Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/PtxlM5yS7OQTLhDA9bdOvuiUJYk.roa
File: PtxlM5yS7OQTLhDA9bdOvuiUJYk.roa (raw, json)
Hash identifier: jU3+HD9lOc3pK7wl1AzXZBqtM7Yrz8AZ/KgHNnM7U0Y=
Subject key identifier: 3E:DC:65:33:9C:92:EC:E4:13:2E:10:C0:F5:B7:4E:BE:E8:94:25:89
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 01852A42E86C0FA8B50A6C1423820A8B123E
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/PtxlM5yS7OQTLhDA9bdOvuiUJYk.roa
Signing time: Mon 19 Dec 2022 12:01:45 +0000
ROA not before: Mon 19 Dec 2022 12:01:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29119
IP address blocks: 141.98.52.0/22 maxlen: 24
185.123.136.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2a:42:e8:6c:0f:a8:b5:0a:6c:14:23:82:0a:8b:12:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Dec 19 12:01:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3edc65339c92ece4132e10c0f5b74ebee8942589
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:48:38:ef:88:8f:bc:ca:29:f7:ae:ed:c3:37:
13:50:4f:c6:97:ab:92:2a:bd:56:6b:ab:db:f0:52:
88:26:5d:d9:e0:16:fc:a3:f9:5e:1d:80:aa:95:c1:
99:ec:b8:c0:4a:f6:7f:47:24:28:ae:fb:8b:f8:98:
35:64:9b:e9:e7:d9:e8:eb:5a:74:a3:da:ae:8e:0e:
d2:ad:3f:6b:6a:7e:07:6b:fd:52:f6:a4:18:7b:48:
a7:e3:45:ff:60:bc:c3:fa:8c:5d:23:14:ca:6a:24:
4c:ed:9e:e7:bf:0f:28:04:37:4c:ca:c6:ef:85:a8:
b8:cf:c0:a7:fa:3f:22:80:78:14:e2:4f:8c:6d:87:
84:a7:68:55:99:a4:99:64:44:5b:af:69:9a:e4:72:
05:93:05:45:28:c9:da:09:40:2c:5e:f0:05:e5:9d:
06:ed:96:3a:f8:6e:42:1a:75:79:07:63:c2:86:26:
c7:ba:8e:24:4f:7b:18:67:46:2c:d6:6c:51:ea:3b:
51:91:2c:68:c1:db:cf:59:6a:1a:c9:46:b0:2a:73:
1b:8a:d0:0e:26:d4:99:da:ad:8e:e4:bd:0d:9c:b4:
5f:a8:15:00:39:c8:cc:84:8f:6e:02:ee:1c:65:89:
61:e9:2e:02:df:bb:ab:72:31:4d:9f:84:c2:ad:d4:
3c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:DC:65:33:9C:92:EC:E4:13:2E:10:C0:F5:B7:4E:BE:E8:94:25:89
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/PtxlM5yS7OQTLhDA9bdOvuiUJYk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.52.0/22
185.123.136.0/22
Signature Algorithm: sha256WithRSAEncryption
51:7b:ba:d8:03:f3:e6:00:fe:ad:79:8e:37:87:c6:34:e8:b2:
ca:2e:f5:9d:ca:8d:6d:9d:3b:3a:0b:73:78:0c:46:23:02:f6:
91:34:b4:4c:af:96:b6:75:81:12:98:bf:98:50:af:39:a1:b4:
98:25:de:d6:10:3b:c1:bf:45:54:09:8c:b8:9a:4c:a0:1b:9e:
be:e0:ca:45:46:bb:3c:9a:a2:1c:20:91:ac:74:3b:5d:e3:5c:
ea:31:e5:a2:26:d3:fe:42:ac:fd:67:67:74:aa:3d:0b:a7:33:
99:67:3b:33:b6:c1:35:9b:39:03:e8:eb:31:fb:be:fb:61:b6:
07:2e:62:06:aa:2d:43:47:4e:22:ab:1d:4e:74:55:a4:79:41:
86:37:a6:e0:e4:10:d2:3a:f2:d0:f1:9a:0a:da:7a:28:d1:29:
c1:4b:54:d1:fb:ab:f9:40:de:b8:61:9e:32:97:78:4c:74:01:
ec:35:1f:24:1a:bd:08:fd:73:96:38:cd:65:65:4d:35:08:95:
e4:57:71:f0:1a:82:ab:59:4a:99:86:92:6e:4f:ef:cd:99:f8:
c6:9e:72:6f:66:f3:aa:17:f6:3d:b6:5b:0f:05:6a:da:44:24:
06:51:35:46:f2:ef:b8:bc:29:52:a2:d4:8e:b7:7d:43:d2:fc:
83:04:fe:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:36 2024 by rpki-client on console-fra.rpki-client.org