Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/c61e40-ac09-4756-94ef-93c6457caf33/1/PYZKWwC_Jg38nDMd47OQFOEdCic.roa
File: PYZKWwC_Jg38nDMd47OQFOEdCic.roa (raw, json)
Hash identifier: 8KQw0+G4+K5LPlL96Twavg5HyS/3KJSisU3zbg7seaE=
Subject key identifier: 3D:86:4A:5B:00:BF:26:0D:FC:9C:33:1D:E3:B3:90:14:E1:1D:0A:27
Certificate issuer: /CN=dc76d2f43ec17dfc805cdb05f000a157989ed448
Certificate serial: 0ABC10AB
Authority key identifier: DC:76:D2:F4:3E:C1:7D:FC:80:5C:DB:05:F0:00:A1:57:98:9E:D4:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3HbS9D7BffyAXNsF8AChV5ie1Eg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/c61e40-ac09-4756-94ef-93c6457caf33/1/PYZKWwC_Jg38nDMd47OQFOEdCic.roa
Signing time: Sat 01 Jan 2022 06:04:45 +0000
ROA not before: Sat 01 Jan 2022 06:04:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41038
IP address blocks: 194.30.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180097195 (0xabc10ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc76d2f43ec17dfc805cdb05f000a157989ed448
Validity
Not Before: Jan 1 06:04:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d864a5b00bf260dfc9c331de3b39014e11d0a27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:20:ca:24:28:60:5f:26:9b:d4:34:3a:9e:62:
85:7e:a1:ab:ff:a3:f8:2c:1b:5b:59:36:a8:e0:ee:
69:a3:c4:24:98:36:5f:5e:f8:ff:78:01:7a:89:ae:
04:8a:83:6b:e2:82:4c:40:c0:31:b9:d7:a9:2e:cc:
f8:64:09:9a:6d:d8:c3:ff:9c:8f:e3:5a:c1:db:24:
47:df:ee:40:f4:1b:34:ae:5a:ff:0a:e8:3f:56:32:
37:4f:ab:ad:a8:f7:57:91:46:e6:bf:48:3b:3c:31:
af:d6:a8:b9:8e:47:9c:1f:37:70:44:79:19:b5:32:
56:2b:f0:a7:22:0e:24:91:ec:79:06:b9:27:ae:29:
ad:75:c8:18:df:6a:0a:ca:09:76:45:37:57:e4:2a:
88:75:e0:77:ce:36:5f:89:2e:60:95:e3:e4:86:21:
e7:80:4e:d5:60:b3:8f:e5:c3:b5:20:59:ed:9b:3c:
21:0e:7d:7e:be:32:24:77:57:30:f1:b7:a2:39:9c:
6e:d1:38:24:d5:91:a8:6a:42:8a:a6:be:1f:c4:a1:
fe:07:ae:19:5d:60:2a:e8:63:34:16:82:bd:c5:2a:
aa:b0:2b:55:25:c1:81:1f:82:7c:20:81:ef:83:3f:
7c:35:ed:f0:21:0f:dd:5a:56:13:a5:d7:32:fc:d8:
fd:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:86:4A:5B:00:BF:26:0D:FC:9C:33:1D:E3:B3:90:14:E1:1D:0A:27
X509v3 Authority Key Identifier:
keyid:DC:76:D2:F4:3E:C1:7D:FC:80:5C:DB:05:F0:00:A1:57:98:9E:D4:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3HbS9D7BffyAXNsF8AChV5ie1Eg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/c61e40-ac09-4756-94ef-93c6457caf33/1/PYZKWwC_Jg38nDMd47OQFOEdCic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/c61e40-ac09-4756-94ef-93c6457caf33/1/3HbS9D7BffyAXNsF8AChV5ie1Eg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.30.182.0/24
Signature Algorithm: sha256WithRSAEncryption
94:f2:23:20:c8:d8:fa:52:76:ae:e2:65:d5:0b:04:3c:7a:ff:
8f:56:6e:a0:14:74:b9:16:df:37:14:8b:c8:e8:be:fc:15:24:
55:29:4c:38:55:cd:64:d0:cc:74:71:0e:89:0b:b9:18:dc:a3:
b0:5b:40:bb:09:06:d9:ab:ac:7d:eb:8a:c1:80:fc:6b:e9:67:
c6:7c:9f:94:17:10:ca:bb:b2:86:a7:62:8a:11:00:fa:9a:45:
a6:b4:b3:cd:95:26:3a:2e:04:14:8f:58:82:ad:58:d5:ce:fc:
8d:d6:1e:7b:de:95:11:6f:3e:54:0d:2f:7d:9a:c7:b3:75:be:
7d:59:08:d2:78:ce:b8:41:14:45:54:e5:95:c9:da:17:8f:ca:
b7:91:6b:b6:6d:fe:de:ab:e3:c9:67:fe:3c:5f:73:5a:51:9c:
4e:5a:16:60:4b:ba:a4:de:9b:ea:f1:17:b4:32:9b:93:1e:95:
c5:d3:2b:33:9b:a8:39:05:64:3d:7f:ce:38:f3:2a:c3:9b:c6:
10:30:42:d7:47:54:db:82:ac:11:79:05:c5:97:bc:9b:5d:1a:
c7:2b:65:2a:57:5a:a8:1b:8f:ff:8f:33:20:8f:11:75:c4:fa:
fe:6c:7f:91:d9:97:ea:b5:c3:f2:6a:c9:78:fd:90:b6:2b:b4:
60:06:c5:7a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECrwQqzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
Yzc2ZDJmNDNlYzE3ZGZjODA1Y2RiMDVmMDAwYTE1Nzk4OWVkNDQ4MB4XDTIyMDEw
MTA2MDQ0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2Q4NjRhNWIwMGJm
MjYwZGZjOWMzMzFkZTNiMzkwMTRlMTFkMGEyNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJAgyiQoYF8mm9Q0Op5ihX6hq/+j+CwbW1k2qODuaaPEJJg2
X174/3gBeomuBIqDa+KCTEDAMbnXqS7M+GQJmm3Yw/+cj+NawdskR9/uQPQbNK5a
/wroP1YyN0+rraj3V5FG5r9IOzwxr9aouY5HnB83cER5GbUyVivwpyIOJJHseQa5
J64prXXIGN9qCsoJdkU3V+QqiHXgd842X4kuYJXj5IYh54BO1WCzj+XDtSBZ7Zs8
IQ59fr4yJHdXMPG3ojmcbtE4JNWRqGpCiqa+H8Sh/geuGV1gKuhjNBaCvcUqqrAr
VSXBgR+CfCCB74M/fDXt8CEP3VpWE6XXMvzY/RsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ9hkpbAL8mDfycMx3js5AU4R0KJzAfBgNVHSMEGDAWgBTcdtL0PsF9/IBc
2wXwAKFXmJ7USDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzNIYlM5RDdCZmZ5QVhOc0Y4QUNoVjVpZTFFZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzIvYzYxZTQwLWFjMDktNDc1Ni05NGVmLTkzYzY0NTdjYWYzMy8x
L1BZWktXd0NfSmczOG5ETWQ0N09RRk9FZENpYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzIv
YzYxZTQwLWFjMDktNDc1Ni05NGVmLTkzYzY0NTdjYWYzMy8xLzNIYlM5RDdCZmZ5
QVhOc0Y4QUNoVjVpZTFFZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMIetjANBgkqhkiG9w0BAQsFAAOC
AQEAlPIjIMjY+lJ2ruJl1QsEPHr/j1ZuoBR0uRbfNxSLyOi+/BUkVSlMOFXNZNDM
dHEOiQu5GNyjsFtAuwkG2ausfeuKwYD8a+lnxnyflBcQyruyhqdiihEA+ppFprSz
zZUmOi4EFI9Ygq1Y1c78jdYee96VEW8+VA0vfZrHs3W+fVkI0njOuEEURVTllcna
F4/Kt5Frtm3+3qvjyWf+PF9zWlGcTloWYEu6pN6b6vEXtDKbkx6VxdMrM5uoOQVk
PX/OOPMqw5vGEDBC10dU24KsEXkFxZe8m10axytlKldaqBuP/48zII8RdcT6/mx/
kdmX6rXD8mrJeP2Qtiu0YAbFeg==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:27 2023 by rpki-client on console.sobornost.net