Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/t_PMGGqx9f-Qw7ksMX6JOrEcNZ8.roa
File: t_PMGGqx9f-Qw7ksMX6JOrEcNZ8.roa (raw, json)
Hash identifier: E4UhSxhSSFlO4dTy813kv7DoRC4Ed2KatanfY/FflpQ=
Subject key identifier: B7:F3:CC:18:6A:B1:F5:FF:90:C3:B9:2C:31:7E:89:3A:B1:1C:35:9F
Certificate issuer: /CN=b8fada87a76f29f82e25a3179e7a38cf0c6b0300
Certificate serial: 05D02DF5
Authority key identifier: B8:FA:DA:87:A7:6F:29:F8:2E:25:A3:17:9E:7A:38:CF:0C:6B:03:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uPrah6dvKfguJaMXnno4zwxrAwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/t_PMGGqx9f-Qw7ksMX6JOrEcNZ8.roa
Signing time: Sat 01 Jan 2022 02:55:04 +0000
ROA not before: Sat 01 Jan 2022 02:55:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207271
IP address blocks: 192.145.60.0/22 maxlen: 24
2a10:a40::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97529333 (0x5d02df5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8fada87a76f29f82e25a3179e7a38cf0c6b0300
Validity
Not Before: Jan 1 02:55:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7f3cc186ab1f5ff90c3b92c317e893ab11c359f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f9:38:54:65:cc:81:19:3d:25:f8:2f:5f:94:
b1:e7:cb:d8:fb:b3:f7:bb:1d:48:91:1d:46:c7:30:
82:f4:d7:7f:20:37:29:82:9e:97:21:e9:c7:46:5b:
f8:9e:2e:ff:2a:ac:59:08:fb:bf:92:ad:16:cb:6f:
5d:fa:29:f6:eb:ee:d8:5b:d7:72:c7:9f:48:6d:41:
39:aa:8d:02:72:2b:14:fc:68:d1:e5:c8:6c:3c:f1:
9a:d3:85:e5:a1:79:0e:08:2a:ee:08:92:c1:f5:97:
54:26:a9:d6:39:02:47:5b:05:e9:ad:0a:7b:d7:13:
4c:ef:20:62:6c:71:e2:dd:79:b4:5c:d1:fd:9f:ce:
95:76:e1:db:a8:b7:15:df:4e:07:c6:b0:1f:73:15:
08:0c:e7:44:be:5e:8b:e6:85:b1:4a:09:37:97:b3:
af:e8:74:e3:69:7d:af:6f:4c:30:f9:49:4e:25:ba:
08:a7:31:78:ad:44:4d:40:e7:53:38:24:5a:a3:f1:
e1:6c:20:6e:2e:11:18:c2:31:c4:0d:d6:96:0d:a8:
03:99:f7:4b:04:5d:d5:1d:aa:b5:99:15:0b:da:cb:
27:7c:4e:65:63:fb:93:57:25:64:d1:8e:a3:ad:46:
2c:1d:85:bd:3a:0b:8c:d9:82:a1:b8:e3:0f:67:67:
9c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:F3:CC:18:6A:B1:F5:FF:90:C3:B9:2C:31:7E:89:3A:B1:1C:35:9F
X509v3 Authority Key Identifier:
keyid:B8:FA:DA:87:A7:6F:29:F8:2E:25:A3:17:9E:7A:38:CF:0C:6B:03:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uPrah6dvKfguJaMXnno4zwxrAwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/t_PMGGqx9f-Qw7ksMX6JOrEcNZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.145.60.0/22
IPv6:
2a10:a40::/32
Signature Algorithm: sha256WithRSAEncryption
03:92:2e:67:4b:7c:fc:aa:56:bd:6d:9e:2b:66:07:ce:2b:b5:
ff:0d:d7:ef:72:80:e8:2e:f1:b9:50:b6:69:4e:50:7e:20:93:
c4:32:71:6a:79:88:0f:0c:e9:b9:0d:d1:1f:af:de:5d:4e:71:
9d:12:70:9a:2a:35:df:21:55:b2:7e:4b:42:dd:b6:c8:54:37:
a7:6b:0d:31:01:2b:a7:f9:d8:b9:a3:bb:e8:24:d7:9a:5d:ed:
cf:13:47:d7:b1:3e:e9:7e:38:d9:2b:c0:77:75:d8:fb:90:64:
df:89:70:4b:e6:18:ae:35:cd:01:c9:e8:37:19:39:b7:a9:ac:
4e:9c:fe:b0:ee:6c:6a:35:f9:36:3b:37:4c:30:77:00:4c:94:
83:bd:04:d2:d4:1b:8d:b5:37:b8:94:ff:99:a8:a2:68:1f:a9:
22:6f:e7:fd:c9:fe:bc:35:09:d4:80:96:16:47:f3:de:82:b0:
e6:9d:b3:1b:89:cf:1c:07:f0:8d:37:8e:b0:44:c4:75:b6:bc:
1f:4d:a9:e1:4a:77:0f:ef:39:58:68:42:8f:2a:34:d7:5a:cb:
f1:f4:57:14:ef:40:31:15:d9:38:96:02:79:f7:be:b5:12:84:
97:f6:df:b5:51:2e:0e:6b:61:f3:37:0e:cd:41:ec:24:09:f6:
5b:ed:69:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:47 2024 by rpki-client on console-fra.rpki-client.org