Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/PNEbxCUl3JMXqHZSqyWTNZ-Czb8.roa
File: PNEbxCUl3JMXqHZSqyWTNZ-Czb8.roa (raw, json)
Hash identifier: ROltva8H0SIBo3EBZAEXio1ao9jIla0lCm0e5pTcSk4=
Subject key identifier: 3C:D1:1B:C4:25:25:DC:93:17:A8:76:52:AB:25:93:35:9F:82:CD:BF
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 031AE20B
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/PNEbxCUl3JMXqHZSqyWTNZ-Czb8.roa
Signing time: Sat 01 Jan 2022 16:04:15 +0000
ROA not before: Sat 01 Jan 2022 16:04:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43077
IP address blocks: 45.142.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52093451 (0x31ae20b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3cd11bc42525dc9317a87652ab2593359f82cdbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:8b:be:06:4d:5f:f4:20:95:5e:09:db:04:35:
f7:2d:3a:22:a1:ec:57:f0:4e:00:3b:21:b2:98:99:
6d:5f:a5:02:7d:5a:bd:71:98:fb:e3:13:7f:3e:43:
0f:a0:c9:1b:0f:74:01:83:b8:61:55:84:97:3a:7c:
40:1e:e5:72:47:a5:8a:af:a7:eb:d7:d0:e0:a9:5f:
23:ae:f0:ac:05:25:ff:6f:40:5a:af:0a:46:51:26:
72:47:96:f8:87:e3:28:8f:f1:fe:54:17:6a:e4:e7:
79:0d:71:17:95:bf:f6:db:43:84:d8:b7:3e:55:c1:
47:94:f7:0d:fb:b1:b7:ad:0d:1d:af:00:65:cf:9e:
a9:ce:71:3d:67:55:2f:63:1c:b8:b5:da:9b:61:a2:
99:66:86:47:e6:7f:4b:8d:69:b4:10:45:d0:39:15:
c8:46:2d:c5:d4:ff:85:0f:63:c7:3b:18:cb:2a:c4:
70:3d:1a:21:72:c1:69:fb:a5:23:71:27:43:52:c3:
a4:c8:9b:d7:b4:0c:21:04:75:4c:2d:e3:71:21:91:
a9:fc:98:3f:a9:44:c9:4c:08:9e:6c:67:05:cb:3c:
41:e5:bc:80:ec:16:2c:d9:49:d0:f4:d7:9e:ff:1e:
e8:81:c8:7a:f5:bc:a6:4c:4a:be:73:4d:89:cd:8e:
03:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:D1:1B:C4:25:25:DC:93:17:A8:76:52:AB:25:93:35:9F:82:CD:BF
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/PNEbxCUl3JMXqHZSqyWTNZ-Czb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.121.0/24
Signature Algorithm: sha256WithRSAEncryption
22:f3:56:51:3e:e0:df:87:7f:3c:38:a8:f9:8c:29:84:56:a8:
fb:93:36:35:bd:b4:4e:9b:9a:fe:ec:f5:56:20:05:5f:cf:61:
02:ea:ab:9b:59:f3:0a:ed:70:af:45:d0:94:03:1e:19:e8:4a:
0f:61:06:15:cc:86:80:cb:ba:54:d6:69:0c:76:75:79:1d:b9:
e2:da:95:c4:16:7e:67:2f:87:e2:92:29:c4:a2:c1:cd:b1:97:
5f:83:2f:38:e6:3c:c2:5a:6a:2e:2f:e5:a4:a9:56:b7:3e:c1:
91:e9:4e:3b:1a:17:3a:05:c0:4f:5f:19:eb:b7:b8:61:32:78:
d5:12:6c:07:0b:aa:31:36:46:17:3e:c4:1e:f3:38:c9:a8:04:
28:b1:4c:bc:07:c3:8e:bf:e7:ea:18:fb:2b:77:e6:e3:98:34:
33:b8:da:5b:f7:7d:c2:b3:c8:58:cb:ac:ca:02:99:2d:78:a9:
0b:0e:19:99:00:07:4c:ae:37:6f:c2:6f:c7:d3:5a:fa:65:04:
0a:8d:1b:b8:78:15:94:e9:c2:9a:50:a9:41:7f:f5:8a:14:5b:
49:b4:af:06:cc:c4:2c:17:f8:2f:cd:32:13:74:3b:27:ee:43:
44:cc:08:eb:cb:df:83:77:ed:25:34:2a:3c:4e:cd:95:02:a1:
5d:85:b2:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:07 2024 by rpki-client on console-fra.rpki-client.org