Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/PEPs6KpiZNoen9WGI6TJGjpUK8o.roa
File: PEPs6KpiZNoen9WGI6TJGjpUK8o.roa (raw, json)
Hash identifier: QYTV8Jbd9DdTaLG3Zr7zVL3aVTE2vfFb3+QRcuJll08=
Subject key identifier: 3C:43:EC:E8:AA:62:64:DA:1E:9F:D5:86:23:A4:C9:1A:3A:54:2B:CA
Certificate issuer: /CN=2c3963ba2aae5abd38a6eed09da985611f1b5021
Certificate serial: 01849F75EC128230AF0D0D6B1DF2278CC958
Authority key identifier: 2C:39:63:BA:2A:AE:5A:BD:38:A6:EE:D0:9D:A9:85:61:1F:1B:50:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LDljuiquWr04pu7QnamFYR8bUCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/PEPs6KpiZNoen9WGI6TJGjpUK8o.roa
Signing time: Tue 22 Nov 2022 13:10:16 +0000
ROA not before: Tue 22 Nov 2022 13:10:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204782
IP address blocks: 77.242.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9f:75:ec:12:82:30:af:0d:0d:6b:1d:f2:27:8c:c9:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c3963ba2aae5abd38a6eed09da985611f1b5021
Validity
Not Before: Nov 22 13:10:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c43ece8aa6264da1e9fd58623a4c91a3a542bca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:02:ce:83:9b:3f:20:8c:3f:5b:b7:30:a1:3c:
47:69:ee:2b:88:30:19:69:1a:4c:c0:19:a8:e3:d2:
3b:25:a4:0a:4e:f9:a2:7a:f7:c7:fb:dc:04:e0:5e:
e7:da:6b:ee:2a:ce:2c:a5:52:12:98:82:75:bc:81:
3b:40:00:c6:e5:b6:5d:78:a1:b9:72:49:0d:ae:6a:
22:3a:ca:e8:ff:32:8e:44:8d:3e:2f:2b:c3:da:ab:
0f:27:de:92:0e:c3:68:e8:85:a8:a8:1e:67:25:9f:
e0:33:c5:1f:22:46:11:ff:11:17:e5:33:ca:2a:4e:
dd:42:8b:38:d3:58:14:8e:d2:d5:e6:49:31:a8:a6:
8c:85:7d:ef:35:e6:cb:72:38:50:7b:1d:c8:47:9f:
44:46:71:0c:ef:3f:ba:89:1e:50:85:88:fe:6e:58:
13:79:6d:e5:c8:b8:d3:90:14:4b:22:3e:ac:07:fc:
e2:cb:45:17:56:dc:e7:6d:85:93:08:77:e3:10:9a:
8b:9f:ca:e9:9e:39:80:01:51:1e:22:e7:fe:a1:a7:
42:fd:36:cc:02:4e:bc:e4:e9:0e:d4:86:3c:c4:1d:
e8:64:a2:82:6b:8b:92:33:64:59:a0:bd:82:f8:9f:
50:5a:75:ad:25:32:08:80:33:9c:43:b9:02:e9:96:
2f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:43:EC:E8:AA:62:64:DA:1E:9F:D5:86:23:A4:C9:1A:3A:54:2B:CA
X509v3 Authority Key Identifier:
keyid:2C:39:63:BA:2A:AE:5A:BD:38:A6:EE:D0:9D:A9:85:61:1F:1B:50:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LDljuiquWr04pu7QnamFYR8bUCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/PEPs6KpiZNoen9WGI6TJGjpUK8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/LDljuiquWr04pu7QnamFYR8bUCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.242.236.0/22
Signature Algorithm: sha256WithRSAEncryption
69:1b:7b:4a:92:3b:c6:68:79:2c:d2:1d:7d:5a:41:9f:f0:4d:
4e:1b:4d:0d:99:27:49:6f:aa:5f:62:0a:bc:32:37:ad:c9:46:
ef:0d:3b:c3:67:7a:27:f1:0c:ff:29:0c:3b:a7:c5:ee:c7:98:
27:0c:e9:85:5e:cf:83:3b:2c:64:2f:f2:b4:50:17:5e:4c:4d:
9e:e0:fe:73:f3:2d:13:55:27:10:85:2e:11:a6:83:2c:d9:b3:
0c:b9:09:30:5a:5a:d0:20:f3:95:54:12:46:ab:9c:4c:ce:1c:
59:36:c3:0a:60:8b:34:f9:a6:3f:89:4f:e2:a9:e4:cd:27:5b:
f3:3f:7d:77:d2:0a:22:b0:f1:72:30:47:09:20:a7:c5:4d:73:
fa:ac:2d:5d:95:d9:ac:cf:49:01:9c:55:51:48:62:65:2a:1f:
b9:70:c6:59:b9:d6:1b:b4:96:44:aa:80:5f:7d:38:4c:c6:a0:
05:1c:23:63:99:56:1d:7a:37:b6:e1:23:8b:44:a2:88:f0:92:
86:77:8d:63:b1:93:dd:e9:32:64:b3:da:02:bc:b2:e8:07:d9:
34:78:37:ef:a1:c5:38:83:26:14:ca:09:65:c8:3d:22:3d:d2:
72:f7:0a:35:21:39:d0:cc:25:9c:c0:ea:f8:72:6a:fc:1f:5c:
d9:85:97:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:18 2024 by rpki-client on console-fra.rpki-client.org