Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/e9ba47-06ae-4988-8165-37018b1fe9fa/1/PagbUpkZpfYR7a-dp3RE-I63YIE.roa
File: PagbUpkZpfYR7a-dp3RE-I63YIE.roa (raw, json)
Hash identifier: orNAlSOAqUzlsuusR2KhfL5jDaT8oPBO0tIvKmLXo8k=
Subject key identifier: 3D:A8:1B:52:99:19:A5:F6:11:ED:AF:9D:A7:74:44:F8:8E:B7:60:81
Certificate issuer: /CN=dee02e267c89f50df1a176f0e75f5c28235b23a5
Certificate serial: 19A0DC44
Authority key identifier: DE:E0:2E:26:7C:89:F5:0D:F1:A1:76:F0:E7:5F:5C:28:23:5B:23:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3uAuJnyJ9Q3xoXbw519cKCNbI6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/e9ba47-06ae-4988-8165-37018b1fe9fa/1/PagbUpkZpfYR7a-dp3RE-I63YIE.roa
Signing time: Sat 01 Jan 2022 12:01:57 +0000
ROA not before: Sat 01 Jan 2022 12:01:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199782
IP address blocks: 185.46.16.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 429972548 (0x19a0dc44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dee02e267c89f50df1a176f0e75f5c28235b23a5
Validity
Not Before: Jan 1 12:01:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3da81b529919a5f611edaf9da77444f88eb76081
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:dd:bc:c1:0e:0d:fe:5c:be:75:09:2b:fe:00:
93:cf:80:0b:a9:24:5c:c9:7b:c7:a0:69:2d:c1:60:
3b:00:99:4b:b1:72:d5:30:4a:0a:8d:02:cd:56:32:
14:88:a4:7c:6f:9c:08:98:70:2b:4e:a6:89:a6:5a:
f3:fc:2e:82:f8:04:a9:64:f3:b6:4a:3b:66:13:37:
a4:16:f5:5d:9d:61:40:c8:43:6b:8e:cb:0f:e4:97:
0e:ba:a7:e3:85:0d:ee:8f:47:b9:7c:84:27:a9:1c:
c9:27:57:c4:70:f0:be:b4:79:70:24:49:74:cd:2d:
56:b2:7d:6a:89:74:a0:33:44:a5:77:10:79:db:6c:
0b:78:2d:8c:e0:c0:5b:05:c5:0a:d6:41:53:0d:43:
9b:3d:5e:c4:b0:03:d6:13:f2:7e:0f:b4:f1:14:0b:
ad:e4:5e:0a:70:df:4b:ca:86:22:d7:95:9d:3d:50:
f1:99:a3:e5:26:f2:0c:56:1b:ab:eb:0b:f3:20:98:
d7:1c:99:49:4b:d1:e1:52:0d:f5:09:15:ca:31:d2:
d3:fb:7a:6a:40:71:12:f4:5d:ab:7b:32:c9:21:a3:
5c:6d:84:27:34:5a:32:4b:f1:f0:2d:06:17:ee:d4:
7a:64:1b:75:e5:d7:5b:c5:41:c8:5e:e3:dd:1a:70:
82:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:A8:1B:52:99:19:A5:F6:11:ED:AF:9D:A7:74:44:F8:8E:B7:60:81
X509v3 Authority Key Identifier:
keyid:DE:E0:2E:26:7C:89:F5:0D:F1:A1:76:F0:E7:5F:5C:28:23:5B:23:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3uAuJnyJ9Q3xoXbw519cKCNbI6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/e9ba47-06ae-4988-8165-37018b1fe9fa/1/PagbUpkZpfYR7a-dp3RE-I63YIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/e9ba47-06ae-4988-8165-37018b1fe9fa/1/3uAuJnyJ9Q3xoXbw519cKCNbI6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.46.16.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:ca:88:56:f4:2f:e9:32:b5:28:3f:ac:7d:72:95:b8:86:05:
99:1f:bb:b6:43:64:31:0e:13:32:a7:1b:6f:7a:b2:0b:89:38:
61:9a:22:cb:f4:37:59:4c:9e:d4:89:5c:d9:b5:58:51:ed:74:
e1:a3:32:45:5f:e2:78:ce:09:f9:ac:c8:ee:7c:5d:e5:fb:c4:
cc:a9:30:61:5b:4e:91:3b:59:13:21:e0:04:b5:6f:ac:ce:df:
06:6f:04:e9:30:96:e3:ec:a0:80:da:e5:0a:2d:65:e4:f8:2d:
7a:be:c0:46:ca:bf:d4:5a:4a:4b:b4:c7:36:cb:54:6f:1f:9e:
d5:ad:0f:02:08:5a:f2:96:25:ee:dc:9b:9e:4a:e4:f1:3d:8f:
66:2f:ae:f9:95:ae:c7:08:01:8c:17:48:62:50:60:0c:a2:be:
10:65:ea:c9:03:91:57:1d:a1:68:fd:da:30:07:87:4a:cf:9c:
4d:ec:6d:25:76:da:3e:27:d6:e8:f0:d1:78:d1:83:20:0d:46:
91:27:8e:03:50:b2:32:e9:11:53:fd:aa:ef:e7:77:92:0b:a1:
c4:c1:09:de:5a:07:3e:34:b2:0b:c8:22:14:4f:62:cc:76:32:
97:ea:ec:2f:2e:2d:b4:e8:d4:91:a4:d8:12:61:22:48:49:a2:
48:a4:9b:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:50 2023 by rpki-client on console.sobornost.net