Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/b9a470-2ba1-4893-aa25-721ccbfef077/1/PCfwmT_UgDxHFj4lES75oNYEZEc.roa
File: PCfwmT_UgDxHFj4lES75oNYEZEc.roa (raw, json)
Hash identifier: 7gxYBUhuyAR82ii8jZL94YunHVqDSPpqfr4+20RIc/w=
Subject key identifier: 3C:27:F0:99:3F:D4:80:3C:47:16:3E:25:11:2E:F9:A0:D6:04:64:47
Certificate issuer: /CN=6974808bae27da3c69eedaf440fc3ed9fd893988
Certificate serial: 081E4426
Authority key identifier: 69:74:80:8B:AE:27:DA:3C:69:EE:DA:F4:40:FC:3E:D9:FD:89:39:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aXSAi64n2jxp7tr0QPw-2f2JOYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/b9a470-2ba1-4893-aa25-721ccbfef077/1/PCfwmT_UgDxHFj4lES75oNYEZEc.roa
Signing time: Sat 01 Jan 2022 07:54:39 +0000
ROA not before: Sat 01 Jan 2022 07:54:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396982
IP address blocks: 185.143.238.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136201254 (0x81e4426)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6974808bae27da3c69eedaf440fc3ed9fd893988
Validity
Not Before: Jan 1 07:54:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c27f0993fd4803c47163e25112ef9a0d6046447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ba:ef:e1:65:6a:ef:eb:e1:77:a3:e1:2f:93:
37:b1:53:98:d6:0f:13:11:b6:93:05:a3:80:07:cf:
eb:6c:47:d7:88:ea:b5:94:79:8d:78:3a:f2:ea:96:
12:b8:40:10:1f:99:fe:7f:e1:1a:3d:bf:e1:41:9f:
61:4d:4f:cb:19:8d:c3:f4:72:a8:fb:1f:83:c3:70:
f9:20:ce:d4:8d:4c:93:6c:a1:ea:6d:d4:6b:6f:48:
79:52:d4:73:a0:06:78:fc:5f:ed:77:22:e6:e1:65:
5b:8b:9b:bf:e8:45:b2:b0:50:9e:be:65:5e:88:4f:
d2:aa:b1:5b:4b:7b:5c:1f:39:58:47:51:9c:c0:95:
69:fe:ca:ed:ff:e7:a2:9c:89:28:d4:b0:c5:05:f3:
92:e1:f9:93:71:ed:83:5e:42:35:87:1f:f4:92:3c:
66:b1:54:3a:05:07:2d:6c:c3:a8:95:3e:ad:b2:e6:
c8:6f:31:94:b5:56:8e:29:c0:ae:9f:4e:44:10:b0:
90:93:1e:f2:41:1d:47:c6:60:94:71:3a:51:9d:70:
35:5e:59:ba:50:61:4a:62:81:b6:af:33:1b:23:12:
cd:8d:2b:10:a4:69:20:05:a0:e8:51:bf:26:eb:89:
d9:14:b2:d3:d5:56:00:21:8c:a5:1b:25:94:38:d2:
28:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:27:F0:99:3F:D4:80:3C:47:16:3E:25:11:2E:F9:A0:D6:04:64:47
X509v3 Authority Key Identifier:
keyid:69:74:80:8B:AE:27:DA:3C:69:EE:DA:F4:40:FC:3E:D9:FD:89:39:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aXSAi64n2jxp7tr0QPw-2f2JOYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/b9a470-2ba1-4893-aa25-721ccbfef077/1/PCfwmT_UgDxHFj4lES75oNYEZEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/b9a470-2ba1-4893-aa25-721ccbfef077/1/aXSAi64n2jxp7tr0QPw-2f2JOYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.238.0/24
Signature Algorithm: sha256WithRSAEncryption
14:24:aa:8e:73:68:a0:5a:38:58:05:8f:63:72:8f:ba:01:f0:
97:9f:0b:d3:cb:a5:2f:91:2b:3d:4e:95:c6:14:bd:a7:d3:f0:
3f:d5:db:dd:50:a8:4f:3b:08:4a:c0:e2:57:2e:56:15:9e:e5:
a7:2e:ff:4f:f7:4b:b2:1f:5d:bc:f1:7b:50:24:55:3b:34:49:
3e:30:97:93:d7:20:7f:4e:03:b2:0a:42:6a:c7:15:d6:86:a3:
61:7b:28:a0:68:e7:7a:55:0f:12:f3:e9:06:67:09:cd:65:b6:
f0:0e:52:94:5b:44:8a:c4:4b:64:a7:4f:ca:81:3a:31:0c:77:
3d:03:91:0c:a0:07:de:a1:e2:e3:9f:b2:a4:9c:04:b3:05:69:
e5:5b:a5:02:89:95:90:c4:66:f8:3d:cc:9d:72:42:f4:bd:ff:
b3:36:ed:b9:03:8d:fb:67:5b:03:f4:a6:8a:1e:ef:04:33:f4:
34:df:99:de:e0:4d:c4:7c:97:a5:38:66:f7:25:a8:2b:fd:b0:
d0:fb:ec:f3:52:7b:16:3f:02:4a:7d:f6:d0:c0:65:94:8a:91:
34:d3:ef:a1:74:ed:34:81:47:b2:0b:6e:0c:ae:8b:e0:de:81:
ae:52:28:b0:c8:1b:91:80:24:9f:a3:57:81:8a:d3:d0:e8:cc:
1c:9b:69:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:08 2023 by rpki-client on console-fra.rpki-client.org