Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/c10cd5-251a-476d-89dc-79497ee25984/1/Pz4W_CCUFcIunEbOHl3qNoaPUgE.roa
File: Pz4W_CCUFcIunEbOHl3qNoaPUgE.roa (raw, json)
Hash identifier: zCQ2Nr1eQ9Cn6J9hCZTXQ1s4PirIyKXzhxpphEEzK7Q=
Subject key identifier: 3F:3E:16:FC:20:94:15:C2:2E:9C:46:CE:1E:5D:EA:36:86:8F:52:01
Certificate issuer: /CN=ad9d45f0292d312fd060a2740bd1e52750bb8c25
Certificate serial: 03F436CD
Authority key identifier: AD:9D:45:F0:29:2D:31:2F:D0:60:A2:74:0B:D1:E5:27:50:BB:8C:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rZ1F8CktMS_QYKJ0C9HlJ1C7jCU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/c10cd5-251a-476d-89dc-79497ee25984/1/Pz4W_CCUFcIunEbOHl3qNoaPUgE.roa
Signing time: Sat 01 Jan 2022 04:53:09 +0000
ROA not before: Sat 01 Jan 2022 04:53:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207496
IP address blocks: 195.162.6.0/23 maxlen: 23
195.177.194.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66336461 (0x3f436cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad9d45f0292d312fd060a2740bd1e52750bb8c25
Validity
Not Before: Jan 1 04:53:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f3e16fc209415c22e9c46ce1e5dea36868f5201
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c4:93:5f:ed:44:1d:12:df:52:50:ba:23:70:
92:3f:a8:28:18:6a:47:fd:82:a6:35:93:03:ea:01:
03:c3:d2:95:c8:d6:bf:d7:70:01:c5:eb:33:83:a7:
e6:7d:46:0d:20:e0:cb:a5:dc:16:33:27:1a:91:91:
9a:7e:d5:84:76:34:28:ca:2e:42:30:8c:9f:1f:3f:
0a:81:e0:4f:29:73:ba:16:d5:f3:6b:87:ea:2c:05:
d6:9d:b4:69:9e:4a:6a:24:7b:a0:fc:62:95:57:a6:
b8:32:1e:48:8b:81:0e:f8:20:97:62:e8:77:4e:37:
79:46:0c:87:f0:5a:43:fb:8f:dd:4f:bb:99:7d:a3:
6d:ee:1f:61:cf:01:15:55:5d:b4:11:d8:77:9f:db:
95:8f:31:61:91:ab:3f:3e:76:23:ec:a7:6d:d1:47:
85:96:86:88:c4:52:c8:14:93:5b:89:0d:8f:3f:b8:
e2:f9:e8:b5:36:7f:5b:23:78:75:40:17:ca:7d:b6:
38:29:63:d3:a0:e9:35:13:98:ce:d0:3e:ef:54:31:
e3:da:25:96:9b:77:75:c0:04:53:7b:df:1c:09:df:
7b:24:8f:52:49:4a:d7:d9:2f:2f:9a:5d:2b:90:ec:
d6:6a:94:8b:77:8e:db:d4:be:48:06:ed:76:43:4a:
35:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:3E:16:FC:20:94:15:C2:2E:9C:46:CE:1E:5D:EA:36:86:8F:52:01
X509v3 Authority Key Identifier:
keyid:AD:9D:45:F0:29:2D:31:2F:D0:60:A2:74:0B:D1:E5:27:50:BB:8C:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rZ1F8CktMS_QYKJ0C9HlJ1C7jCU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/c10cd5-251a-476d-89dc-79497ee25984/1/Pz4W_CCUFcIunEbOHl3qNoaPUgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/c10cd5-251a-476d-89dc-79497ee25984/1/rZ1F8CktMS_QYKJ0C9HlJ1C7jCU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.162.6.0/23
195.177.194.0/23
Signature Algorithm: sha256WithRSAEncryption
48:13:6f:03:fa:1a:04:91:90:d9:6b:89:bf:fd:05:86:98:4c:
f2:65:37:da:ab:83:79:73:a1:b2:77:ad:a1:4b:cf:29:53:c6:
43:23:e6:65:01:3e:fb:d2:3e:9a:e1:da:53:01:95:8f:fa:59:
7e:3e:19:e9:81:4f:f6:04:f0:be:01:b9:84:5a:3c:a5:e8:71:
79:a4:8d:4d:00:b8:a7:99:ca:e7:e3:c7:3e:a7:32:cb:6d:25:
b2:52:2d:41:f0:8c:0a:33:cc:dd:63:3d:41:ba:a9:68:c1:a4:
41:6f:83:59:59:22:ed:cf:14:ab:ae:0f:f2:35:70:ce:60:b2:
41:d2:91:68:4a:25:02:d0:c8:a8:0c:0d:ee:41:62:57:79:a7:
47:94:4e:35:4a:b4:3f:1f:bc:06:c1:8a:71:aa:fe:b1:ee:5b:
1a:09:67:6c:fd:d5:e6:ae:46:9b:88:73:5a:59:90:77:7f:a5:
97:79:ea:89:e5:f5:41:27:6b:56:18:31:be:c5:28:46:c2:01:
8c:7f:13:c7:be:35:70:d7:85:36:d5:f3:b4:16:0c:ba:b8:7b:
67:22:5b:ab:56:42:ea:0d:72:ea:d9:2b:d4:71:f6:d6:83:a4:
4a:ab:0a:f8:83:f6:d6:89:10:b9:4b:37:6b:6b:11:39:e7:0a:
aa:3d:d6:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:05 2024 by rpki-client on console-ams.rpki-client.org