Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/d67dd5-afbe-4c66-bc19-f2d79c8c046e/1/PIH5Mix1Os5srczJrPRYx4rZjuE.roa
File: PIH5Mix1Os5srczJrPRYx4rZjuE.roa (raw, json)
Hash identifier: 3G+dnZdM772ebR+mRtLMzT9/af172soQ7cMQmO1NqOc=
Subject key identifier: 3C:81:F9:32:2C:75:3A:CE:6C:AD:CC:C9:AC:F4:58:C7:8A:D9:8E:E1
Certificate issuer: /CN=e12b5d0d85b1eee9187f987a4209a94d8bf31af0
Certificate serial: 824EE5
Authority key identifier: E1:2B:5D:0D:85:B1:EE:E9:18:7F:98:7A:42:09:A9:4D:8B:F3:1A:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4StdDYWx7ukYf5h6QgmpTYvzGvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/d67dd5-afbe-4c66-bc19-f2d79c8c046e/1/PIH5Mix1Os5srczJrPRYx4rZjuE.roa
Signing time: Sat 01 Jan 2022 05:02:42 +0000
ROA not before: Sat 01 Jan 2022 05:02:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208241
IP address blocks: 195.96.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8539877 (0x824ee5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e12b5d0d85b1eee9187f987a4209a94d8bf31af0
Validity
Not Before: Jan 1 05:02:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c81f9322c753ace6cadccc9acf458c78ad98ee1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f2:a5:26:5f:31:3b:89:5b:83:90:b1:d2:16:
d0:18:88:c6:4c:48:dc:31:7d:47:bb:90:81:fd:6d:
57:e4:19:c5:e0:4e:4c:c5:18:bd:7f:8e:88:00:7b:
97:88:b3:89:62:58:3d:11:fe:61:19:87:62:53:33:
fd:54:2b:fd:0f:71:fb:a6:f3:0a:bd:05:c1:ba:a3:
63:2c:15:f2:58:4e:a2:04:f0:5d:5e:5d:34:e4:fb:
b7:fe:8b:88:2d:07:12:53:ae:32:38:a0:82:76:00:
16:2a:98:ae:9f:36:5d:99:22:2b:dc:19:66:d3:e0:
8a:7f:c4:2b:f1:cb:28:68:57:c2:f6:ad:28:2e:e1:
a3:e0:19:79:55:02:26:55:ab:4f:3f:4a:93:d2:d0:
d3:6e:60:35:db:a9:a2:b5:90:56:6d:c4:2e:a1:00:
2d:0c:45:90:03:86:47:d5:9e:a9:81:a4:11:d9:33:
32:85:bc:e2:80:6c:cd:e1:c1:bb:33:a8:a8:60:c9:
3f:9d:6b:16:8c:5e:1d:7b:d0:bd:9e:9a:77:31:b0:
ff:c3:57:1a:6e:de:86:f6:f9:47:50:33:3d:92:15:
35:7e:95:a9:68:f6:57:b5:13:ce:4b:88:1e:1e:a2:
43:4b:f2:91:6c:a5:60:96:12:9a:36:d8:2a:43:d1:
38:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:81:F9:32:2C:75:3A:CE:6C:AD:CC:C9:AC:F4:58:C7:8A:D9:8E:E1
X509v3 Authority Key Identifier:
keyid:E1:2B:5D:0D:85:B1:EE:E9:18:7F:98:7A:42:09:A9:4D:8B:F3:1A:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4StdDYWx7ukYf5h6QgmpTYvzGvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/d67dd5-afbe-4c66-bc19-f2d79c8c046e/1/PIH5Mix1Os5srczJrPRYx4rZjuE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/d67dd5-afbe-4c66-bc19-f2d79c8c046e/1/4StdDYWx7ukYf5h6QgmpTYvzGvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.158.0/24
Signature Algorithm: sha256WithRSAEncryption
83:0d:1d:f4:a5:1e:72:29:97:ab:58:a3:b5:99:c4:21:ad:12:
d8:88:10:3d:55:db:a2:01:23:01:7a:6d:33:67:3f:ed:6a:72:
c8:8c:03:e2:aa:6d:fe:2c:2f:e5:d8:e3:2e:e0:02:14:d5:8f:
53:bc:c0:27:73:05:49:be:e0:af:17:2a:e9:55:16:fb:92:ef:
53:6b:80:63:97:b5:9f:7d:ff:c7:76:07:63:4e:d8:45:d4:32:
c1:9e:e3:32:6f:4c:d1:db:a8:86:5d:04:bd:3e:72:38:c0:b7:
9a:71:77:3a:ca:ed:bb:b8:f0:f2:a8:f6:23:e0:6b:a2:8a:90:
cf:03:94:35:90:d5:26:19:be:1e:8d:27:5e:19:a5:fe:b3:c9:
ad:b0:7e:ce:50:75:13:ad:f2:47:50:c4:19:4e:e4:a0:45:ed:
ba:2c:a9:69:e4:0c:4b:92:0a:3d:ce:05:8c:c5:d0:b3:68:b3:
47:e1:df:a8:24:b7:ef:71:c0:a2:28:14:d3:9d:85:93:05:83:
03:d1:ca:42:95:f6:d5:6d:fc:1e:e4:b4:ea:9d:77:a2:b1:a1:
d3:05:25:ca:18:90:81:2e:d1:4b:f1:b2:6a:b9:8e:4b:05:39:
a9:4e:30:16:49:d1:cf:c7:75:3e:df:9a:91:02:89:21:7a:7d:
4c:49:21:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:36 2023 by rpki-client on console-ams.rpki-client.org