Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/18bda0-a885-4eb4-a00b-5be2451490f1/1/PtVIGU7TaFRDF7g8Q94ei96tnGY.roa
File: PtVIGU7TaFRDF7g8Q94ei96tnGY.roa (raw, json)
Hash identifier: Ngyy9f1D4yWfjo4M52vmiKXHYl26sSucvXcZ9jKr0Qk=
Subject key identifier: 3E:D5:48:19:4E:D3:68:54:43:17:B8:3C:43:DE:1E:8B:DE:AD:9C:66
Certificate issuer: /CN=480bf1c136ecffd312fc39ba3c82aff939de24f9
Certificate serial: 0185325C939FE20CF4ED5A3A984A26E8FE87
Authority key identifier: 48:0B:F1:C1:36:EC:FF:D3:12:FC:39:BA:3C:82:AF:F9:39:DE:24:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAvxwTbs_9MS_Dm6PIKv-TneJPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/18bda0-a885-4eb4-a00b-5be2451490f1/1/PtVIGU7TaFRDF7g8Q94ei96tnGY.roa
Signing time: Wed 21 Dec 2022 01:46:45 +0000
ROA not before: Wed 21 Dec 2022 01:46:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204843
IP address blocks: 185.179.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:32:5c:93:9f:e2:0c:f4:ed:5a:3a:98:4a:26:e8:fe:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=480bf1c136ecffd312fc39ba3c82aff939de24f9
Validity
Not Before: Dec 21 01:46:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ed548194ed368544317b83c43de1e8bdead9c66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:9e:67:2c:c5:72:1f:f6:13:14:70:8d:ea:49:
44:cb:fc:9e:1a:7f:ab:ec:36:b7:87:5c:d7:08:d1:
76:4c:a5:1d:dd:5a:bf:e2:55:4b:17:8b:9c:d9:3f:
e1:9d:89:55:84:ed:6c:74:a6:f7:6b:57:94:03:df:
e3:95:e7:de:c3:e9:9d:06:a0:ad:57:3d:9d:34:42:
e5:39:8e:35:97:f1:69:6d:fc:26:cd:c9:26:b5:37:
cd:ae:23:0b:25:ee:ce:8b:d1:c9:1a:2b:d2:d8:8a:
5b:e2:cd:d1:98:3c:18:56:3e:b8:f1:40:bd:60:4c:
9b:59:18:d6:c8:e2:5c:5c:9e:a8:81:2c:47:a4:30:
63:67:a9:63:e9:35:98:45:04:6f:52:9b:f0:cb:c8:
05:b9:5b:4f:18:63:8b:c1:06:80:6c:dc:b9:64:86:
7c:d4:ed:14:d2:21:26:31:25:ad:a3:ca:53:b0:5a:
2c:ae:89:74:8b:ec:98:fc:d2:45:2d:cc:a0:1d:4f:
e3:6f:ca:b8:76:2f:f2:05:7e:ff:be:88:1c:14:47:
61:66:71:f5:9b:0b:3d:29:ef:f4:bb:a5:39:0a:75:
12:9a:44:18:f7:80:b5:21:e3:74:4f:9f:33:1a:6e:
47:ed:ca:6d:2c:35:d7:af:70:bb:f0:53:3c:db:1d:
76:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:D5:48:19:4E:D3:68:54:43:17:B8:3C:43:DE:1E:8B:DE:AD:9C:66
X509v3 Authority Key Identifier:
keyid:48:0B:F1:C1:36:EC:FF:D3:12:FC:39:BA:3C:82:AF:F9:39:DE:24:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAvxwTbs_9MS_Dm6PIKv-TneJPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/18bda0-a885-4eb4-a00b-5be2451490f1/1/PtVIGU7TaFRDF7g8Q94ei96tnGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/18bda0-a885-4eb4-a00b-5be2451490f1/1/SAvxwTbs_9MS_Dm6PIKv-TneJPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.91.0/24
Signature Algorithm: sha256WithRSAEncryption
60:46:53:4c:bd:6c:7c:fe:4d:83:dd:88:05:e6:a3:4b:4e:8e:
c5:bb:9f:96:d2:4b:23:fb:a6:67:a7:b4:e1:d9:11:35:f4:69:
86:9e:7c:16:97:d9:58:83:a8:bd:92:55:cb:44:b9:7f:7a:69:
08:9d:e2:87:97:06:4e:c4:b0:57:1b:0d:a5:3f:ea:dc:4d:03:
3d:47:f6:0e:e6:b3:cd:0f:37:35:cb:71:d4:c8:97:8b:8a:f2:
25:87:7c:94:bc:80:21:f4:87:d9:7f:54:52:61:7d:85:06:23:
31:67:d7:83:eb:0e:20:5f:91:58:fa:f4:f5:14:50:0a:3b:74:
32:c7:a0:7f:f7:c4:1f:79:bd:cb:3b:01:94:e8:71:f2:87:94:
47:60:44:eb:67:c3:01:0f:60:f7:5b:01:71:d9:27:8f:ed:97:
06:6b:72:21:bc:29:0e:b2:23:70:c2:9b:3a:11:b9:0d:21:e9:
b9:3a:d5:7f:04:36:c9:1f:2d:72:db:a8:94:54:8c:fd:9c:3c:
48:b7:83:87:84:ff:20:72:ba:89:fb:6a:69:39:3f:c5:ab:b4:
96:3f:31:7a:e6:e8:19:8e:74:68:6f:d2:d3:68:94:23:d3:69:
f3:dc:c5:9b:b1:9d:c2:be:40:30:4c:57:b8:6f:a0:9b:b9:7e:
e3:46:da:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:54 2023 by rpki-client on console-ams.rpki-client.org