Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/e27d71-efbc-47ef-9840-e74d8d1d4e02/1/PRM2QNnQes8djgs_wJiHaszvyEc.roa
File: PRM2QNnQes8djgs_wJiHaszvyEc.roa (raw, json)
Hash identifier: KzSxxLV3hy85ia82dtN+/yi2N9e81ZDq7xOkw5GciBw=
Subject key identifier: 3D:13:36:40:D9:D0:7A:CF:1D:8E:0B:3F:C0:98:87:6A:CC:EF:C8:47
Certificate issuer: /CN=9b6b7b3ea60efb4a579a4f5e237ea7a88d3bc078
Certificate serial: 01831D0532AC2763A91041BC67F9A282C352
Authority key identifier: 9B:6B:7B:3E:A6:0E:FB:4A:57:9A:4F:5E:23:7E:A7:A8:8D:3B:C0:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m2t7PqYO-0pXmk9eI36nqI07wHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/e27d71-efbc-47ef-9840-e74d8d1d4e02/1/PRM2QNnQes8djgs_wJiHaszvyEc.roa
Signing time: Thu 08 Sep 2022 12:13:43 +0000
ROA not before: Thu 08 Sep 2022 12:13:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33868
IP address blocks: 193.23.54.0/24 maxlen: 24
185.6.2.0/24 maxlen: 24
91.207.186.0/23 maxlen: 23
2a02:848::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:1d:05:32:ac:27:63:a9:10:41:bc:67:f9:a2:82:c3:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b6b7b3ea60efb4a579a4f5e237ea7a88d3bc078
Validity
Not Before: Sep 8 12:13:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d133640d9d07acf1d8e0b3fc098876accefc847
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:51:32:12:83:a0:9e:60:40:c6:e4:62:46:34:
12:d7:ec:b3:5c:c2:7d:59:9f:7f:f7:b0:0c:86:47:
2a:28:4a:9c:8e:31:9f:0b:ae:4d:28:2b:d5:8f:6b:
f8:d1:12:be:21:c4:c4:68:f5:d3:9b:af:e2:00:98:
e4:37:25:5a:58:cf:a5:99:50:c7:e0:ee:ac:a0:a0:
b2:fa:e5:98:c8:6f:13:8f:a5:b4:87:0b:cd:4d:c5:
8f:cd:72:7a:cf:0a:7f:f3:5a:50:93:5e:a2:74:b2:
7b:2f:d9:29:db:b9:c6:e0:35:ba:2d:45:f1:f9:96:
df:e0:ca:83:6d:5f:78:3a:04:47:cb:43:ba:f2:47:
7c:f1:df:cf:1b:04:5e:ae:2b:31:16:ff:c2:7b:f6:
6e:b7:3c:c8:e3:58:f9:fb:d4:11:a8:0f:a1:e8:f5:
7d:8a:91:d3:3d:fa:00:38:97:ab:ed:14:24:32:6e:
95:d1:f8:e8:00:5a:72:ed:b1:97:36:aa:56:de:f5:
50:43:85:0d:78:53:ea:91:5a:68:9e:e1:18:ae:15:
6f:c1:8e:4f:b7:e6:9e:b7:d6:dd:91:58:25:9d:09:
0c:71:62:70:92:06:e1:55:d1:18:eb:93:5b:50:c2:
d9:c7:6b:98:07:e1:03:f8:ec:f6:1d:73:04:09:9b:
9f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:13:36:40:D9:D0:7A:CF:1D:8E:0B:3F:C0:98:87:6A:CC:EF:C8:47
X509v3 Authority Key Identifier:
keyid:9B:6B:7B:3E:A6:0E:FB:4A:57:9A:4F:5E:23:7E:A7:A8:8D:3B:C0:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m2t7PqYO-0pXmk9eI36nqI07wHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e27d71-efbc-47ef-9840-e74d8d1d4e02/1/PRM2QNnQes8djgs_wJiHaszvyEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e27d71-efbc-47ef-9840-e74d8d1d4e02/1/m2t7PqYO-0pXmk9eI36nqI07wHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.186.0/23
185.6.2.0/24
193.23.54.0/24
IPv6:
2a02:848::/32
Signature Algorithm: sha256WithRSAEncryption
6a:f3:42:87:15:75:7f:97:bb:fb:dd:55:e0:ec:fd:a6:63:4a:
36:ed:9e:2c:ee:57:57:ca:05:18:dd:96:08:67:b6:71:6f:73:
64:8a:48:62:e5:2e:db:a5:8d:24:5d:ba:7c:67:bd:99:b2:6f:
78:74:3e:e6:9c:35:44:db:2b:21:48:9f:75:ce:71:24:0c:6b:
67:8f:1d:3b:67:f7:d8:eb:32:b9:86:fa:b2:46:8a:c7:8d:7a:
b6:b2:93:3b:72:22:4a:5c:cb:ca:9c:30:11:b7:24:55:9d:37:
8f:65:40:fb:68:66:13:bf:c6:a7:f5:fc:ad:14:24:bd:ea:5e:
70:89:68:db:ff:d0:94:63:02:31:85:d6:36:80:b3:a8:b7:bc:
6f:14:f9:33:f6:99:ab:47:67:af:ea:7f:7f:ae:a4:31:b0:e2:
f9:cc:7a:a8:28:2e:bd:c5:62:9f:99:0e:3d:a5:f0:a9:35:78:
ae:15:6d:b7:cf:55:73:c6:5e:0e:ce:b7:1a:e4:f1:15:ab:ba:
ab:5e:97:75:e3:02:aa:60:d7:be:ac:2b:8c:f2:3a:8e:91:b2:
9d:1a:ad:cc:b9:7e:a5:c7:20:1f:b3:d1:b9:fe:5f:b8:2c:7f:
7a:7e:6c:a5:e3:01:06:99:8f:57:1e:a4:79:61:02:03:9e:e0:
b0:45:11:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:58 2024 by rpki-client on console-fra.rpki-client.org