Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/KT04XqMMZVC1DBpZD3h3mUJwBAg.roa
File: KT04XqMMZVC1DBpZD3h3mUJwBAg.roa (raw, json)
Hash identifier: pGRT6yAg36/q4WQw0bIWxd2nuVmCoJfsqjEvUSNG3PM=
Subject key identifier: 29:3D:38:5E:A3:0C:65:50:B5:0C:1A:59:0F:78:77:99:42:70:04:08
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2AE650D3
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/KT04XqMMZVC1DBpZD3h3mUJwBAg.roa
Signing time: Sat 01 Jan 2022 13:57:45 +0000
ROA not before: Sat 01 Jan 2022 13:57:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5588
IP address blocks: 85.202.56.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 719737043 (0x2ae650d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:57:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=293d385ea30c6550b50c1a590f78779942700408
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:5e:aa:85:d7:37:b0:d8:40:59:22:d1:77:1e:
f9:eb:29:02:09:86:a2:29:62:f4:77:0e:b3:b6:28:
e1:55:ed:43:77:a1:93:a6:51:36:2c:44:6f:5a:42:
0d:73:ff:c6:db:5c:ff:e7:b0:09:62:a0:72:ed:da:
6f:a2:ac:16:2a:86:c2:ef:2e:f5:a5:04:1c:42:f0:
c1:bf:9a:dc:32:56:8f:2e:f4:7c:07:e9:c3:d4:ed:
23:d0:93:49:ab:16:fb:3b:91:2b:ae:d8:07:0c:0d:
e8:ba:e2:0d:7c:b1:0b:b9:48:82:dd:7d:cd:7d:78:
2e:ac:1e:bb:f3:70:4f:10:ab:38:69:d5:82:da:65:
d7:f1:b1:59:38:24:1a:4a:60:83:80:9d:f2:2d:5d:
83:b3:88:b1:7f:70:99:03:b6:f4:20:73:ed:7a:43:
4a:4c:3c:b6:96:01:d1:b7:ad:7d:bf:72:7d:5c:b1:
57:e6:ef:a8:fe:9f:48:78:83:c0:dc:8b:db:89:74:
43:da:a3:ef:8a:2e:e2:bf:59:84:a3:22:58:1c:91:
2b:6d:87:88:53:6f:ba:30:17:27:47:d0:9d:0c:75:
73:04:3e:45:da:92:d1:7e:29:ee:33:26:8e:84:91:
92:d4:a5:1c:a5:72:de:ab:fd:23:e9:8f:8d:c3:36:
1b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:3D:38:5E:A3:0C:65:50:B5:0C:1A:59:0F:78:77:99:42:70:04:08
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/KT04XqMMZVC1DBpZD3h3mUJwBAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.202.56.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:0b:8f:5a:06:7c:a1:3b:49:7f:04:80:79:31:df:ef:65:e4:
1b:58:af:ea:59:b4:c3:c3:fe:0c:81:0c:a7:bf:1f:82:69:c6:
ec:c4:f4:dc:31:39:13:f7:c6:20:dc:e9:b1:25:fa:4a:29:d6:
c0:36:68:54:69:d6:de:0b:d6:34:dd:6e:59:53:90:ee:b2:a2:
50:30:53:e5:05:81:05:84:12:1c:cc:b6:25:e5:ad:7f:be:c4:
d6:be:e8:70:28:bb:4e:58:e7:2b:a1:c7:37:8b:da:b0:f8:69:
da:da:0d:8d:b9:c7:e1:e3:df:1e:04:26:c3:50:89:ec:a2:6a:
e1:ce:a4:8b:68:4e:b1:7d:56:b3:d8:aa:25:6d:51:d8:5c:6c:
d9:a4:d4:9f:e0:ad:cf:35:82:bc:8d:e8:ee:4e:d3:34:e5:c0:
06:cb:49:ae:e1:13:26:a2:56:0d:34:5f:b5:a8:26:cd:a3:a3:
71:34:4c:9d:ae:07:da:bd:5f:01:63:21:02:d9:d1:76:fb:4e:
d7:f4:d6:49:41:cc:c0:41:0b:01:43:5a:5a:1f:d4:ac:a4:02:
5c:09:7d:28:3d:44:ae:11:5e:be:96:bb:ce:33:b4:54:1a:25:
64:91:08:78:0d:ca:09:fa:c8:10:d0:be:2e:55:0e:b3:01:26:
e7:85:73:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org