Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/1d9440-cee8-4383-b0a0-e0b5a92df940/1/KPCQWUJeWriVa0tXlEfSgVvvE3g.roa
File: KPCQWUJeWriVa0tXlEfSgVvvE3g.roa (raw, json)
Hash identifier: 7eXjXrDy8I8QpqxNJFrWyM9trzF85Jwnc37wkBCAgyQ=
Subject key identifier: 28:F0:90:59:42:5E:5A:B8:95:6B:4B:57:94:47:D2:81:5B:EF:13:78
Certificate issuer: /CN=d0bd4ca7f331aa2ad91240a6583a176c005e8a63
Certificate serial: 01825E9A8CDBA07F7E960380C522E05EFAC7
Authority key identifier: D0:BD:4C:A7:F3:31:AA:2A:D9:12:40:A6:58:3A:17:6C:00:5E:8A:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0L1Mp_MxqirZEkCmWDoXbABeimM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/1d9440-cee8-4383-b0a0-e0b5a92df940/1/KPCQWUJeWriVa0tXlEfSgVvvE3g.roa
Signing time: Tue 02 Aug 2022 12:49:23 +0000
ROA not before: Tue 02 Aug 2022 12:49:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44407
IP address blocks: 185.181.156.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:5e:9a:8c:db:a0:7f:7e:96:03:80:c5:22:e0:5e:fa:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0bd4ca7f331aa2ad91240a6583a176c005e8a63
Validity
Not Before: Aug 2 12:49:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=28f09059425e5ab8956b4b579447d2815bef1378
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:3b:24:52:87:8c:94:f0:81:c5:e0:4e:cc:19:
ae:a8:c5:d7:7d:02:45:9e:39:60:53:20:84:de:1b:
75:87:49:c1:f4:55:3a:67:8d:42:d9:27:f5:d8:11:
9e:61:d0:d1:82:e1:35:fb:5f:eb:00:78:dc:28:b1:
da:18:89:5e:86:de:50:db:52:72:1f:71:a1:20:da:
28:e3:cc:85:bd:72:e9:34:f9:74:29:89:d3:c4:98:
70:63:97:f5:c0:a4:9c:55:43:22:7a:69:9c:33:19:
12:80:b6:ab:08:0a:02:9c:40:ff:8f:cd:90:5a:db:
81:a3:f0:5e:e0:ae:b7:b2:be:2a:e3:02:ad:1c:ae:
d3:c3:f5:92:79:bc:ec:13:da:68:5d:4e:b8:cc:3f:
25:d0:29:65:6d:b5:6c:49:bb:76:bd:6e:cd:bf:5f:
12:5b:87:49:56:40:58:d2:20:5a:72:e3:9c:d7:de:
94:d5:2a:4d:78:80:1f:11:fb:ee:df:d4:52:83:66:
fc:a8:bb:39:53:01:96:d3:a9:95:91:0a:37:ac:2c:
9a:cd:7e:80:e7:f9:2d:9c:12:e9:fd:9d:ac:0c:c3:
e7:25:34:aa:6e:9e:5a:00:35:2d:95:bd:2b:ca:5e:
f9:03:b1:31:40:be:a2:ca:cf:43:c4:79:ca:ed:0c:
a5:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:F0:90:59:42:5E:5A:B8:95:6B:4B:57:94:47:D2:81:5B:EF:13:78
X509v3 Authority Key Identifier:
keyid:D0:BD:4C:A7:F3:31:AA:2A:D9:12:40:A6:58:3A:17:6C:00:5E:8A:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0L1Mp_MxqirZEkCmWDoXbABeimM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/1d9440-cee8-4383-b0a0-e0b5a92df940/1/KPCQWUJeWriVa0tXlEfSgVvvE3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/1d9440-cee8-4383-b0a0-e0b5a92df940/1/0L1Mp_MxqirZEkCmWDoXbABeimM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.181.156.0/22
Signature Algorithm: sha256WithRSAEncryption
16:8e:54:22:ea:a4:e8:96:e8:28:2c:2d:75:10:9d:f9:78:aa:
14:af:b5:e8:51:6a:ad:4a:32:b7:a2:ef:08:81:76:64:4e:39:
3d:11:f5:ba:e9:4c:94:8a:fd:67:47:ee:4f:70:ee:51:07:b9:
00:27:f8:9c:6b:cf:1e:fb:8e:9b:cd:86:58:84:e4:4a:d1:d7:
72:d4:3c:e9:c8:b2:63:bd:2c:c1:5d:51:1f:53:62:f0:bf:e5:
8e:04:52:52:df:5f:a1:6c:56:05:89:4c:08:1f:a9:26:99:9b:
a0:61:5e:54:23:da:d5:f0:a4:f9:a5:7e:00:21:50:1d:64:d8:
9b:4c:d6:ab:24:9c:a8:93:09:31:40:19:0f:eb:a1:5d:ef:11:
9c:9b:d4:f6:54:04:d1:72:4e:e8:c8:54:ad:e8:36:d6:cc:49:
42:dc:9d:5b:99:c3:18:be:9b:6e:7d:98:84:7e:37:3b:ad:94:
77:be:ab:1f:a0:9e:2c:65:e6:2a:7d:52:80:81:46:f4:6d:b1:
b1:3e:ef:0b:90:00:4d:37:36:f7:a2:d3:08:eb:41:f2:12:60:
f7:06:40:8f:08:18:7c:a3:6b:7b:fd:3d:fe:c8:ee:3a:2c:27:
67:cc:c9:39:2e:1c:13:fe:46:ef:d2:5d:84:b6:37:d3:34:27:
74:59:94:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:42 2024 by rpki-client on console-fra.rpki-client.org