Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/ff7d33-e4f7-43c0-924b-6b2d46924c6f/1/kmEmISYkwM92ZFStr-sQgHmHYOE.roa
File: kmEmISYkwM92ZFStr-sQgHmHYOE.roa (raw, json)
Hash identifier: oaGcg7LdRlZ4e8tPYP1aeWR1Wdy2QyIvzzfPx7lF+us=
Subject key identifier: 92:61:26:21:26:24:C0:CF:76:64:54:AD:AF:EB:10:80:79:87:60:E1
Certificate issuer: /CN=9e4b3281b08e6b5ec1fdeb0d0440528ed934dc3f
Certificate serial: 35DF5022
Authority key identifier: 9E:4B:32:81:B0:8E:6B:5E:C1:FD:EB:0D:04:40:52:8E:D9:34:DC:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nksygbCOa17B_esNBEBSjtk03D8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/ff7d33-e4f7-43c0-924b-6b2d46924c6f/1/kmEmISYkwM92ZFStr-sQgHmHYOE.roa
Signing time: Sat 01 Jan 2022 03:02:43 +0000
ROA not before: Sat 01 Jan 2022 03:02:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29447
IP address blocks: 81.56.0.0/15 maxlen: 17
2a01:e09::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 903827490 (0x35df5022)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e4b3281b08e6b5ec1fdeb0d0440528ed934dc3f
Validity
Not Before: Jan 1 03:02:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=926126212624c0cf766454adafeb1080798760e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:2f:02:75:78:a8:a9:55:04:2f:b0:f5:50:4d:
fa:52:7a:0a:59:e0:64:01:12:4e:a1:bf:dd:35:04:
a3:3b:67:a3:7e:b9:35:7b:76:4b:dd:3c:85:c8:8e:
7f:94:52:fa:3e:3a:71:0f:74:2c:30:99:bf:74:c6:
28:50:4d:c4:e3:50:de:be:8e:69:2c:17:44:11:78:
64:70:0f:b4:8e:97:5c:e9:52:56:ee:01:78:92:9e:
bb:d5:93:2d:e9:0d:bd:51:d8:71:8c:79:97:2f:c1:
b8:75:b4:db:0b:6e:34:06:c1:a2:03:c5:9a:f2:3d:
94:26:37:0f:78:53:73:f1:20:b2:eb:ea:b3:4d:4a:
2f:4a:4b:68:ec:68:5d:b4:1b:da:03:2f:93:95:55:
dc:d6:4d:a8:70:36:80:78:d9:2c:b6:8d:2e:3f:0b:
b3:c7:e2:72:75:cc:65:1f:76:a1:85:63:34:ea:2f:
94:5f:3f:b3:3b:94:73:f3:c0:b7:b9:dc:91:17:33:
c9:5d:d0:3d:d3:72:11:3e:48:7b:ff:8a:48:3b:80:
57:d4:a3:84:5c:a3:61:74:df:10:82:6a:33:99:23:
ab:ee:96:08:57:a4:e7:05:90:89:c6:19:fd:ed:e8:
af:b5:4c:61:47:fa:0a:0a:93:4e:44:35:ba:b2:56:
54:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:61:26:21:26:24:C0:CF:76:64:54:AD:AF:EB:10:80:79:87:60:E1
X509v3 Authority Key Identifier:
keyid:9E:4B:32:81:B0:8E:6B:5E:C1:FD:EB:0D:04:40:52:8E:D9:34:DC:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nksygbCOa17B_esNBEBSjtk03D8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/ff7d33-e4f7-43c0-924b-6b2d46924c6f/1/kmEmISYkwM92ZFStr-sQgHmHYOE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/ff7d33-e4f7-43c0-924b-6b2d46924c6f/1/nksygbCOa17B_esNBEBSjtk03D8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.56.0.0/15
IPv6:
2a01:e09::/32
Signature Algorithm: sha256WithRSAEncryption
8b:33:e3:2b:8e:84:5b:ec:a1:a6:13:12:35:56:cc:cc:6b:50:
6f:87:58:79:65:c6:aa:5f:03:00:d4:e3:79:8d:3f:4c:93:06:
51:ba:7d:2e:02:5d:01:e0:c4:f5:16:11:c4:65:57:e5:9f:b8:
72:fa:2f:79:7c:f2:d0:46:ca:21:70:fa:fe:ca:5a:c4:5a:68:
c7:19:27:22:4b:da:bf:52:55:c5:02:7c:cc:d2:1d:ad:6a:4a:
3b:f5:a7:15:4c:82:82:f0:96:1c:f3:62:32:27:71:35:d0:46:
b8:fd:b2:5a:5a:1c:c0:73:f3:4c:52:88:04:05:31:3b:6f:62:
1c:21:0b:20:5a:f2:c3:d8:f0:0d:d6:c4:e4:f4:0d:c1:43:e7:
c3:65:48:82:29:a9:84:b1:05:78:c0:58:cd:03:c2:3d:1f:76:
2e:b0:35:42:88:12:1a:36:a5:36:a8:ee:25:85:a0:49:0d:ad:
78:fc:27:1f:7c:a2:ef:64:90:59:71:68:fb:76:d1:80:6f:e7:
d7:1a:a0:5e:5a:d7:93:ff:87:92:39:09:10:58:58:82:83:12:
c7:6a:4e:0c:a9:6d:40:0e:66:a8:ca:5d:02:97:86:d7:dc:aa:
7a:25:ef:cd:ef:0e:e9:f1:07:96:74:9c:d7:41:b6:03:b2:4a:
7a:b2:42:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:41 2024 by rpki-client on console-ams.rpki-client.org