Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/PZMO2hAmTjACHhQJAf-ZUUaSt80.roa
File: PZMO2hAmTjACHhQJAf-ZUUaSt80.roa (raw, json)
Hash identifier: 7/mqShF4BBnSwVy8ogD2cLIBnet1BObQLeu60J5PP6Y=
Subject key identifier: 3D:93:0E:DA:10:26:4E:30:02:1E:14:09:01:FF:99:51:46:92:B7:CD
Certificate issuer: /CN=e760126dce78bc16e66c2e6e7635848ac46846af
Certificate serial: 01848B7E87CB96B85F9C7CE22DF55AC6D4C0
Authority key identifier: E7:60:12:6D:CE:78:BC:16:E6:6C:2E:6E:76:35:84:8A:C4:68:46:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/52ASbc54vBbmbC5udjWEisRoRq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/PZMO2hAmTjACHhQJAf-ZUUaSt80.roa
Signing time: Fri 18 Nov 2022 16:07:15 +0000
ROA not before: Fri 18 Nov 2022 16:07:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210439
IP address blocks: 146.247.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:8b:7e:87:cb:96:b8:5f:9c:7c:e2:2d:f5:5a:c6:d4:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e760126dce78bc16e66c2e6e7635848ac46846af
Validity
Not Before: Nov 18 16:07:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d930eda10264e30021e140901ff99514692b7cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c5:02:b1:40:06:75:66:42:9d:17:ee:59:d6:
b8:73:56:49:9f:7e:bf:d9:48:08:6d:31:36:c1:ca:
0a:e0:40:10:33:88:79:d3:90:79:a5:09:59:dd:0f:
12:05:d3:b2:f4:65:29:08:82:3d:a1:2a:54:cb:dc:
f6:71:eb:dd:a2:4b:0e:6f:aa:47:ee:af:26:48:6f:
c7:02:1d:f5:1f:99:93:2c:03:35:4e:39:d4:3b:37:
2b:fe:ee:78:e5:31:0d:58:0e:1e:b2:70:9e:cc:63:
55:3d:91:aa:63:a3:87:e5:db:03:4c:27:b4:02:04:
fa:4c:9b:ed:b6:65:4e:89:c2:9e:6a:56:8d:a8:9e:
93:d5:56:39:fa:4f:34:79:58:27:80:35:89:4e:07:
b4:a7:87:1c:85:64:62:67:18:66:00:82:24:b5:5f:
f3:71:aa:42:27:9d:aa:8d:93:c1:df:8b:1c:ac:92:
8c:cd:72:8e:e2:6b:b5:cf:ba:95:b1:b7:23:4a:b6:
30:67:25:d1:b1:5b:cd:f3:c1:bc:7d:e9:f9:8d:36:
c2:67:5b:41:11:a5:fc:2b:61:2c:d4:25:55:fc:09:
f8:38:5f:7b:86:f4:09:8a:db:87:9b:96:28:84:98:
3c:e2:9a:9e:de:c9:fe:9e:f4:79:d5:b1:37:48:7d:
5b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:93:0E:DA:10:26:4E:30:02:1E:14:09:01:FF:99:51:46:92:B7:CD
X509v3 Authority Key Identifier:
keyid:E7:60:12:6D:CE:78:BC:16:E6:6C:2E:6E:76:35:84:8A:C4:68:46:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/52ASbc54vBbmbC5udjWEisRoRq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/PZMO2hAmTjACHhQJAf-ZUUaSt80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/52ASbc54vBbmbC5udjWEisRoRq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.247.102.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:71:e5:68:56:10:70:f7:58:f0:cc:4d:43:c1:f3:68:2a:a1:
24:21:d0:06:5d:94:1d:1c:7f:8f:b7:4f:de:b4:07:da:2e:4a:
6b:b3:c7:a6:be:e7:31:98:3b:49:76:bc:57:95:3f:4b:d8:ee:
a4:11:fb:2f:d7:4c:09:29:74:98:c4:33:d9:45:f3:cb:07:a9:
0c:fb:5c:c7:09:2c:87:40:94:c0:d5:0e:41:d6:74:a4:7d:c3:
b8:df:00:e7:f6:38:e8:0f:cf:2a:04:f9:07:66:1f:ef:4a:3f:
ec:2a:bc:49:5e:96:0c:e7:06:66:49:82:7c:dd:53:4f:e2:48:
5e:2e:d9:51:14:a2:50:a2:c6:c8:95:07:c7:44:99:0d:ed:88:
90:71:60:16:63:7b:7c:c7:5e:ad:40:90:af:61:47:8d:ba:e2:
2c:fa:b3:06:32:0d:dc:58:19:11:e5:d0:b6:67:9d:56:4e:4f:
29:20:19:0a:02:b3:d9:fb:2f:98:0a:77:01:27:fd:35:a9:9b:
2a:a8:5f:e3:e7:97:c2:0a:66:61:92:e5:dd:19:51:6b:9e:03:
bb:f3:05:5b:cd:a7:70:85:a4:44:6c:04:68:5d:47:0b:95:c8:
de:53:23:15:24:93:be:a7:bf:30:4c:33:ae:9a:fe:9a:db:d4:
ab:82:f4:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:34 2023 by rpki-client on console-ams.rpki-client.org