Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/PBWslHhJddOAqQtrh-Z4OR-1DUs.roa
File: PBWslHhJddOAqQtrh-Z4OR-1DUs.roa (raw, json)
Hash identifier: 4oTRrMFlOZ+mryewvwSy+OaQnMVkMLM2NsNeXKrKuXA=
Subject key identifier: 3C:15:AC:94:78:49:75:D3:80:A9:0B:6B:87:E6:78:39:1F:B5:0D:4B
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 182C7F8B
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/PBWslHhJddOAqQtrh-Z4OR-1DUs.roa
Signing time: Wed 12 Jan 2022 15:49:07 +0000
ROA not before: Wed 12 Jan 2022 15:49:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212032
IP address blocks: 193.149.161.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 405569419 (0x182c7f8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 12 15:49:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c15ac94784975d380a90b6b87e678391fb50d4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:cf:98:fa:4b:79:5d:26:2d:ba:5a:12:07:e5:
93:af:4f:6c:0b:e2:e1:4c:f9:a4:ff:4e:5d:46:4d:
c9:41:81:c6:fd:ed:8d:57:3b:ea:34:e9:2e:b0:f8:
0c:30:af:7c:a8:a5:b9:8b:1c:c0:d1:fb:0a:32:14:
a7:b1:be:9e:b8:69:00:df:e0:48:de:c6:04:30:a6:
16:3e:32:eb:d1:eb:b0:51:3f:14:f1:58:9e:d5:e3:
44:0b:3f:70:cb:c8:d9:60:90:0f:69:6e:c9:8c:e6:
02:28:e5:47:e1:db:18:ad:c6:5d:22:5f:7e:71:6b:
7c:56:88:c4:08:1a:f9:66:21:b1:c4:24:15:51:67:
35:4c:98:ca:6c:f8:ad:98:3b:51:91:71:66:0a:bf:
ec:5d:22:a3:35:c0:96:01:a7:bd:f6:b3:fa:f3:3f:
c5:cc:fe:7e:98:c4:42:a5:4d:de:cf:f3:79:cd:fa:
98:23:93:ce:e2:08:91:f9:2d:a4:75:3c:dd:62:92:
b3:e5:3f:bd:39:d8:41:e6:94:68:2e:e7:86:43:d4:
4d:f5:04:18:c4:79:e2:f4:07:97:22:be:1b:65:e5:
d0:6d:3f:f9:15:66:65:f7:42:6a:cc:75:13:51:b6:
2c:1d:24:ee:d8:bc:64:dc:f3:6b:bc:7f:89:29:22:
e1:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:15:AC:94:78:49:75:D3:80:A9:0B:6B:87:E6:78:39:1F:B5:0D:4B
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/PBWslHhJddOAqQtrh-Z4OR-1DUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.149.161.0/24
Signature Algorithm: sha256WithRSAEncryption
36:eb:bc:a7:c3:a1:1d:71:91:a1:b8:76:ba:4e:54:3d:0f:f6:
ba:6d:01:45:aa:48:0f:96:d4:38:7c:be:3a:a2:0e:08:98:f4:
31:35:14:1f:99:69:f7:30:3e:ed:c8:96:e2:c4:19:71:8c:9b:
a8:ba:21:88:13:91:2b:da:01:9c:4c:44:73:bf:ee:f7:f8:0a:
20:c7:01:5e:99:43:19:54:3d:7e:5d:dd:6d:2a:2c:fe:fb:c4:
75:d2:de:af:26:cb:a8:a4:5f:27:be:a3:6f:7d:54:7c:42:f2:
98:db:f6:60:60:61:25:90:27:ed:47:79:fc:49:cb:a0:7c:1a:
43:da:f6:f0:65:df:8c:29:38:e0:ae:96:1b:88:11:47:9d:08:
d7:2d:45:08:d7:ea:8b:57:74:c0:2a:8c:f8:4c:a4:73:3b:f8:
9b:cb:8b:6e:b0:b2:6c:30:94:9f:a9:09:8b:2d:f0:56:6b:74:
c6:78:cf:80:07:fb:ab:f1:ad:81:f9:b8:92:29:09:11:71:7b:
14:bc:d6:64:42:88:5c:c1:3f:61:bc:b4:a6:4b:55:be:40:b1:
05:ff:e5:49:99:5b:f3:ca:bc:70:27:3c:f1:10:c5:b1:24:4e:
e4:bf:86:57:12:47:a8:4a:7e:1e:d2:1e:34:22:4a:0e:19:67:
79:8e:49:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:17 2023 by rpki-client on console-fra.rpki-client.org