Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/PSkqSgKWYSzrOn2IYYhnid3Al9U.roa
File: PSkqSgKWYSzrOn2IYYhnid3Al9U.roa (raw, json)
Hash identifier: Ap39PDNjwqZKQUoeO9jXKf2YHixrHiePZdZiQrCFfGo=
Subject key identifier: 3D:29:2A:4A:02:96:61:2C:EB:3A:7D:88:61:88:67:89:DD:C0:97:D5
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 42850D06
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/PSkqSgKWYSzrOn2IYYhnid3Al9U.roa
Signing time: Sat 01 Jan 2022 14:03:25 +0000
ROA not before: Sat 01 Jan 2022 14:03:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199520
IP address blocks: 194.132.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1116015878 (0x42850d06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:03:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d292a4a0296612ceb3a7d8861886789ddc097d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:38:c9:3e:d8:3f:e3:b7:48:f7:ab:ce:da:cc:
61:98:fc:fb:02:3a:7a:5d:e7:8a:f7:d5:5a:35:3f:
b7:dd:ca:ed:f2:99:1c:12:37:3c:92:b7:7d:27:42:
11:1b:56:38:ee:8b:cc:cd:64:ba:b7:bf:2a:e6:43:
7c:aa:dd:80:e2:e3:36:b3:75:c2:93:24:76:ea:ab:
00:6d:9f:65:a6:49:66:0d:12:12:8b:e3:01:2a:b0:
a8:8e:16:58:0b:6b:ea:dd:40:cb:7e:bf:5b:79:4b:
a0:07:6c:96:8b:14:e5:44:b5:c8:28:5e:d2:7c:6a:
78:94:a2:55:c4:63:a3:4c:23:73:19:98:0b:08:3f:
fa:1d:ca:84:68:36:60:29:50:c7:06:37:a6:32:77:
c0:d2:4f:18:d7:9b:c7:07:56:e2:f0:7c:00:75:bf:
be:05:04:e3:28:76:06:bb:9e:5e:08:58:d4:8b:f4:
16:1e:6a:9d:7b:2a:8c:7b:75:26:18:b1:33:f1:77:
27:7e:82:8b:9e:9d:13:18:63:22:06:df:ed:cb:13:
0e:12:3a:60:91:79:b7:12:53:85:9e:0d:27:43:76:
9d:f0:43:1b:8f:2a:23:62:02:f7:a6:ca:d4:ef:0b:
fd:5c:c8:0b:66:9f:dd:5c:92:5d:67:4c:7c:f0:4b:
77:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:29:2A:4A:02:96:61:2C:EB:3A:7D:88:61:88:67:89:DD:C0:97:D5
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/PSkqSgKWYSzrOn2IYYhnid3Al9U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.132.19.0/24
Signature Algorithm: sha256WithRSAEncryption
67:cc:d8:6a:d4:29:8b:83:fd:5a:be:4b:06:2a:a7:03:a6:d1:
6d:ea:d7:5b:36:72:da:04:ab:e0:54:80:29:6b:dd:f5:9c:d4:
3b:f8:32:5a:e0:00:cc:9e:c9:e5:d8:3e:71:22:62:d4:28:ec:
81:41:c4:e1:31:22:86:0b:7f:c2:09:1d:e8:85:5d:30:d4:54:
a6:2e:1f:a7:35:9e:44:ba:e8:4e:99:72:3a:c7:eb:12:65:0d:
86:86:8b:b2:ee:2e:b8:eb:12:10:18:2b:2b:a7:a3:82:8f:84:
f0:c2:14:18:67:d1:7a:7b:60:83:e9:aa:21:a7:36:f2:74:45:
ea:0c:f5:7e:69:47:dd:b5:cb:5f:77:19:ad:d6:47:39:2f:a0:
6d:f4:5f:9f:e6:de:3d:be:2a:ea:ff:db:c2:d8:db:53:42:90:
17:0c:6d:98:55:92:2b:cc:1d:e1:9f:ff:09:9c:77:41:73:a7:
4e:50:ff:38:36:c4:46:df:02:8e:55:1f:e1:df:cc:03:0a:38:
bb:bf:de:8a:b7:9b:14:1e:40:7e:f4:bd:66:ac:a0:7b:2f:e6:
7c:98:c3:31:20:e0:eb:e4:c4:65:a6:9e:3b:63:6e:51:95:92:
ce:aa:ac:d9:0b:3a:09:37:2a:3f:95:1e:6f:d7:68:69:92:d0:
4f:06:e3:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:38 2023 by rpki-client on console-ams.rpki-client.org