Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/PJCRh0pHF7qiWmvafWAIAl-mJ1k.roa
File: PJCRh0pHF7qiWmvafWAIAl-mJ1k.roa (raw, json)
Hash identifier: LLzTPjTziPXuX9hdb4ucbUQkEOjJVNjxN3OUbkzT4EU=
Subject key identifier: 3C:90:91:87:4A:47:17:BA:A2:5A:6B:DA:7D:60:08:02:5F:A6:27:59
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 0183F9F2F5B3B96DC5276DC6D3C2D343E70D
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/PJCRh0pHF7qiWmvafWAIAl-mJ1k.roa
Signing time: Fri 21 Oct 2022 09:49:52 +0000
ROA not before: Fri 21 Oct 2022 09:49:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211252
IP address blocks: 45.85.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f9:f2:f5:b3:b9:6d:c5:27:6d:c6:d3:c2:d3:43:e7:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Oct 21 09:49:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c9091874a4717baa25a6bda7d6008025fa62759
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:59:20:44:9a:f5:7a:db:9f:67:02:d7:bd:47:
01:c1:7e:9b:6a:e1:12:f8:43:af:4c:71:3e:bd:58:
7c:f3:09:82:09:d5:e0:af:66:a1:11:90:25:e3:db:
a2:d0:18:09:46:64:c8:89:5f:9f:13:12:fa:6f:d1:
e9:6c:8d:0c:12:a2:0d:26:61:ca:d6:8f:1a:57:d4:
39:cb:0c:e6:34:a6:79:8e:fb:2a:a3:7c:20:05:35:
1c:c7:dd:43:fe:dd:d5:96:d2:e4:9c:24:f0:e5:84:
02:b1:2c:b0:2e:d8:64:67:c5:ae:6c:e3:fa:cb:6f:
b6:1b:00:a9:f9:2c:ce:8e:46:7d:85:83:bc:33:cb:
74:39:b6:e1:88:13:3d:0c:1b:f1:9b:9f:6e:63:a2:
22:36:45:1a:45:1c:62:71:af:0f:e0:64:ca:a8:2f:
e0:93:1e:53:e5:ae:22:dc:09:6a:9b:03:28:d5:16:
8e:3c:68:e4:d4:c8:c8:af:9c:90:1f:43:5b:5d:ef:
40:18:ee:41:ff:9a:06:35:c9:f3:48:a9:87:91:58:
86:ec:4a:30:d6:92:c6:68:9d:95:3d:e0:49:41:1f:
dc:a7:5b:9e:de:de:29:f9:b8:38:39:9c:23:cc:72:
68:46:04:d1:7d:8c:fa:be:95:08:31:b3:2b:a0:5c:
2c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:90:91:87:4A:47:17:BA:A2:5A:6B:DA:7D:60:08:02:5F:A6:27:59
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/PJCRh0pHF7qiWmvafWAIAl-mJ1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.90.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:39:d4:fe:72:60:61:f5:96:5f:1e:94:92:62:e5:e6:95:17:
67:b2:0a:a6:68:4a:e3:5a:d5:f0:ab:e3:80:ab:fc:67:0b:2c:
dd:93:7e:ce:df:81:0d:fe:ec:87:9e:35:73:ff:a8:ed:86:f1:
46:c5:20:52:04:87:6b:6f:3c:b1:ba:c4:e3:e7:2c:e7:e3:1a:
4d:40:ac:7f:6b:be:df:9e:e7:a2:ab:7a:c3:31:95:3a:7c:64:
38:03:07:34:84:ea:f2:2a:4e:99:9d:19:c7:b4:e8:c6:0c:67:
31:40:eb:ae:ee:e5:b0:5b:f2:2f:6f:52:9b:a8:6d:61:44:cc:
60:63:97:82:9e:4e:87:a2:13:75:a8:cf:c7:5c:39:06:6c:fe:
49:e1:18:03:91:5e:a4:22:c3:fe:02:db:71:55:79:71:d9:0a:
13:3f:19:42:c3:a9:7d:ca:ed:c0:8d:9b:77:de:1c:2d:31:12:
ff:fb:37:31:6b:8a:5d:b5:65:6b:44:53:0a:f7:1e:fa:1d:fe:
16:80:af:29:4a:cc:2f:32:35:e5:11:34:99:9d:cf:4b:dd:18:
78:0c:bb:25:e7:fe:77:b2:72:90:76:7c:c9:51:dd:7b:c4:38:
1c:06:c3:4c:bc:75:68:59:3f:da:62:fa:b5:7e:ce:25:09:c0:
56:49:ab:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:32 2023 by rpki-client on console-fra.rpki-client.org