Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/582242-0098-4b3f-80b0-dfa1c9b3fd1f/1/kQtNrWEtPx64A0LlAlsmLwIg_is.roa
File: kQtNrWEtPx64A0LlAlsmLwIg_is.roa (raw, json)
Hash identifier: lPDTvMzbTo6k8JAXhvR9FcvjyAOmVlRrQmslXm9Z86M=
Subject key identifier: 91:0B:4D:AD:61:2D:3F:1E:B8:03:42:E5:02:5B:26:2F:02:20:FE:2B
Certificate issuer: /CN=778d759248bd945c6ce3842e8d642dcd2731334d
Certificate serial: 0D48AA92
Authority key identifier: 77:8D:75:92:48:BD:94:5C:6C:E3:84:2E:8D:64:2D:CD:27:31:33:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d411kki9lFxs44QujWQtzScxM00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/582242-0098-4b3f-80b0-dfa1c9b3fd1f/1/kQtNrWEtPx64A0LlAlsmLwIg_is.roa
Signing time: Sat 01 Jan 2022 12:02:23 +0000
ROA not before: Sat 01 Jan 2022 12:02:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29203
IP address blocks: 192.162.76.0/22 maxlen: 22
2001:67c:1370::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 222866066 (0xd48aa92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=778d759248bd945c6ce3842e8d642dcd2731334d
Validity
Not Before: Jan 1 12:02:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=910b4dad612d3f1eb80342e5025b262f0220fe2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:17:70:ae:12:2a:10:af:0e:24:f9:71:ff:54:
43:d7:0e:cd:9d:07:da:cb:9a:ed:05:55:e7:9c:e4:
10:40:ec:8b:c0:e4:7c:7b:6a:f5:c7:16:32:17:c7:
6f:d8:4c:93:ab:64:e3:e4:09:ac:db:5d:55:59:bc:
1d:48:46:75:c9:07:5e:92:c3:2c:04:03:da:8a:cd:
26:17:bf:c6:7a:7d:08:b6:e0:48:44:65:ab:9a:15:
b2:15:3f:e1:52:9e:f0:1e:e4:04:69:36:9e:67:16:
52:96:1a:48:de:f1:d7:c4:9b:29:4e:8f:8f:93:0e:
9d:a3:6f:64:5a:0f:9e:4a:53:2c:5c:85:b0:15:fa:
cd:15:6a:6c:77:13:25:da:6a:26:2b:b8:9e:7b:d4:
ab:46:26:ac:43:60:03:dc:d5:81:36:4f:d9:89:82:
94:57:29:92:5a:8e:eb:ca:7e:48:95:20:c9:cc:44:
46:5e:af:09:ef:5c:c7:d8:56:f4:0c:57:3d:d5:06:
29:63:1a:90:37:57:52:72:f6:35:5c:c7:c9:98:90:
81:5b:da:f5:1d:fe:43:b0:b9:00:07:e0:e0:41:57:
50:39:d0:94:31:ad:e3:00:9b:4f:22:59:2e:56:20:
ce:d9:67:f5:73:0b:cc:37:02:1d:66:05:85:31:09:
29:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:0B:4D:AD:61:2D:3F:1E:B8:03:42:E5:02:5B:26:2F:02:20:FE:2B
X509v3 Authority Key Identifier:
keyid:77:8D:75:92:48:BD:94:5C:6C:E3:84:2E:8D:64:2D:CD:27:31:33:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d411kki9lFxs44QujWQtzScxM00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/582242-0098-4b3f-80b0-dfa1c9b3fd1f/1/kQtNrWEtPx64A0LlAlsmLwIg_is.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/582242-0098-4b3f-80b0-dfa1c9b3fd1f/1/d411kki9lFxs44QujWQtzScxM00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.162.76.0/22
IPv6:
2001:67c:1370::/48
Signature Algorithm: sha256WithRSAEncryption
a0:ed:df:db:b6:39:93:19:94:d5:d1:3c:58:aa:9d:ba:d4:fe:
02:95:fd:1c:1f:f3:d2:90:b4:3a:96:de:29:87:0f:ca:b2:6c:
2b:d4:6c:0c:d2:a7:ae:b8:d5:cf:79:ae:ac:7a:40:83:d2:f8:
d0:30:22:c6:02:10:15:77:59:aa:28:03:34:9d:ee:8e:74:e5:
ce:f0:90:d3:cf:a4:9d:93:5e:ec:38:d7:67:81:7a:52:45:fe:
e3:14:a8:34:69:7c:10:85:db:91:78:70:72:00:5d:6c:2b:0a:
79:ad:a8:20:6c:de:cc:49:e0:13:9e:13:99:53:3d:05:02:60:
6d:a2:c7:d0:90:21:ee:2d:55:64:fb:64:b2:15:44:c9:ef:a8:
18:35:8c:ec:37:d8:3c:15:15:e1:23:4a:b8:4a:41:fb:be:fd:
6f:ec:15:c1:5f:29:31:e1:54:68:9c:b7:9d:79:98:ca:db:fe:
81:19:c3:6e:78:73:37:49:6b:46:27:ca:80:7b:e5:57:98:e7:
0e:1c:77:39:d8:f1:5c:1e:1e:64:a0:90:64:4c:c7:a7:c2:27:
0a:e8:3a:94:9c:7e:b9:1a:a6:40:1d:23:59:7a:2d:ba:db:41:
49:76:81:1f:5f:34:b7:31:bd:02:ed:4e:c9:9b:37:90:ac:e9:
53:91:8d:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:56 2024 by rpki-client on console-fra.rpki-client.org