Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/KROka2XJu15WlVzkniNA5H7rnng.roa
File: KROka2XJu15WlVzkniNA5H7rnng.roa (raw, json)
Hash identifier: NUBvw6Zp4kOCUgFdJ0G1Til0rzTRP2OxVyC8NvMoesI=
Subject key identifier: 29:13:A4:6B:65:C9:BB:5E:56:95:5C:E4:9E:23:40:E4:7E:EB:9E:78
Certificate issuer: /CN=edb926f8c603aab79cb46a883bf632564a3faabf
Certificate serial: 165025D4
Authority key identifier: ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/KROka2XJu15WlVzkniNA5H7rnng.roa
Signing time: Sat 01 Jan 2022 16:06:35 +0000
ROA not before: Sat 01 Jan 2022 16:06:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42708
IP address blocks: 185.16.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 374351316 (0x165025d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edb926f8c603aab79cb46a883bf632564a3faabf
Validity
Not Before: Jan 1 16:06:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2913a46b65c9bb5e56955ce49e2340e47eeb9e78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:cb:f5:d8:5c:a7:98:0a:99:5b:6b:d9:63:fe:
cd:96:8a:2e:e5:4e:c6:ff:38:91:a8:5c:3a:f4:4a:
4b:92:22:37:8c:41:6a:f2:94:91:fd:f9:57:97:3a:
a6:67:36:ca:23:e2:d0:55:2a:c6:36:98:41:37:fe:
6b:c4:33:fe:01:ba:dd:b3:84:9a:73:18:8f:fb:00:
76:b1:a2:4b:f0:40:5a:dd:70:2d:47:61:04:39:78:
5f:9e:7c:52:fb:af:6f:c1:f8:ea:2a:0f:31:f6:93:
45:ed:67:bd:e8:fe:2a:68:85:d6:fd:c4:5e:10:43:
83:59:2d:2c:fc:1e:75:26:c7:43:c0:ea:66:b0:9c:
3e:f4:5a:0a:28:e1:20:c8:bd:8a:0a:e0:4c:b7:10:
a0:9f:c2:26:83:20:f8:59:64:68:0a:4b:d1:ab:07:
af:e1:52:d0:c5:ea:d8:63:b5:82:8b:10:02:38:18:
33:31:83:3e:4e:24:d6:b3:82:6a:ab:8a:01:60:f0:
52:80:b6:b0:86:c8:55:59:5c:85:d3:b5:30:d0:65:
cb:64:c4:06:3c:36:7c:b0:23:2f:cf:a2:8d:57:ce:
20:c7:9e:29:2b:66:42:76:90:1a:4c:7b:48:d2:10:
84:79:11:53:9d:eb:61:68:00:b4:26:39:6d:e6:d9:
ae:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:13:A4:6B:65:C9:BB:5E:56:95:5C:E4:9E:23:40:E4:7E:EB:9E:78
X509v3 Authority Key Identifier:
keyid:ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/KROka2XJu15WlVzkniNA5H7rnng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/7bkm-MYDqrectGqIO_YyVko_qr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.16.87.0/24
Signature Algorithm: sha256WithRSAEncryption
73:f0:c5:be:9d:ab:ad:57:56:a8:60:cd:86:1d:9b:1a:ea:a9:
75:9d:b0:e9:76:ff:fa:c3:10:41:7a:6d:d8:d0:d0:ff:a6:01:
7f:f7:67:81:7f:0f:e2:fb:f0:44:49:6b:5b:76:94:53:a5:83:
f2:74:4e:b7:b3:55:e3:19:07:d8:2e:06:3f:8a:21:be:7d:88:
7b:71:30:69:cd:92:92:47:ad:01:a0:38:6d:07:4d:4b:da:04:
d6:aa:76:f2:78:b8:83:65:4b:39:c9:99:4d:a1:68:0b:9a:ae:
7d:53:21:ee:ce:54:18:72:36:e0:84:94:72:26:27:00:d1:94:
66:70:e7:56:ce:7e:59:bf:57:7b:b6:79:77:64:4b:ee:c9:03:
36:ba:55:2c:9e:01:a9:17:45:92:cd:bf:fe:71:72:f0:58:49:
fe:62:40:f1:fe:f7:89:48:1a:a8:18:28:c7:08:4d:1f:22:69:
63:9c:66:2d:b1:b1:f6:b6:ce:37:85:c4:d4:1d:79:8d:b2:d7:
84:0e:eb:db:51:09:0f:50:b2:34:f5:a3:75:54:14:d8:43:6d:
77:3b:13:dc:6d:d7:ab:a9:77:59:58:6b:2d:49:d1:53:65:fa:
be:7b:6e:ca:f7:c1:60:6a:61:b9:c7:48:23:28:7a:6c:51:e4:
03:26:74:8b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFlAl1DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
ZGI5MjZmOGM2MDNhYWI3OWNiNDZhODgzYmY2MzI1NjRhM2ZhYWJmMB4XDTIyMDEw
MTE2MDYzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjkxM2E0NmI2NWM5
YmI1ZTU2OTU1Y2U0OWUyMzQwZTQ3ZWViOWU3ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALrL9dhcp5gKmVtr2WP+zZaKLuVOxv84kahcOvRKS5IiN4xB
avKUkf35V5c6pmc2yiPi0FUqxjaYQTf+a8Qz/gG63bOEmnMYj/sAdrGiS/BAWt1w
LUdhBDl4X558Uvuvb8H46ioPMfaTRe1nvej+KmiF1v3EXhBDg1ktLPwedSbHQ8Dq
ZrCcPvRaCijhIMi9igrgTLcQoJ/CJoMg+FlkaApL0asHr+FS0MXq2GO1gosQAjgY
MzGDPk4k1rOCaquKAWDwUoC2sIbIVVlchdO1MNBly2TEBjw2fLAjL8+ijVfOIMee
KStmQnaQGkx7SNIQhHkRU53rYWgAtCY5bebZruECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQpE6RrZcm7XlaVXOSeI0DkfuueeDAfBgNVHSMEGDAWgBTtuSb4xgOqt5y0
aog79jJWSj+qvzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
Lzdia20tTVlEcXJlY3RHcUlPX1l5VmtvX3FyOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGMvNTZjOTM0LWNmMTQtNGE0Zi1hZTdjLTNiZDE5NzhiZjJmNi8x
L0tST2thMlhKdTE1V2xWemtuaU5BNUg3cm5uZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGMv
NTZjOTM0LWNmMTQtNGE0Zi1hZTdjLTNiZDE5NzhiZjJmNi8xLzdia20tTVlEcXJl
Y3RHcUlPX1l5VmtvX3FyOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALkQVzANBgkqhkiG9w0BAQsFAAOC
AQEAc/DFvp2rrVdWqGDNhh2bGuqpdZ2w6Xb/+sMQQXpt2NDQ/6YBf/dngX8P4vvw
RElrW3aUU6WD8nROt7NV4xkH2C4GP4ohvn2Ie3Ewac2SkketAaA4bQdNS9oE1qp2
8ni4g2VLOcmZTaFoC5qufVMh7s5UGHI24ISUciYnANGUZnDnVs5+Wb9Xe7Z5d2RL
7skDNrpVLJ4BqRdFks2//nFy8FhJ/mJA8f73iUgaqBgoxwhNHyJpY5xmLbGx9rbO
N4XE1B15jbLXhA7r21EJD1CyNPWjdVQU2ENtdzsT3G3Xq6l3WVhrLUnRU2X6vntu
yvfBYGphucdIIyh6bFHkAyZ0iw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:35 2023 by rpki-client on console-ams.rpki-client.org