Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KtCmLE6QeP8cStEPnmJC_fI4B4Q.roa
File: KtCmLE6QeP8cStEPnmJC_fI4B4Q.roa (raw, json)
Hash identifier: ABSDYNfwxdb60qrDZTFw0TcIVmsR9Vj8p6HxF9QdRZw=
Subject key identifier: 2A:D0:A6:2C:4E:90:78:FF:1C:4A:D1:0F:9E:62:42:FD:F2:38:07:84
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 13285DD8
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KtCmLE6QeP8cStEPnmJC_fI4B4Q.roa
Signing time: Sat 01 Jan 2022 04:02:56 +0000
ROA not before: Sat 01 Jan 2022 04:02:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 82.115.12.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 321412568 (0x13285dd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jan 1 04:02:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ad0a62c4e9078ff1c4ad10f9e6242fdf2380784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:0c:87:79:ef:82:e4:fc:e1:1d:f9:46:70:3a:
4b:3e:dd:29:48:d9:fb:48:92:c0:d2:65:4a:2b:2c:
f9:cd:05:eb:cc:08:4e:6b:31:5a:65:32:1d:7a:af:
fd:6b:fb:52:04:ca:f8:a8:e5:e7:d3:f2:e2:e9:b4:
5b:87:4c:5f:1d:3e:db:4b:ae:bb:23:3c:3d:aa:da:
72:67:23:2b:38:c8:eb:ba:4f:ed:06:b5:72:1f:24:
62:d0:1b:d5:90:91:46:e0:c7:e3:7d:28:31:1d:26:
70:a5:3f:3e:8d:c0:91:6c:9e:91:59:02:75:6c:96:
53:d6:32:7a:2a:e0:96:58:ad:bd:3e:97:9c:96:65:
6c:22:69:3a:ab:37:16:f3:87:a0:de:5a:42:33:f9:
0f:29:e0:90:4b:fd:b7:bd:15:da:7a:86:f6:21:48:
ee:2e:59:bb:a7:d1:57:31:b5:95:9b:d6:7d:ce:9c:
c3:f5:be:dc:dc:19:ef:73:b8:21:e9:2d:30:8c:b3:
c9:b7:f3:56:57:99:d7:e6:eb:3a:96:2e:14:bb:7d:
47:c9:ce:7d:59:33:5c:c9:4a:0e:b4:58:81:17:84:
8b:3a:f8:37:04:e3:54:44:92:77:5d:ce:53:8d:9b:
37:44:33:50:cb:a2:92:40:e4:91:61:9a:84:08:0c:
91:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:D0:A6:2C:4E:90:78:FF:1C:4A:D1:0F:9E:62:42:FD:F2:38:07:84
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KtCmLE6QeP8cStEPnmJC_fI4B4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.12.0/23
Signature Algorithm: sha256WithRSAEncryption
93:53:09:4c:a7:ad:9a:ba:44:b0:62:3b:8c:de:cf:c1:dd:24:
73:09:e3:3c:d9:bc:c4:fc:d0:26:8e:bb:74:10:5a:27:ea:6a:
41:d8:ff:ac:66:86:65:88:f7:fe:e7:dc:e1:cb:20:aa:80:fd:
e3:91:4b:0f:80:5a:42:c4:7f:56:ad:6b:34:f8:a5:93:29:8b:
f6:13:51:06:16:c8:ba:2c:35:b1:ea:c0:8e:b7:c1:32:4f:7c:
88:87:a1:47:28:a5:76:ed:cf:45:cb:77:95:21:a4:54:b3:34:
bd:9a:19:05:f5:6f:70:ff:20:12:93:98:f7:9e:27:7e:22:55:
45:95:83:bd:8d:27:4b:a1:6a:43:42:27:cb:af:3d:47:44:7c:
0a:c0:85:fc:c5:32:f7:f2:36:b6:58:5a:69:60:7c:80:50:de:
57:a7:1b:63:16:70:c0:62:0d:6e:30:a4:33:93:a7:d3:22:70:
85:c1:70:a4:82:d1:ca:b1:b4:6e:0e:2d:d8:43:0b:72:80:76:
26:0a:df:7b:68:a6:bf:6c:96:5d:9e:ef:c4:b1:4e:d7:c1:27:
cf:8a:2e:f3:16:bc:ac:b3:eb:d3:c4:94:92:fb:c1:6f:9c:e6:
89:67:9e:6b:e5:84:45:d3:9a:5a:9d:b9:fe:28:40:72:7e:0e:
7e:38:38:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:34 2024 by rpki-client on console-fra.rpki-client.org