Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/328eb3-5603-4955-aa92-2252bccfdbf9/1/PjEzoutndEqdHwEd4L2-ZfbxF8M.roa
File: PjEzoutndEqdHwEd4L2-ZfbxF8M.roa (raw, json)
Hash identifier: f8crAPTq8q7XtzMMz3k6TC/fiQOdLkTgnPQGGg6kUeU=
Subject key identifier: 3E:31:33:A2:EB:67:74:4A:9D:1F:01:1D:E0:BD:BE:65:F6:F1:17:C3
Certificate issuer: /CN=69b01927a1a177d4261221d94628514a525a96e0
Certificate serial: 018539153B175929D542A2BB043BB21E2691
Authority key identifier: 69:B0:19:27:A1:A1:77:D4:26:12:21:D9:46:28:51:4A:52:5A:96:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/abAZJ6Ghd9QmEiHZRihRSlJaluA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/328eb3-5603-4955-aa92-2252bccfdbf9/1/PjEzoutndEqdHwEd4L2-ZfbxF8M.roa
Signing time: Thu 22 Dec 2022 09:06:10 +0000
ROA not before: Thu 22 Dec 2022 09:06:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6830
IP address blocks: 213.146.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:39:15:3b:17:59:29:d5:42:a2:bb:04:3b:b2:1e:26:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69b01927a1a177d4261221d94628514a525a96e0
Validity
Not Before: Dec 22 09:06:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e3133a2eb67744a9d1f011de0bdbe65f6f117c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b1:cc:ca:33:00:b7:1c:cb:eb:13:5c:3f:bf:
2a:2b:c1:b6:60:a2:bb:33:0f:5f:81:d6:a4:74:27:
39:80:66:e2:83:f4:b6:7b:83:22:4c:99:18:4c:8b:
b0:8a:f4:de:38:99:b6:7f:82:df:cf:35:6a:a5:63:
3e:34:4a:e3:8a:16:a4:1d:eb:86:a6:11:d2:aa:05:
dc:43:8b:c9:63:f4:5d:a2:9b:a6:2e:01:79:f2:f5:
2a:3e:a5:96:df:ac:65:50:38:90:9c:44:da:54:eb:
6e:48:79:3e:00:05:39:8a:31:86:63:f1:0f:c0:87:
94:94:61:76:31:a1:ba:21:29:a1:4f:f1:3a:b2:66:
0d:af:ba:e4:e5:3c:b1:46:3f:3b:c8:d3:81:4f:a0:
d6:3e:ff:9b:63:ea:a2:d3:b7:d0:75:24:33:5f:53:
09:36:9e:4f:2f:1c:54:22:f4:97:b3:9b:c8:db:50:
5a:20:bd:be:10:08:f5:19:90:5c:00:ef:10:c0:96:
6f:56:f0:3e:2a:88:83:20:35:ef:8d:c3:94:77:96:
b4:72:d5:53:42:c4:8b:e4:89:ef:16:a7:ac:20:a6:
5d:7e:83:86:4a:84:a3:90:af:a1:0a:77:78:62:51:
6d:db:4c:7d:fc:d0:a8:d7:fb:d7:90:07:1b:6c:fe:
42:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:31:33:A2:EB:67:74:4A:9D:1F:01:1D:E0:BD:BE:65:F6:F1:17:C3
X509v3 Authority Key Identifier:
keyid:69:B0:19:27:A1:A1:77:D4:26:12:21:D9:46:28:51:4A:52:5A:96:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/abAZJ6Ghd9QmEiHZRihRSlJaluA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/328eb3-5603-4955-aa92-2252bccfdbf9/1/PjEzoutndEqdHwEd4L2-ZfbxF8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/328eb3-5603-4955-aa92-2252bccfdbf9/1/abAZJ6Ghd9QmEiHZRihRSlJaluA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.146.8.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:10:cd:68:7c:6d:2c:09:00:6a:13:be:13:b1:d4:6f:43:c3:
7f:c0:a1:a2:fd:69:dd:ff:e6:26:b0:96:13:e0:76:56:25:4a:
7f:2c:7b:41:d2:41:82:fa:d7:6a:08:74:f4:61:c1:a8:54:77:
2b:52:36:e4:96:ab:12:fa:63:91:ec:c4:f2:f5:93:75:60:4f:
eb:c0:9b:49:70:1e:fa:62:8b:17:6e:e3:ec:31:61:38:29:d2:
61:a1:b6:af:27:e5:26:67:50:d2:09:da:e4:fd:22:21:e6:09:
0e:f7:f8:68:54:6f:dd:e7:5b:92:58:27:29:38:0e:f8:0b:0c:
49:ac:71:3a:98:5c:9c:57:e3:7b:5f:60:f7:f4:78:10:2d:be:
3f:65:46:f5:d6:46:78:0a:ad:11:76:f2:45:c4:ec:05:2b:e0:
7b:fb:9e:59:3f:a9:c9:c5:4e:52:cc:98:b0:19:cb:65:c9:35:
ce:ce:7b:e9:69:0c:71:93:c5:91:47:42:27:a3:24:35:6c:a0:
9e:42:b5:eb:1a:7b:24:a7:7d:c0:d3:74:17:6b:4d:1e:38:ba:
2e:e4:ab:75:fd:31:b3:9b:73:6f:b1:e4:1b:35:4f:54:16:5b:
ef:75:59:d5:f7:e6:00:2a:67:90:aa:0a:17:ba:3d:4e:75:8e:
da:5b:79:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:42 2023 by rpki-client on console-fra.rpki-client.org