Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/2d5960-c66d-42df-95d2-4052450c90a9/1/kkPqlB9C7A1GX_Ymy55I8iWPRpI.roa
File: kkPqlB9C7A1GX_Ymy55I8iWPRpI.roa (raw, json)
Hash identifier: AyW1lW3MOgC01TWxcOIm2hnH7U20IbOHtzmsjv2xTW0=
Subject key identifier: 92:43:EA:94:1F:42:EC:0D:46:5F:F6:26:CB:9E:48:F2:25:8F:46:92
Certificate issuer: /CN=a7c7544e8b482d2311903706eed724049fe385bf
Certificate serial: 01C86FBA
Authority key identifier: A7:C7:54:4E:8B:48:2D:23:11:90:37:06:EE:D7:24:04:9F:E3:85:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p8dUTotILSMRkDcG7tckBJ_jhb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/2d5960-c66d-42df-95d2-4052450c90a9/1/kkPqlB9C7A1GX_Ymy55I8iWPRpI.roa
Signing time: Sat 01 Jan 2022 09:00:55 +0000
ROA not before: Sat 01 Jan 2022 09:00:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211141
IP address blocks: 185.120.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29913018 (0x1c86fba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7c7544e8b482d2311903706eed724049fe385bf
Validity
Not Before: Jan 1 09:00:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9243ea941f42ec0d465ff626cb9e48f2258f4692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1a:b7:1d:22:83:ed:aa:e5:db:ce:05:d6:1a:
fa:e4:f4:7d:1e:b4:d5:63:d1:3d:6b:d6:71:48:e2:
b1:6e:72:c3:77:7b:77:ee:5d:4f:0c:dc:fa:4c:6d:
47:26:20:59:2e:da:93:29:93:e6:2e:c3:7d:f2:db:
f8:8a:69:e5:a0:b6:ed:25:84:4c:b8:02:7f:56:23:
44:1e:84:23:91:27:19:cd:18:f5:d0:ba:8a:ac:97:
a5:5c:88:ad:f6:2c:53:52:31:8b:7d:b0:a7:a3:19:
1d:6d:a8:3a:b2:b0:3a:ef:6b:8c:15:17:f7:86:fc:
eb:c4:b5:2f:8e:36:ab:60:f7:e7:02:e8:7b:3e:7f:
5f:b5:98:3f:94:2c:35:ff:d1:e6:97:69:60:2f:14:
f7:47:5a:72:2a:01:79:b9:fc:22:24:0f:47:08:0a:
27:48:46:cb:4c:c8:20:c4:67:59:6a:9a:f7:e0:a7:
e5:74:4b:15:e8:0e:6b:dc:0e:99:64:79:b6:27:99:
9f:b6:77:33:2a:0a:88:5d:a1:fc:20:f0:5a:16:8d:
ec:fa:6d:bd:48:b8:37:db:99:9d:5a:d4:0f:b0:5c:
44:2c:f8:5b:e4:df:e6:03:47:65:6c:ea:41:d2:18:
b6:00:4e:fb:c1:75:4e:ba:14:cb:2d:76:f5:e2:aa:
2f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:43:EA:94:1F:42:EC:0D:46:5F:F6:26:CB:9E:48:F2:25:8F:46:92
X509v3 Authority Key Identifier:
keyid:A7:C7:54:4E:8B:48:2D:23:11:90:37:06:EE:D7:24:04:9F:E3:85:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p8dUTotILSMRkDcG7tckBJ_jhb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/2d5960-c66d-42df-95d2-4052450c90a9/1/kkPqlB9C7A1GX_Ymy55I8iWPRpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/2d5960-c66d-42df-95d2-4052450c90a9/1/p8dUTotILSMRkDcG7tckBJ_jhb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.120.182.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:71:8e:79:f0:5e:66:3c:d4:e5:2b:ff:79:25:76:43:eb:7d:
66:9a:0b:b8:a0:f5:e4:d3:a4:0c:b9:70:bb:9a:24:8f:0f:08:
97:42:45:02:6c:cd:a5:4e:56:b6:65:bf:dd:3d:90:18:39:8e:
c8:cd:00:de:9e:9b:23:b3:15:1f:34:9e:e6:d4:b0:6d:7e:e2:
20:b3:41:20:18:c4:97:9d:59:d9:e2:7f:4a:ea:57:06:08:b9:
d7:fd:52:c1:de:4e:fd:d2:3b:00:a6:e0:e0:e8:bb:62:8c:c4:
7d:00:c3:ae:21:83:8f:68:b8:3c:8f:6a:e4:20:62:1f:16:e8:
8e:67:1b:7e:a8:da:3f:44:a1:79:03:05:d9:5c:52:e2:2b:c3:
82:be:63:32:53:9c:6f:7c:02:62:e9:64:0a:78:b7:f6:31:2c:
03:d3:af:5e:14:cb:1f:1d:1a:7c:d4:37:83:b6:03:12:0e:f3:
c2:2f:e9:b8:1c:4f:b2:54:ec:76:18:51:ed:5a:9f:a7:f5:66:
49:5a:eb:5f:37:3e:da:fc:69:2e:24:4c:d8:89:c0:34:40:a1:
5a:9b:92:11:e5:8e:6b:75:cb:10:d9:84:cd:17:b4:36:10:0c:
96:05:20:3f:85:eb:21:1b:4a:b7:f6:22:c3:a0:9b:58:b2:2c:
13:ee:0c:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:11 2024 by rpki-client on console-ams.rpki-client.org