Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/d34fa2-3a37-4308-b783-5857f1c17624/1/PBUxCgIpnZyIwrGjy1yN7TMD_MI.roa
File: PBUxCgIpnZyIwrGjy1yN7TMD_MI.roa (raw, json)
Hash identifier: oM+sZq8Ftkom+4wC0x4jk/jhqt8Q1Zt4UVgpKh2czbg=
Subject key identifier: 3C:15:31:0A:02:29:9D:9C:88:C2:B1:A3:CB:5C:8D:ED:33:03:FC:C2
Certificate issuer: /CN=d4cf0fbd5f6e1759903cc69de0dc4ea24c1f83df
Certificate serial: 04838147
Authority key identifier: D4:CF:0F:BD:5F:6E:17:59:90:3C:C6:9D:E0:DC:4E:A2:4C:1F:83:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1M8PvV9uF1mQPMad4NxOokwfg98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/d34fa2-3a37-4308-b783-5857f1c17624/1/PBUxCgIpnZyIwrGjy1yN7TMD_MI.roa
Signing time: Wed 23 Feb 2022 09:36:05 +0000
ROA not before: Wed 23 Feb 2022 09:36:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204526
IP address blocks: 94.177.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75727175 (0x4838147)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4cf0fbd5f6e1759903cc69de0dc4ea24c1f83df
Validity
Not Before: Feb 23 09:36:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c15310a02299d9c88c2b1a3cb5c8ded3303fcc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:47:a5:a7:4a:39:46:fe:6c:99:b9:b7:76:6b:
02:77:dd:f3:44:2b:02:ef:10:e8:d6:d6:9e:75:7c:
40:50:15:6f:63:36:d9:c8:cc:bf:c6:03:c6:4a:e8:
b4:e1:4c:df:b6:1b:cf:a5:2d:04:5d:49:eb:f5:fa:
17:2d:ab:71:53:8e:0f:c7:3b:3b:21:3a:a0:09:0f:
65:f5:3f:12:a0:97:9e:de:8b:d3:9b:85:64:6c:86:
64:1e:8d:8a:2e:11:77:f5:ca:61:06:a7:6f:93:c9:
0a:2f:19:36:02:33:12:44:d8:7d:b0:b3:eb:d1:bb:
eb:0b:8c:dd:d3:3f:9b:4b:26:f1:22:24:44:a2:91:
66:8b:66:aa:dd:1d:5f:e4:2b:5d:67:5d:b3:2f:71:
98:0a:13:20:37:66:c0:bb:8f:2b:5c:8b:dc:24:47:
b2:ea:ba:5c:fb:52:2b:aa:8a:bd:2f:54:65:25:a7:
85:b4:33:00:81:d2:fb:73:ca:56:9e:98:9b:e7:e8:
29:57:41:90:8e:ac:6d:6b:ba:5e:28:b0:38:6f:fd:
40:17:7e:e0:8d:20:63:05:b0:ab:23:2a:61:71:a0:
2a:7c:93:91:78:09:c9:d6:79:65:63:1f:80:51:01:
9e:db:c1:01:24:8f:e1:d8:eb:1e:35:3c:b4:1a:f6:
7e:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:15:31:0A:02:29:9D:9C:88:C2:B1:A3:CB:5C:8D:ED:33:03:FC:C2
X509v3 Authority Key Identifier:
keyid:D4:CF:0F:BD:5F:6E:17:59:90:3C:C6:9D:E0:DC:4E:A2:4C:1F:83:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1M8PvV9uF1mQPMad4NxOokwfg98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/d34fa2-3a37-4308-b783-5857f1c17624/1/PBUxCgIpnZyIwrGjy1yN7TMD_MI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/d34fa2-3a37-4308-b783-5857f1c17624/1/1M8PvV9uF1mQPMad4NxOokwfg98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.177.8.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:b5:d2:03:c2:9f:90:05:22:af:2a:41:7b:e4:d6:56:ee:ec:
df:c1:d7:cf:51:9b:7d:d9:94:6e:a2:18:07:1e:15:c6:c4:cf:
c2:76:40:ba:2c:f1:37:4c:30:41:d7:c6:26:f0:35:e5:0a:a8:
d3:84:d5:c0:e0:e1:e4:68:52:d7:1a:8a:aa:ff:bf:e2:2d:bb:
6c:c1:af:15:44:30:52:4f:6d:1f:a1:83:6c:f5:f2:26:5b:0c:
2e:d7:f7:40:90:05:69:be:c4:93:c3:73:ae:b9:db:71:00:68:
4e:e0:12:2b:32:f8:78:30:f8:da:cc:31:04:9e:77:86:2a:ee:
12:5a:58:ba:b5:74:be:4e:ad:f1:78:b8:31:90:05:fa:db:ee:
d2:16:98:a8:cf:38:37:9c:25:30:61:8e:49:f6:73:d9:70:8f:
ff:02:5d:ff:dd:c8:8d:e7:d1:ce:94:cf:a0:e0:b2:7c:aa:3c:
be:e4:ac:25:74:1d:6d:e6:87:f9:0a:58:d9:96:6f:3e:ab:a6:
ad:53:d2:06:9e:dd:7e:02:63:0b:e4:4b:14:e6:0f:ef:d2:c8:
68:16:6e:32:44:9e:a9:c5:0e:c3:3e:ff:01:32:e8:c5:d4:1c:
c3:12:37:37:02:d0:a6:e6:9f:a1:07:3e:97:af:60:27:24:0c:
b9:78:f4:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:50 2023 by rpki-client on console-ams.rpki-client.org