Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/KoWhEm-6fBNR-MpOF9h8hD_xvlI.roa
File: KoWhEm-6fBNR-MpOF9h8hD_xvlI.roa (raw, json)
Hash identifier: Hx5Tp0bxFL0+k2y/8mdxdXbySAj1UPtkAmQSOA0Q/9A=
Subject key identifier: 2A:85:A1:12:6F:BA:7C:13:51:F8:CA:4E:17:D8:7C:84:3F:F1:BE:52
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2B208FBD
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/KoWhEm-6fBNR-MpOF9h8hD_xvlI.roa
Signing time: Sat 01 Jan 2022 13:58:17 +0000
ROA not before: Sat 01 Jan 2022 13:58:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209579
IP address blocks: 85.202.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 723554237 (0x2b208fbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:58:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a85a1126fba7c1351f8ca4e17d87c843ff1be52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:82:f8:91:dc:ea:fc:f4:2a:52:e3:9d:b6:88:
3a:64:ac:2c:8f:72:6b:9f:83:44:c1:2c:d5:09:8d:
de:09:69:8c:45:9c:e3:ae:19:59:d2:12:be:40:dd:
3b:c0:7f:f1:25:13:3d:fa:f0:42:ab:e7:f9:6d:33:
b4:ed:5c:1e:29:02:c6:30:b3:6d:08:ca:18:86:c6:
73:75:5c:8d:b5:d9:5c:85:c9:fd:da:b0:7b:24:80:
70:63:26:a3:b4:5e:ee:85:a6:08:9c:b2:fc:a2:50:
ad:60:2d:15:86:65:a9:49:c7:a8:7e:d8:81:30:fd:
ad:a2:a7:9a:42:e3:33:44:3a:d9:61:4d:8e:e8:29:
1c:a6:48:bd:b0:71:e1:d9:37:1e:15:91:13:d9:04:
0e:25:ad:7d:20:02:73:ca:80:c6:67:30:72:b7:61:
f4:75:bc:1f:ac:19:cb:04:af:ad:d0:77:f6:a0:8f:
f3:08:2e:6a:82:77:03:d3:49:7f:be:d7:a2:63:04:
7f:30:96:98:aa:3d:a1:46:f1:66:26:85:8f:23:53:
35:85:5e:f1:bd:25:c1:8e:bd:a4:80:8a:75:a9:59:
bb:3a:fe:71:c8:de:ed:93:ef:95:23:2d:7c:62:fc:
9c:6c:cf:71:ff:c1:35:15:0a:f0:5b:47:2c:e8:2f:
f1:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:85:A1:12:6F:BA:7C:13:51:F8:CA:4E:17:D8:7C:84:3F:F1:BE:52
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/KoWhEm-6fBNR-MpOF9h8hD_xvlI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.202.58.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:75:23:0e:b3:1b:54:49:a0:12:a8:f0:f1:c0:12:8f:9f:ac:
b2:56:fd:d7:2a:a6:48:b7:92:18:c6:a1:6f:57:d2:6e:94:50:
ae:77:fb:f3:fa:20:1d:a9:16:f6:90:60:e4:44:d0:62:05:85:
e2:d8:f7:37:28:d8:41:a2:69:4b:20:d4:d0:dd:d4:5f:28:7a:
8c:62:a7:06:e3:e9:bd:83:b4:84:84:3f:6b:d2:7b:b1:26:92:
6a:c2:7c:60:d1:77:17:90:14:d9:cc:37:08:69:91:7a:f8:f3:
ac:59:f9:47:6b:a3:eb:7e:16:cb:d8:6d:46:d9:77:ca:ab:de:
b5:77:16:a4:f0:12:52:48:74:2a:88:83:83:7a:7b:2e:55:58:
0c:bf:06:14:b9:a5:b7:68:28:e9:3e:ea:f5:68:b2:32:19:39:
5c:23:fc:c1:56:48:72:2e:d1:38:6d:fd:0c:fa:f3:bb:2e:45:
b0:f1:db:97:88:f6:ea:bd:d0:8d:50:7c:2d:50:8b:84:35:8e:
45:b7:40:40:6e:98:23:a6:44:d4:a2:e4:62:7b:f6:c4:09:69:
25:2c:3e:e3:c1:e3:c4:66:64:72:7d:76:6b:28:2f:8d:ac:d7:
e6:7a:49:4e:4d:50:cc:40:05:a0:6b:27:64:b8:97:10:d5:21:
11:68:0c:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org