Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/6788f5-4889-4be7-bb19-a9b8de611a96/1/PUqTQrWy3UPocA85u9bPGXfG3F8.roa
File: PUqTQrWy3UPocA85u9bPGXfG3F8.roa (raw, json)
Hash identifier: 9m6ZXKvpekVXFqZoe/49mIpe4vktwkucUGl/kBgdyV4=
Subject key identifier: 3D:4A:93:42:B5:B2:DD:43:E8:70:0F:39:BB:D6:CF:19:77:C6:DC:5F
Certificate issuer: /CN=925069a5d764da255954db2ee9d1243de16b9101
Certificate serial: 0182EA998604450C6EC02CD056A72AEAD3BF
Authority key identifier: 92:50:69:A5:D7:64:DA:25:59:54:DB:2E:E9:D1:24:3D:E1:6B:91:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/klBppddk2iVZVNsu6dEkPeFrkQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/6788f5-4889-4be7-bb19-a9b8de611a96/1/PUqTQrWy3UPocA85u9bPGXfG3F8.roa
Signing time: Mon 29 Aug 2022 17:15:06 +0000
ROA not before: Mon 29 Aug 2022 17:15:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39622
IP address blocks: 193.168.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ea:99:86:04:45:0c:6e:c0:2c:d0:56:a7:2a:ea:d3:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=925069a5d764da255954db2ee9d1243de16b9101
Validity
Not Before: Aug 29 17:15:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d4a9342b5b2dd43e8700f39bbd6cf1977c6dc5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:06:bb:ec:55:b6:f5:6d:85:09:cd:04:23:1c:
b8:b4:92:8d:cc:59:3a:a6:86:7e:0f:09:42:ee:4d:
21:83:1b:24:52:9e:3e:c6:32:a3:12:3e:06:ee:80:
bf:3e:e2:ac:2f:9d:a7:7a:41:e4:34:05:43:2b:26:
e9:1c:1e:97:e7:8c:d2:d4:58:84:3a:14:57:2e:ec:
a1:44:14:72:b4:31:27:bc:21:1d:ef:bc:cd:86:69:
01:1e:7f:54:ed:29:ff:5e:4b:ea:39:f8:3f:fc:47:
06:c7:e6:44:d6:b2:42:94:98:d6:8a:bc:f0:a5:c4:
81:6a:32:7a:a7:d5:0f:cc:84:60:29:01:62:ee:74:
49:83:8c:ce:7f:cc:74:19:fe:3b:37:30:21:d7:b9:
ad:eb:09:ef:ed:21:22:13:ef:1b:a5:b9:fb:14:18:
cd:29:db:70:8d:7b:10:82:d0:d8:2b:21:c1:b5:cc:
42:d1:fa:bd:5b:45:20:3f:ce:80:f8:62:d6:81:76:
f4:66:9d:0f:12:3a:ce:d6:73:a6:f8:92:7e:8c:e3:
84:5e:c4:04:7c:5a:4b:15:9d:73:0d:14:ce:e6:1c:
2c:dc:ec:dc:ce:e7:e8:04:86:06:ea:35:be:d9:73:
2f:5a:ac:a4:da:93:e0:d8:26:8c:d5:96:6f:c4:14:
2a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:4A:93:42:B5:B2:DD:43:E8:70:0F:39:BB:D6:CF:19:77:C6:DC:5F
X509v3 Authority Key Identifier:
keyid:92:50:69:A5:D7:64:DA:25:59:54:DB:2E:E9:D1:24:3D:E1:6B:91:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/klBppddk2iVZVNsu6dEkPeFrkQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/6788f5-4889-4be7-bb19-a9b8de611a96/1/PUqTQrWy3UPocA85u9bPGXfG3F8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/6788f5-4889-4be7-bb19-a9b8de611a96/1/klBppddk2iVZVNsu6dEkPeFrkQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.168.140.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:c7:fa:c7:f8:e0:88:c8:b2:df:4d:40:80:69:b9:fd:9a:ee:
a1:8a:70:c7:cc:24:9e:59:43:80:08:96:15:a0:34:8d:35:b5:
2d:7f:31:8f:a8:7a:68:7c:67:81:18:10:ef:2d:0b:12:06:5d:
37:b1:e1:ef:c0:a7:54:b9:92:4a:be:a9:08:3f:e3:9d:ac:bd:
ec:e9:5a:35:49:39:2f:30:9a:17:85:53:3d:2b:53:1e:8e:b8:
d0:3d:a3:bd:23:9b:a5:14:cd:b0:62:9c:7e:35:8a:89:ba:e6:
39:58:f6:17:5e:35:e6:e6:4e:56:66:df:f5:d1:4e:38:57:9e:
1a:99:94:4c:fe:79:77:7e:ae:7d:f6:d9:43:cc:72:9d:35:62:
89:85:36:42:62:ce:20:55:37:9f:25:bf:2b:be:aa:d0:ad:db:
ce:2e:6f:8d:a2:f2:32:ad:58:f1:52:1e:13:ce:17:9a:95:a5:
6d:47:0d:c8:a2:61:82:62:5d:e8:08:c4:1c:53:30:be:5c:0b:
27:74:22:09:b7:2e:f6:dc:43:83:6a:60:55:3d:2a:15:31:27:
b1:f0:de:09:00:81:8d:e0:83:fd:4a:48:26:47:dc:41:29:f2:
14:fa:82:5d:a2:f0:12:6c:2c:29:f1:84:94:ae:3a:e2:f7:95:
e3:e5:66:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:05 2024 by rpki-client on console-ams.rpki-client.org