Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/1de613-61b9-4b07-ad47-50e4b0504f48/1/PIL6IpGoWNnuWsGQKHZQ_Ka-zUs.roa
File: PIL6IpGoWNnuWsGQKHZQ_Ka-zUs.roa (raw, json)
Hash identifier: 7sMhI8+0TvWssV1ybmZEEf8am4AGsrQF65UwKIKr9Ig=
Subject key identifier: 3C:82:FA:22:91:A8:58:D9:EE:5A:C1:90:28:76:50:FC:A6:BE:CD:4B
Certificate issuer: /CN=9e740cd3b66b60e18b3d96ffb3f4218d79b5b770
Certificate serial: 090AF200
Authority key identifier: 9E:74:0C:D3:B6:6B:60:E1:8B:3D:96:FF:B3:F4:21:8D:79:B5:B7:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nnQM07ZrYOGLPZb_s_QhjXm1t3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/1de613-61b9-4b07-ad47-50e4b0504f48/1/PIL6IpGoWNnuWsGQKHZQ_Ka-zUs.roa
Signing time: Sat 01 Jan 2022 14:57:19 +0000
ROA not before: Sat 01 Jan 2022 14:57:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9044
IP address blocks: 193.27.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151712256 (0x90af200)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e740cd3b66b60e18b3d96ffb3f4218d79b5b770
Validity
Not Before: Jan 1 14:57:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c82fa2291a858d9ee5ac190287650fca6becd4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:08:29:ef:67:64:e5:07:68:0b:4c:58:c1:dd:
c5:17:36:e3:86:ea:42:7f:3f:ea:34:3f:0b:bf:80:
6b:82:ef:4f:51:c4:1d:8b:ab:2f:da:89:33:92:8a:
43:68:37:06:e5:a7:68:ce:24:c8:5e:31:26:36:57:
c6:66:22:35:58:2b:b3:af:16:b0:85:27:57:11:3a:
a8:84:3c:69:06:58:03:34:83:53:93:9e:49:79:16:
04:84:e6:fc:c0:85:0f:b4:49:9d:29:a8:6c:07:c4:
f7:53:63:b9:09:5e:09:d2:a9:2f:cb:00:ad:61:9a:
1a:5d:4c:bb:51:53:18:89:91:90:81:81:84:27:7c:
51:57:63:09:54:5f:97:98:3d:09:c1:2d:c3:35:68:
04:f6:b0:cf:60:73:0f:9a:bf:11:d6:84:89:a5:15:
f8:d9:a0:b7:78:71:71:24:b0:f3:a7:71:1d:40:36:
71:98:07:98:1a:4d:45:f5:1c:1e:20:ff:ae:86:ac:
9c:84:d3:7b:47:62:20:1a:4b:a4:9a:45:b6:33:81:
bc:a7:72:ff:10:3c:07:53:e8:03:69:b4:94:9e:c1:
fd:3f:dd:41:05:62:3e:63:d6:bf:61:b3:82:5c:bc:
73:90:c8:b4:72:f6:42:85:d6:44:a5:e2:a5:23:b7:
98:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:82:FA:22:91:A8:58:D9:EE:5A:C1:90:28:76:50:FC:A6:BE:CD:4B
X509v3 Authority Key Identifier:
keyid:9E:74:0C:D3:B6:6B:60:E1:8B:3D:96:FF:B3:F4:21:8D:79:B5:B7:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nnQM07ZrYOGLPZb_s_QhjXm1t3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/1de613-61b9-4b07-ad47-50e4b0504f48/1/PIL6IpGoWNnuWsGQKHZQ_Ka-zUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/1de613-61b9-4b07-ad47-50e4b0504f48/1/nnQM07ZrYOGLPZb_s_QhjXm1t3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.27.43.0/24
Signature Algorithm: sha256WithRSAEncryption
95:34:b5:83:c8:96:9c:6f:89:67:34:ba:e5:96:c2:84:c1:43:
5d:f1:24:cd:83:fc:71:54:b7:eb:fc:d7:0d:e9:06:15:78:7e:
7e:c2:08:60:f2:a5:f1:43:ab:90:0d:61:8b:6b:f5:d9:53:4c:
eb:a6:39:3a:6a:30:49:21:b5:47:55:bd:6f:31:a2:a1:a1:93:
9c:91:1a:91:cf:c7:49:79:e9:90:25:2a:61:e9:72:71:74:02:
e5:22:95:21:c6:60:6b:3d:ed:05:27:0a:da:8d:21:df:e4:15:
6c:43:8a:33:65:6b:c5:bb:94:c1:88:b6:54:4a:bd:35:61:2b:
2a:57:14:a3:0d:8f:66:17:1d:f1:56:e2:c7:36:59:5c:53:12:
c6:ce:de:5b:89:19:f7:db:3d:6a:b0:b7:78:e8:7e:cc:f2:1b:
6b:11:63:aa:bd:c4:0b:a4:45:ce:ad:0e:54:a5:16:01:8f:a7:
1a:c8:d9:72:31:70:bb:ba:ba:7f:c4:24:05:77:1d:88:ac:37:
48:c1:a1:20:45:ab:81:27:7b:91:63:be:b6:34:41:c0:d3:66:
28:a6:04:bc:88:a9:86:f4:dc:db:1b:f7:d5:1c:d8:65:ac:b6:
39:47:d5:7b:9f:80:31:96:e2:e8:ce:6d:3a:28:94:2a:79:91:
78:44:0f:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:05 2023 by rpki-client on console.sobornost.net