Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/0c9b54-130a-499a-bf9f-7610aabaa274/1/PqU7lVa_pQrAZT0OdRazITubXyI.roa
File: PqU7lVa_pQrAZT0OdRazITubXyI.roa (raw, json)
Hash identifier: wIpWkdbxHj8Om+u+wIvbrudQmfFYti7HN7B25N+e2/Q=
Subject key identifier: 3E:A5:3B:95:56:BF:A5:0A:C0:65:3D:0E:75:16:B3:21:3B:9B:5F:22
Certificate issuer: /CN=725c0c7111e2f57fcaf8113a42e556e882dd5c4b
Certificate serial: 169B743E
Authority key identifier: 72:5C:0C:71:11:E2:F5:7F:CA:F8:11:3A:42:E5:56:E8:82:DD:5C:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/clwMcRHi9X_K-BE6QuVW6ILdXEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/0c9b54-130a-499a-bf9f-7610aabaa274/1/PqU7lVa_pQrAZT0OdRazITubXyI.roa
Signing time: Sat 01 Jan 2022 09:06:36 +0000
ROA not before: Sat 01 Jan 2022 09:06:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30848
IP address blocks: 151.248.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 379286590 (0x169b743e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=725c0c7111e2f57fcaf8113a42e556e882dd5c4b
Validity
Not Before: Jan 1 09:06:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ea53b9556bfa50ac0653d0e7516b3213b9b5f22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a4:a8:16:57:72:0e:d6:e9:ce:5b:c0:b0:34:
6b:70:85:fc:fb:71:f0:55:6b:61:a9:eb:43:25:62:
94:00:66:70:f7:da:bd:63:ee:35:e8:0d:02:e9:3d:
93:cc:1d:87:9e:18:72:0d:19:b7:ba:b6:d5:1f:ca:
2c:4c:b9:7c:c5:b1:2b:c7:31:aa:d3:31:b2:17:21:
8a:fe:2c:70:b2:a1:b8:0e:c3:29:c4:74:ea:13:fd:
4d:a1:21:31:a1:1e:ea:59:54:ee:91:b0:13:ae:c9:
51:90:78:c7:6d:9b:74:c9:29:f9:38:74:a4:b4:d4:
dc:9e:8f:ba:70:d7:8a:17:9d:ab:34:dd:20:b8:da:
f5:b6:90:97:89:b8:f1:92:51:e4:3b:a3:ca:cb:2b:
a8:28:ae:5c:82:f8:d1:89:c7:f9:7c:ea:0b:48:b1:
70:cb:24:d2:23:56:e4:7d:2b:f7:c2:58:7c:68:2b:
ff:f8:91:a7:5f:77:47:d1:95:64:8d:de:27:ca:b7:
2c:7c:80:22:23:c4:15:76:e7:ec:6c:7c:99:ec:47:
0d:a4:12:74:44:8c:63:52:cd:94:c1:89:7d:e9:fa:
18:4e:c6:12:4e:a4:fc:4a:92:12:34:1a:f1:aa:40:
27:c8:5f:c5:a2:e2:90:c7:a7:26:b2:92:c6:23:12:
6c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:A5:3B:95:56:BF:A5:0A:C0:65:3D:0E:75:16:B3:21:3B:9B:5F:22
X509v3 Authority Key Identifier:
keyid:72:5C:0C:71:11:E2:F5:7F:CA:F8:11:3A:42:E5:56:E8:82:DD:5C:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/clwMcRHi9X_K-BE6QuVW6ILdXEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/0c9b54-130a-499a-bf9f-7610aabaa274/1/PqU7lVa_pQrAZT0OdRazITubXyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/0c9b54-130a-499a-bf9f-7610aabaa274/1/clwMcRHi9X_K-BE6QuVW6ILdXEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.248.13.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:aa:0a:18:3d:92:f5:57:40:fe:11:b1:31:ce:c1:48:fc:e3:
ed:5e:28:1a:74:aa:36:fe:00:9c:3c:3c:e6:46:16:5f:ae:a1:
cb:93:a0:82:02:44:63:1f:b0:f9:09:e0:df:d7:76:2c:3b:99:
52:9f:01:30:58:59:ec:fc:a3:f8:cc:f8:27:6b:2e:f9:fc:b5:
e8:a1:1b:fc:eb:d2:71:fa:d4:4c:6d:78:8c:cb:72:cd:1c:77:
1d:11:f5:d1:3b:69:8b:87:22:22:c0:82:03:eb:20:06:cf:85:
0d:31:6b:1c:ed:28:00:e0:52:64:d9:b1:ed:1e:6e:27:5d:4a:
a5:e2:66:a8:b0:0a:ad:51:1e:68:ae:c0:f3:7f:71:b7:1f:30:
7a:c1:b1:bc:fd:42:9e:ca:6d:67:9d:e7:a0:ae:28:d7:79:7e:
53:1e:69:e7:6b:4b:54:26:51:41:e8:46:46:9a:91:da:c0:ba:
39:29:69:71:72:c2:6f:9e:27:88:55:77:5a:18:99:22:e2:d6:
b4:7e:29:ae:2a:36:46:0e:e6:18:d4:b5:07:63:f4:40:91:10:
65:fc:a8:c1:a0:2b:02:96:9b:cf:71:79:c3:5a:18:9d:2f:39:
33:96:cd:98:34:7d:51:d2:37:b8:f4:28:1a:7b:9b:1d:2a:de:
2e:59:70:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:41 2024 by rpki-client on console-ams.rpki-client.org