Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/PZ3B4ePoAG6pcUG9PIxPWMY_GWM.roa
File: PZ3B4ePoAG6pcUG9PIxPWMY_GWM.roa (raw, json)
Hash identifier: IBpR1ZDUZr8wTtyzbjrZUvdlOq9zy05TT1okDXl2gBU=
Subject key identifier: 3D:9D:C1:E1:E3:E8:00:6E:A9:71:41:BD:3C:8C:4F:58:C6:3F:19:63
Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial: 011703AB
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/PZ3B4ePoAG6pcUG9PIxPWMY_GWM.roa
Signing time: Thu 12 May 2022 06:04:02 +0000
ROA not before: Thu 12 May 2022 06:04:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35916
IP address blocks: 2.59.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18285483 (0x11703ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Validity
Not Before: May 12 06:04:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d9dc1e1e3e8006ea97141bd3c8c4f58c63f1963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c1:30:9e:5c:3c:97:0c:79:68:a5:d8:2d:d7:
6f:19:55:51:f6:b3:4c:0e:e7:62:d0:01:6b:74:e7:
7e:0c:07:a6:cc:34:7b:ca:42:23:04:7f:7a:d4:d2:
be:92:b3:d8:17:79:7a:4f:00:44:e5:8a:8d:04:4a:
a8:b6:93:95:af:7f:b1:39:76:63:48:e6:57:95:66:
94:61:a7:7f:b5:2a:cc:7b:21:2d:ce:f7:f9:f0:46:
66:ec:41:7a:fa:a2:eb:a5:5b:eb:4e:f1:d4:f0:0a:
47:c8:27:c3:ad:a5:54:a5:da:85:8a:39:7d:f0:0c:
7e:f3:e4:5e:9e:26:76:a5:9d:18:b6:8c:9b:ae:6d:
03:70:76:44:f1:ad:83:70:63:7e:e3:4c:9f:4b:13:
0a:71:83:ac:9e:7c:47:6a:0c:9b:9e:70:7f:05:6f:
96:8f:07:cc:e5:aa:71:2f:c7:db:dd:a5:d3:a2:b3:
60:5b:43:9a:da:88:9b:d2:11:67:79:60:22:a7:c2:
15:32:75:5d:49:15:a5:44:f4:10:2a:43:fa:87:90:
b7:31:e2:8d:31:98:71:58:db:94:7c:36:97:1b:8d:
cf:c0:c6:e3:50:c0:72:1a:03:57:51:f8:42:d6:21:
2b:aa:b7:dc:bb:0c:83:84:4b:8f:07:64:7d:fd:4b:
fe:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:9D:C1:E1:E3:E8:00:6E:A9:71:41:BD:3C:8C:4F:58:C6:3F:19:63
X509v3 Authority Key Identifier:
keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/PZ3B4ePoAG6pcUG9PIxPWMY_GWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.182.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:6c:0c:99:da:63:50:47:1a:c8:5a:3d:6b:b6:2e:1e:40:c0:
be:55:c7:e1:87:cb:83:73:f2:ea:5a:b7:5f:3d:9b:c9:36:7c:
53:ef:c7:1f:e2:d9:dc:48:96:b9:78:87:f0:09:57:a4:6e:b8:
ec:76:1f:60:e7:4c:a4:ac:cb:c8:d3:b1:a3:d3:ee:9d:d1:9c:
a3:5a:51:b5:4c:f8:f3:b1:ee:8c:6e:27:0b:79:f2:8f:55:84:
11:8b:06:66:65:4e:50:71:11:b7:af:c1:a3:4b:0c:07:29:55:
45:06:48:f9:dc:3b:99:fe:e8:d4:92:a6:54:88:a8:c8:2a:38:
55:e9:05:9f:ec:76:7c:6e:44:7b:54:d6:f6:72:d1:a5:c7:cb:
d5:9e:f9:89:89:18:5d:cd:75:52:c7:23:82:15:25:fb:6a:eb:
eb:b3:c1:79:2f:79:44:67:84:82:58:9b:72:1f:b9:d2:88:fb:
cd:ce:b1:d6:b1:15:ed:0d:14:89:22:37:fb:4b:ea:21:50:55:
28:4e:87:85:b7:b4:57:78:95:08:69:4e:37:b3:af:e2:d7:07:
58:19:6c:87:2f:c0:4c:d1:5b:91:aa:61:25:31:bf:9f:03:71:
36:3a:88:03:5c:5b:f2:d8:64:f8:26:3f:53:3a:a4:eb:bb:44:
23:bd:a4:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:53 2023 by rpki-client on console-ams.rpki-client.org