59:BD:B0:50:02:B1:CB:6C:52:F0:C5:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gvkdzt_e_c5ZvbBQArHLbFLwxdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/d7d04c-3175-43ad-9e3d-10a4e537226e/1/PVejuxWg2TIGeuaU-fNdxWuVdV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/d7d04c-3175-43ad-9e3d-10a4e537226e/1/Gvkdzt_e_c5ZvbBQArHLbFLwxdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.91.224.0/19
IPv6:
2a01:3f8::/32
Signature Algorithm: sha256WithRSAEncryption
17:7d:5a:dc:c2:06:77:ac:c5:6d:b7:87:02:e3:0d:11:7f:a3:
67:8e:e3:4f:c3:ac:54:12:ab:9a:f4:b8:bc:d6:07:36:f7:4c:
0c:57:75:dc:37:80:33:0f:73:a1:b2:4d:be:18:65:67:20:76:
82:9a:0c:4a:eb:d9:34:97:ea:26:a3:ad:88:a7:c4:88:ee:9e:
45:68:ff:78:b7:e3:8e:a3:33:9f:f8:fb:de:44:b0:8c:e6:c7:
24:d7:67:96:48:a2:ff:d9:35:20:11:9b:26:85:b3:12:be:18:
64:26:cd:03:29:3e:a3:19:d6:d4:5d:12:96:a1:95:ee:87:59:
d3:a9:2a:01:57:11:49:87:59:da:ea:15:d9:d3:38:f8:ba:10:
62:93:d3:6f:9b:c0:1f:15:f5:cf:cf:fd:59:12:03:fb:63:95:
09:e7:81:58:25:6a:71:ee:60:7b:cb:09:d9:59:62:34:6e:95:
72:9e:ee:4f:83:86:29:75:e7:cb:46:c2:7c:f0:78:a6:f3:ee:
b8:0d:26:7c:f9:ed:94:df:a5:a5:6f:0d:3f:e1:1f:e7:7b:69:
df:72:82:87:47:75:cb:b7:44:75:4c:6d:95:02:39:0b:f7:d8:
8d:02:f9:46:ce:40:98:f5:e1:c7:26:1b:94:8b:b5:2b:3a:ac:
43:27:d4:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:20 2024 by rpki-client on console-ams.rpki-client.org