Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/45c9ad-c4a7-4652-aad3-c952804932c2/1/PtddtBuoY_KQuB3KGYbIOECt0NU.roa
File: PtddtBuoY_KQuB3KGYbIOECt0NU.roa (raw, json)
Hash identifier: 29A7mhpEy2bQ/ad2fiAax2A1YVKveuGbxJpNvIlOafM=
Subject key identifier: 3E:D7:5D:B4:1B:A8:63:F2:90:B8:1D:CA:19:86:C8:38:40:AD:D0:D5
Certificate issuer: /CN=6a016dad273047b18886691485dedd97171c4d68
Certificate serial: 018756813BF23186690A99A547F28227A4A3
Authority key identifier: 6A:01:6D:AD:27:30:47:B1:88:86:69:14:85:DE:DD:97:17:1C:4D:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/agFtrScwR7GIhmkUhd7dlxccTWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/45c9ad-c4a7-4652-aad3-c952804932c2/1/PtddtBuoY_KQuB3KGYbIOECt0NU.roa
Signing time: Thu 06 Apr 2023 12:18:42 +0000
ROA not before: Thu 06 Apr 2023 12:18:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8897
IP address blocks: 194.1.164.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:56:81:3b:f2:31:86:69:0a:99:a5:47:f2:82:27:a4:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a016dad273047b18886691485dedd97171c4d68
Validity
Not Before: Apr 6 12:18:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3ed75db41ba863f290b81dca1986c83840add0d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:62:b0:58:1f:3b:b0:04:58:1d:36:78:52:97:
a5:66:27:9e:99:10:1f:3e:12:69:e1:37:36:57:79:
48:29:8b:bc:ee:72:4e:77:6c:ea:90:8f:ea:e9:f0:
5b:04:33:d0:28:52:9d:19:96:67:bd:80:52:4c:75:
fa:9c:e1:ec:af:14:b2:1a:41:a5:29:d0:f8:23:e9:
cd:be:09:15:97:94:7a:14:b7:c1:2d:47:08:21:dd:
79:ff:be:de:40:ed:e1:07:7a:a9:44:c0:56:2f:0f:
82:d4:dc:7f:a2:14:7c:31:db:73:f6:10:76:01:2f:
9c:27:6e:84:64:90:61:6b:50:36:40:c2:25:37:a5:
20:aa:80:5d:75:27:28:96:56:17:54:93:de:4a:d4:
46:77:33:f9:24:81:a5:88:43:3e:ec:8b:aa:c9:ff:
1f:a5:ed:92:48:93:ea:8d:34:a5:e8:44:9b:19:dc:
52:6b:99:78:a5:8e:6f:ee:a3:15:f9:60:b7:74:94:
84:1a:56:62:7a:0f:b9:9b:60:12:89:b7:05:9b:b5:
72:a6:67:3f:a1:ca:a0:8c:e4:2c:64:e6:29:fc:9d:
e1:88:71:11:f8:3b:e8:26:59:17:ee:fe:0f:1b:4c:
e8:4f:3e:3d:2c:dd:f8:f6:b9:c1:95:b6:cc:e7:d6:
90:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:D7:5D:B4:1B:A8:63:F2:90:B8:1D:CA:19:86:C8:38:40:AD:D0:D5
X509v3 Authority Key Identifier:
keyid:6A:01:6D:AD:27:30:47:B1:88:86:69:14:85:DE:DD:97:17:1C:4D:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/agFtrScwR7GIhmkUhd7dlxccTWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/45c9ad-c4a7-4652-aad3-c952804932c2/1/PtddtBuoY_KQuB3KGYbIOECt0NU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/45c9ad-c4a7-4652-aad3-c952804932c2/1/agFtrScwR7GIhmkUhd7dlxccTWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.1.164.0/23
Signature Algorithm: sha256WithRSAEncryption
9e:bf:05:77:03:19:13:f1:6e:06:8a:5f:ad:b2:9e:88:13:7d:
0e:9d:99:eb:37:b3:e1:16:93:ed:60:c4:87:a4:7b:98:cf:42:
d4:5b:d1:bf:be:0b:3e:c5:df:68:e7:53:a9:99:80:cb:6b:cd:
01:8a:5c:c1:75:e2:91:a1:29:a7:94:71:8e:00:21:1a:ad:23:
0c:36:36:d2:9d:0f:39:6d:32:70:9e:8e:c5:37:40:bc:69:9b:
9a:7b:6c:6a:8e:d7:67:23:ff:0f:08:80:1a:97:d3:09:66:ad:
74:22:44:9c:a4:2a:54:71:ad:8a:a6:ba:3d:08:36:75:09:26:
90:7f:81:bd:b8:3a:77:98:7e:65:21:d9:16:d8:cb:1b:fd:ce:
e6:27:af:e4:95:f1:7e:4d:01:6a:3a:6e:84:58:60:97:d4:ba:
a7:8e:06:f1:a4:fa:0c:82:d7:68:29:00:f6:da:34:0a:28:a9:
08:5a:4d:55:cd:f5:47:8d:23:a2:70:9c:52:87:aa:16:16:e4:
b6:40:71:1a:d6:58:9e:c4:6a:1e:9b:ff:33:3c:80:a5:f9:e2:
01:71:b6:e7:ea:79:d2:e0:e6:10:35:08:cf:e9:5e:52:0a:56:
b1:5f:81:58:a9:ef:b6:44:07:0b:d5:7c:48:eb:cf:51:b2:88:
07:6b:be:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:23:40 2025 by rpki-client