Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/1519a9-ac9f-4f5d-bf4f-6cb2e02caef2/1/PTH0Ffv5l9ZrfJJYc_itUCyG74c.roa
File: PTH0Ffv5l9ZrfJJYc_itUCyG74c.roa (raw, json)
Hash identifier: 1spigHBXEgdUAIuEo5Kd1CKuWuSVZ/yd0Ll2Lh8XueY=
Subject key identifier: 3D:31:F4:15:FB:F9:97:D6:6B:7C:92:58:73:F8:AD:50:2C:86:EF:87
Certificate issuer: /CN=3642bbc83e28c103c17d5a201edef5672634dbe8
Certificate serial: 021BB315
Authority key identifier: 36:42:BB:C8:3E:28:C1:03:C1:7D:5A:20:1E:DE:F5:67:26:34:DB:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NkK7yD4owQPBfVogHt71ZyY02-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/1519a9-ac9f-4f5d-bf4f-6cb2e02caef2/1/PTH0Ffv5l9ZrfJJYc_itUCyG74c.roa
Signing time: Sat 01 Jan 2022 12:57:58 +0000
ROA not before: Sat 01 Jan 2022 12:57:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211709
IP address blocks: 193.3.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35369749 (0x21bb315)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3642bbc83e28c103c17d5a201edef5672634dbe8
Validity
Not Before: Jan 1 12:57:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d31f415fbf997d66b7c925873f8ad502c86ef87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:4a:cb:25:ae:6f:41:a7:53:f7:61:4b:2e:16:
29:48:19:7c:05:4c:52:43:ea:f0:8c:66:ef:21:09:
5f:14:54:6f:f2:b9:20:0f:37:43:a6:b5:54:65:c8:
ee:5b:c0:e7:97:d8:dd:09:3a:6d:3a:8e:ac:8f:1c:
42:ce:7e:6e:9e:43:cc:e3:97:68:49:a4:b3:d5:bd:
d4:29:ca:b3:d6:5a:b1:d9:b8:99:dd:f2:34:b0:e8:
55:64:d5:38:d9:42:e4:f3:e3:71:9f:ff:1b:73:1f:
d9:42:89:72:56:55:69:d5:2b:5c:9d:6d:67:59:35:
43:9b:89:04:16:e6:a7:a3:ca:84:7d:3d:94:11:aa:
4c:53:b5:bc:59:c0:1d:2e:91:b0:2c:61:82:3b:0f:
18:e7:d6:cf:ca:9f:c8:56:d1:9b:ed:a8:3e:0c:6d:
1a:22:9d:48:e1:0c:99:9b:4a:b4:4f:ba:4c:29:79:
a1:9a:a5:07:52:1b:58:35:5e:d0:61:97:67:35:87:
b7:86:96:19:86:48:76:b6:29:38:d2:54:f8:c5:7e:
62:af:71:b6:a6:01:7e:99:67:61:b1:11:74:47:41:
d5:e2:31:81:f6:7f:51:00:5c:a5:09:f3:36:3c:ca:
73:bb:72:d3:1f:9b:0a:f0:fd:4e:08:d4:1e:8c:03:
01:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:31:F4:15:FB:F9:97:D6:6B:7C:92:58:73:F8:AD:50:2C:86:EF:87
X509v3 Authority Key Identifier:
keyid:36:42:BB:C8:3E:28:C1:03:C1:7D:5A:20:1E:DE:F5:67:26:34:DB:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NkK7yD4owQPBfVogHt71ZyY02-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/1519a9-ac9f-4f5d-bf4f-6cb2e02caef2/1/PTH0Ffv5l9ZrfJJYc_itUCyG74c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/1519a9-ac9f-4f5d-bf4f-6cb2e02caef2/1/NkK7yD4owQPBfVogHt71ZyY02-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.41.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:27:c3:59:ff:8a:44:44:b4:73:9b:1c:c2:5b:65:cf:c5:31:
72:09:49:b6:ac:e9:a6:8a:8b:bc:2a:c8:17:8f:17:78:4a:7a:
5d:c6:51:f1:8c:86:84:32:01:42:0f:89:3b:a4:45:a6:56:df:
e4:99:55:b6:f5:9a:fe:85:9f:77:40:6f:90:d7:92:90:75:bc:
75:d5:b3:59:71:35:d0:64:f0:fa:2a:d0:4d:70:8c:38:f4:1f:
2c:96:ab:60:20:7c:cc:e2:f7:e4:72:5e:cf:3d:f4:13:34:96:
e8:68:88:38:4c:4a:3d:c1:42:f3:7a:08:43:33:f9:80:1f:4a:
03:b6:ab:5b:71:89:92:b7:43:b9:21:07:61:31:ec:03:a4:61:
6c:ff:db:fd:69:e6:da:2b:68:a8:75:a8:76:d5:70:30:e7:91:
ed:e1:61:c6:cd:5c:48:22:51:ac:1e:db:17:ee:95:ec:c1:c5:
3f:5a:c0:ed:92:18:19:4c:e1:12:18:e9:e1:7b:a0:29:8b:64:
73:bf:75:08:7e:04:db:e7:cc:b9:fe:fe:f6:f6:0a:69:d5:36:
79:8f:22:5c:b2:f7:4c:c6:3c:d4:43:2b:6d:cd:e0:c3:77:37:
9a:a6:e0:51:81:8e:bc:f3:20:bd:e5:98:b2:72:56:4a:5e:ef:
d8:0b:89:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:00 2023 by rpki-client on console-ams.rpki-client.org