Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/pc_EekPO9S5Z1EeXBfhb-pGGm3Q.roa
File: pc_EekPO9S5Z1EeXBfhb-pGGm3Q.roa (raw, json)
Hash identifier: Xx0I4IR76mucpVIZAZZsiBFufN0irmhytekOf0vlPxk=
Subject key identifier: A5:CF:C4:7A:43:CE:F5:2E:59:D4:47:97:05:F8:5B:FA:91:86:9B:74
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0DA6DCB4
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/pc_EekPO9S5Z1EeXBfhb-pGGm3Q.roa
Signing time: Wed 23 Mar 2022 09:19:55 +0000
ROA not before: Wed 23 Mar 2022 09:19:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56488
IP address blocks: 194.76.135.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 229039284 (0xda6dcb4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Mar 23 09:19:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a5cfc47a43cef52e59d4479705f85bfa91869b74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:30:23:3d:62:48:af:af:ae:3b:a8:db:82:d1:
0d:ba:df:88:61:42:fa:00:cf:8f:15:14:bb:34:db:
f1:f1:86:bf:f6:b4:ce:66:8f:5b:47:24:7d:91:d0:
b8:7b:97:ba:d5:64:13:ce:ad:63:83:cd:7d:9e:1a:
26:9f:b4:8c:b2:7b:66:f5:8d:bf:3f:c1:0d:d6:d7:
30:2f:7d:b6:20:14:38:f9:bc:ef:17:86:ba:7f:3b:
7e:79:a3:38:65:b4:23:c1:a1:56:b7:5c:d7:1d:6c:
a1:54:ba:91:02:86:dd:f8:a8:a5:dd:86:36:43:8d:
d0:a1:d2:83:19:08:f0:3e:d5:11:20:ac:a9:4a:16:
0d:a9:01:87:f8:91:8e:1a:b5:aa:99:ba:e5:9f:33:
96:d9:3c:78:1a:8a:94:dd:3a:7e:ab:64:67:c7:f6:
53:b1:63:9a:0d:6a:b2:15:07:69:4a:17:86:6a:8e:
24:01:5d:ec:a3:b1:42:3e:ae:6c:c3:be:8c:fa:08:
e0:51:2b:46:03:09:68:3c:eb:eb:24:d9:86:17:dd:
3a:43:70:e8:32:71:d2:c2:d2:c6:cb:bb:81:fd:67:
32:ea:5c:f4:97:f1:6e:72:50:e5:2e:f5:ba:84:bd:
22:17:87:d7:d5:14:4c:86:92:ba:9f:9e:66:2b:4e:
91:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:CF:C4:7A:43:CE:F5:2E:59:D4:47:97:05:F8:5B:FA:91:86:9B:74
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/pc_EekPO9S5Z1EeXBfhb-pGGm3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.76.135.0/24
Signature Algorithm: sha256WithRSAEncryption
00:34:15:bf:61:1c:e4:cb:c5:ee:d9:b2:39:ad:5f:34:ac:75:
0b:5e:85:42:78:37:e0:d9:7f:35:55:39:70:79:a1:60:65:94:
a0:31:5b:3b:57:c0:97:fd:e1:15:c5:2b:1c:38:e8:21:fc:9f:
9b:2b:2a:81:90:91:11:5a:1a:10:5c:d5:68:d5:5b:55:d6:40:
57:f8:af:c2:e7:e2:c1:0b:1f:a2:26:59:3c:b1:89:c8:5d:af:
18:22:da:5a:38:40:d0:0d:2e:75:8e:a5:5d:47:47:ad:e1:07:
54:41:09:1d:71:61:4a:2e:52:e7:16:91:25:71:ea:7a:9f:d8:
b4:ae:f3:5c:71:d2:ab:f9:f6:73:a9:be:bb:c8:79:7e:b6:27:
82:f6:2a:e2:50:7a:0f:71:e0:28:94:25:23:26:d5:a8:ea:37:
2b:15:d6:03:ba:21:bb:84:ba:8f:9e:dc:d7:89:09:df:0a:6e:
f4:e3:7b:f1:bf:c2:ee:f5:2b:c4:be:5b:78:c2:e3:ae:c5:b4:
ce:df:fe:be:7a:eb:64:3c:2f:4d:e1:dd:f1:86:8a:c3:32:f6:
28:21:17:00:9e:83:c2:7e:ee:04:00:0c:05:06:d9:25:68:4f:
df:dd:3b:19:be:c5:90:e5:82:f9:bd:9b:9a:56:3b:43:6b:3f:
95:55:80:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:03 2023 by rpki-client on console-fra.rpki-client.org