Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/cb2ee8-8782-4af4-8f6b-9d7f86f0d477/1/PGxTQegEfiBSXOfITNqxsg8r0Rk.roa
File: PGxTQegEfiBSXOfITNqxsg8r0Rk.roa (raw, json)
Hash identifier: bvXWhKTXD/TM33t7bGCeY0B8TVkmufGP2WyAoSn3/Q0=
Subject key identifier: 3C:6C:53:41:E8:04:7E:20:52:5C:E7:C8:4C:DA:B1:B2:0F:2B:D1:19
Certificate issuer: /CN=956866562d9f25831ec0ace8a9d8cd0e594d71fc
Certificate serial: 21169822
Authority key identifier: 95:68:66:56:2D:9F:25:83:1E:C0:AC:E8:A9:D8:CD:0E:59:4D:71:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lWhmVi2fJYMewKzoqdjNDllNcfw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/cb2ee8-8782-4af4-8f6b-9d7f86f0d477/1/PGxTQegEfiBSXOfITNqxsg8r0Rk.roa
Signing time: Sat 01 Jan 2022 14:54:45 +0000
ROA not before: Sat 01 Jan 2022 14:54:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 164.10.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 555128866 (0x21169822)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=956866562d9f25831ec0ace8a9d8cd0e594d71fc
Validity
Not Before: Jan 1 14:54:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c6c5341e8047e20525ce7c84cdab1b20f2bd119
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:59:2d:b4:37:ce:e9:d6:f1:f4:19:40:6b:5c:
2c:fe:2f:09:ca:e5:49:c9:1c:1d:89:2f:6c:d5:b3:
13:a3:7e:95:48:22:09:a2:a8:7e:1d:ba:a1:ee:b7:
78:d7:84:3d:99:64:07:5e:70:19:22:b2:24:cc:94:
5a:cd:07:a4:a3:6b:b6:aa:01:83:36:b4:1c:13:d9:
ec:ff:86:45:41:a1:ce:2d:1f:43:18:d6:76:b9:12:
66:20:d5:1e:20:0c:44:87:f4:a5:54:8d:a3:c0:5a:
dd:f0:ef:86:dc:44:ab:07:25:e4:87:e6:07:ae:d2:
43:48:39:de:35:a0:4a:14:df:40:ef:f4:4d:b0:a3:
b4:c3:71:92:45:0f:d1:f8:00:c8:ff:f4:ae:a3:e0:
68:7d:b8:bc:c0:b3:7e:6b:ca:87:a4:36:39:54:87:
29:4b:a8:a1:54:28:22:97:55:75:82:15:9e:eb:a8:
66:33:57:c4:1a:55:22:5f:a7:53:6c:e2:b4:48:32:
37:32:fe:8f:88:be:05:09:77:13:cb:84:92:18:5e:
ca:99:8c:9d:ea:12:6d:f1:fb:b5:2c:6b:9b:b5:3b:
42:07:3d:8b:cd:0d:15:fc:7d:5d:0b:e6:2e:08:d4:
bb:a9:bc:b9:1e:db:9a:87:1b:e2:87:89:17:5f:12:
4a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:6C:53:41:E8:04:7E:20:52:5C:E7:C8:4C:DA:B1:B2:0F:2B:D1:19
X509v3 Authority Key Identifier:
keyid:95:68:66:56:2D:9F:25:83:1E:C0:AC:E8:A9:D8:CD:0E:59:4D:71:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lWhmVi2fJYMewKzoqdjNDllNcfw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/cb2ee8-8782-4af4-8f6b-9d7f86f0d477/1/PGxTQegEfiBSXOfITNqxsg8r0Rk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/cb2ee8-8782-4af4-8f6b-9d7f86f0d477/1/lWhmVi2fJYMewKzoqdjNDllNcfw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.10.0.0/16
Signature Algorithm: sha256WithRSAEncryption
69:5b:a7:86:f5:f1:1c:e1:61:c1:2a:32:fc:81:51:92:31:e5:
a7:e8:fd:a7:fa:1a:de:a2:1c:a4:70:c9:e5:04:79:35:61:90:
aa:36:35:14:01:c9:23:bd:ad:4f:4c:21:b6:89:8e:4b:6e:e0:
8a:c9:d7:8a:69:40:03:9f:a9:b3:6f:56:52:95:ac:b2:d2:91:
86:91:03:a6:e3:22:9c:67:55:af:34:38:6a:48:da:9d:7a:3e:
6f:ac:74:25:8d:ab:9b:85:f4:88:f9:7f:b6:f3:80:9a:d0:21:
c6:c9:ab:0b:45:0a:4b:b6:1a:e6:ea:6a:3c:fb:11:3c:32:c0:
90:06:d0:66:53:9a:c8:92:40:c7:29:13:46:18:36:66:e6:d9:
08:40:41:40:db:0d:d9:67:cd:29:9b:de:d8:e7:8a:94:4d:99:
81:65:f9:d6:5b:c7:a9:35:24:70:42:bd:cc:a9:dd:63:1b:bb:
86:9c:42:38:3e:68:18:6c:2f:1d:fe:49:e1:ed:41:51:72:5c:
9c:26:72:6a:58:97:2c:3e:e2:a0:3d:77:ee:12:68:6c:cd:e3:
fd:ee:bb:da:0e:fb:d7:98:26:1d:f6:e4:67:39:de:d8:cc:bd:
98:43:d7:9b:cf:9c:5d:c5:44:85:cd:3a:c8:af:89:61:83:88:
11:e1:9e:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:42 2024 by rpki-client on console-ams.rpki-client.org