Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/PuPEWo7_ZJilrt0J8qb4GRs4Foo.roa
File: PuPEWo7_ZJilrt0J8qb4GRs4Foo.roa (raw, json)
Hash identifier: x+UfEkzymHNCkDKCFdT9GyV7I6pFEGP5T8HGmM4t714=
Subject key identifier: 3E:E3:C4:5A:8E:FF:64:98:A5:AE:DD:09:F2:A6:F8:19:1B:38:16:8A
Certificate issuer: /CN=e4984f8f36ebf9f8f54c12174f463664d7b23aee
Certificate serial: 02030D52
Authority key identifier: E4:98:4F:8F:36:EB:F9:F8:F5:4C:12:17:4F:46:36:64:D7:B2:3A:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5JhPjzbr-fj1TBIXT0Y2ZNeyOu4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/PuPEWo7_ZJilrt0J8qb4GRs4Foo.roa
Signing time: Sat 01 Jan 2022 04:59:56 +0000
ROA not before: Sat 01 Jan 2022 04:59:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15703
IP address blocks: 213.171.72.0/23 maxlen: 23
79.98.176.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33754450 (0x2030d52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4984f8f36ebf9f8f54c12174f463664d7b23aee
Validity
Not Before: Jan 1 04:59:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ee3c45a8eff6498a5aedd09f2a6f8191b38168a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:09:21:5a:80:ea:58:fd:b8:18:c5:94:68:81:
04:a9:92:ca:c6:ee:b5:0d:e3:cc:89:c4:92:fb:88:
c7:8b:3b:cb:aa:2d:0c:8e:d0:60:e4:8b:25:97:a7:
b1:fd:34:fb:7b:94:65:a7:0e:73:1f:0d:df:de:9e:
24:a2:7c:01:bf:d2:78:f2:c6:f1:2b:79:69:26:37:
52:8c:03:1b:ad:d2:ff:c0:31:d6:6c:c6:66:99:c0:
75:b5:7d:6a:4c:58:0e:a1:73:37:c3:82:ef:ce:9d:
cd:4f:9e:a7:19:1c:26:a7:3e:14:8c:ac:d1:d3:ad:
04:a8:d0:3b:5a:85:bf:c6:50:65:06:21:31:d6:4c:
f8:2c:5f:ae:d3:10:d5:07:7a:8f:ff:5b:02:f2:61:
b0:31:5a:df:6b:ce:bd:0e:78:0d:7b:ea:de:c2:c1:
83:dc:f3:c4:d6:5d:84:78:7f:6f:de:25:fa:5b:6f:
c6:64:8e:6d:96:36:a5:1e:3d:8d:40:50:cc:4c:50:
40:29:8d:9a:bd:d2:e6:69:7d:1f:0d:cb:38:ef:9d:
37:2f:6a:6d:5b:eb:a7:2c:f3:9c:e4:ff:6c:a0:05:
e4:ab:f7:c8:97:0d:15:e3:f4:62:6a:3f:e2:d9:96:
94:c5:51:75:82:bb:1b:65:a6:26:99:01:52:d0:ab:
12:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:E3:C4:5A:8E:FF:64:98:A5:AE:DD:09:F2:A6:F8:19:1B:38:16:8A
X509v3 Authority Key Identifier:
keyid:E4:98:4F:8F:36:EB:F9:F8:F5:4C:12:17:4F:46:36:64:D7:B2:3A:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5JhPjzbr-fj1TBIXT0Y2ZNeyOu4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/PuPEWo7_ZJilrt0J8qb4GRs4Foo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/5JhPjzbr-fj1TBIXT0Y2ZNeyOu4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.98.176.0/22
213.171.72.0/23
Signature Algorithm: sha256WithRSAEncryption
90:0e:15:51:c1:1f:4f:99:6e:30:bd:1e:17:19:07:36:40:f1:
ca:51:84:26:f0:a4:7d:25:85:66:8c:54:fe:9d:9b:43:f8:d8:
5f:29:5f:bb:59:61:36:7b:9a:c0:21:ca:1b:b7:9c:5f:5d:07:
16:a0:4e:10:50:f5:09:9d:ce:96:55:8e:5d:e2:9a:9b:97:1f:
e7:21:fc:15:9d:30:e2:ba:14:67:72:53:3c:0f:5b:84:5f:88:
ac:0c:04:df:f2:69:af:1e:e4:7d:7e:06:4f:01:04:0f:c7:b9:
88:02:2b:1c:e5:b4:a8:d6:16:f8:51:a0:c2:46:e5:9c:c5:b8:
a0:bd:d1:82:50:8a:40:98:07:2a:2a:3e:27:4a:02:03:03:4d:
5c:67:e0:c2:8b:d6:ec:fc:f6:82:e9:9d:20:62:30:11:28:50:
5a:7f:16:e2:9f:64:65:c9:6c:5c:fb:44:58:37:5a:09:7a:82:
c3:f6:96:67:f7:5e:46:87:e5:37:de:a0:c7:71:4b:8a:fb:51:
f0:8d:0d:a6:1b:37:db:bb:a6:03:1f:1a:80:4b:16:27:fd:e3:
42:f7:5f:0f:ee:71:03:d4:c2:d7:07:1f:66:65:fb:89:88:39:
81:96:d2:00:6a:cf:99:91:80:31:03:3d:96:85:16:71:92:4f:
f5:b4:3a:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:47 2024 by rpki-client on console-ams.rpki-client.org