Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/d21778-193c-4f4c-8119-dd142a1335f0/1/PCflATE9hihnmCD23MkhOXxkaWE.roa
File: PCflATE9hihnmCD23MkhOXxkaWE.roa (raw, json)
Hash identifier: weTgQmHa6tsSkDZcToGBbM6C4pKTbpoxbVpr+UyB9Zo=
Subject key identifier: 3C:27:E5:01:31:3D:86:28:67:98:20:F6:DC:C9:21:39:7C:64:69:61
Certificate issuer: /CN=3937b5a5156b5c72ffc0f9c0b7104bb188dbcbbc
Certificate serial: 16DF548F
Authority key identifier: 39:37:B5:A5:15:6B:5C:72:FF:C0:F9:C0:B7:10:4B:B1:88:DB:CB:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTe1pRVrXHL_wPnAtxBLsYjby7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/d21778-193c-4f4c-8119-dd142a1335f0/1/PCflATE9hihnmCD23MkhOXxkaWE.roa
Signing time: Sat 01 Jan 2022 12:07:07 +0000
ROA not before: Sat 01 Jan 2022 12:07:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5408
IP address blocks: 193.218.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 383734927 (0x16df548f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3937b5a5156b5c72ffc0f9c0b7104bb188dbcbbc
Validity
Not Before: Jan 1 12:07:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c27e501313d8628679820f6dcc921397c646961
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c2:ff:5c:20:d7:ac:ac:c3:25:9d:06:ec:29:
3a:fa:b6:66:ac:09:63:72:01:b8:ec:74:6d:a0:52:
8b:68:f9:a1:0a:8d:b2:41:54:b7:01:be:9b:73:a2:
97:85:55:bc:fe:31:c3:5d:56:0a:40:32:ac:ad:14:
0d:cd:3d:30:0b:a8:1a:22:86:8a:8c:00:d8:d0:88:
d0:36:fb:0d:47:11:e7:37:94:f4:0a:d4:17:e2:1d:
f5:e7:3a:28:53:c8:d8:ff:03:25:c0:ad:9a:42:65:
11:b5:97:5e:4d:e2:2a:0f:a2:78:43:0d:91:60:3b:
5e:48:9a:01:50:b2:8f:6c:ac:81:d7:f7:97:0d:18:
8a:d4:8e:3a:ac:e8:24:81:f9:e9:04:c4:63:81:f4:
7b:d1:c2:63:1e:f1:63:8a:19:22:be:52:0b:50:c8:
47:ee:b4:34:73:38:75:0d:77:ba:90:24:59:bb:52:
40:68:27:14:9d:26:05:78:f4:c1:85:c2:91:27:2f:
ae:ee:49:ec:ec:0c:88:98:70:b2:cb:db:d6:c1:48:
6d:9a:14:31:03:90:9c:6c:e9:2e:1d:e4:d6:0d:fc:
75:04:36:89:9d:82:c8:57:d4:da:89:7c:b2:86:9b:
f7:1a:90:44:75:ac:06:7d:d8:e1:11:ff:1c:21:e1:
28:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:27:E5:01:31:3D:86:28:67:98:20:F6:DC:C9:21:39:7C:64:69:61
X509v3 Authority Key Identifier:
keyid:39:37:B5:A5:15:6B:5C:72:FF:C0:F9:C0:B7:10:4B:B1:88:DB:CB:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTe1pRVrXHL_wPnAtxBLsYjby7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/d21778-193c-4f4c-8119-dd142a1335f0/1/PCflATE9hihnmCD23MkhOXxkaWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/d21778-193c-4f4c-8119-dd142a1335f0/1/OTe1pRVrXHL_wPnAtxBLsYjby7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.218.36.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:6b:01:d9:22:83:72:55:7d:ab:79:3e:94:07:4d:bd:e2:06:
d3:7a:bf:05:cd:68:ef:cc:a7:61:28:c4:08:47:15:11:26:49:
f6:60:a3:65:63:54:55:e0:36:1f:89:8c:98:ba:85:70:1d:1c:
ce:43:f7:29:f6:57:92:09:16:dc:52:90:44:b7:74:6e:47:af:
f9:c0:86:38:88:56:8f:fe:7a:fd:e0:6e:51:66:42:e0:51:19:
f7:48:51:95:54:64:39:1b:65:5a:ba:d5:06:65:12:48:3b:34:
95:df:31:30:9b:1e:d8:2f:32:55:6c:ef:b8:b8:7b:31:5b:64:
8a:d0:b9:41:11:d1:f6:01:92:48:ad:30:9b:e1:8d:ec:41:cd:
ac:92:c3:50:96:1b:a4:a7:29:1f:56:1d:00:30:0d:95:6f:f7:
0f:20:eb:fc:fc:ff:f5:e0:5e:37:21:34:60:d4:50:1e:ed:ce:
f1:f4:e5:b2:3c:f0:f0:70:85:9c:f7:27:0c:0c:4e:7f:ee:b4:
db:78:1d:b1:23:85:ad:26:70:61:7c:35:c1:a7:f1:26:b9:ce:
f3:99:f6:de:de:0a:8a:44:9f:57:2f:75:3f:b4:23:c2:5b:fe:
71:cb:dd:d3:af:bc:8a:54:4c:74:a4:9f:78:96:3b:61:b8:6e:
82:da:1f:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 01:55:19 2025 by rpki-client