Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/b35797-8134-4bb7-90dd-287d36dbf5ee/1/K14tLe_D19jcsdm1SyMQFM3ThPc.roa
File: K14tLe_D19jcsdm1SyMQFM3ThPc.roa (raw, json)
Hash identifier: kIj/bNKDtXAu+TIKI/kWGGad/JPDVpfCGoCiKY4NANM=
Subject key identifier: 2B:5E:2D:2D:EF:C3:D7:D8:DC:B1:D9:B5:4B:23:10:14:CD:D3:84:F7
Certificate issuer: /CN=3d9aae8443cca1feed797d9a892f83321038c0f7
Certificate serial: 06A72EB4
Authority key identifier: 3D:9A:AE:84:43:CC:A1:FE:ED:79:7D:9A:89:2F:83:32:10:38:C0:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZquhEPMof7teX2aiS-DMhA4wPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/b35797-8134-4bb7-90dd-287d36dbf5ee/1/K14tLe_D19jcsdm1SyMQFM3ThPc.roa
Signing time: Sat 01 Jan 2022 15:55:12 +0000
ROA not before: Sat 01 Jan 2022 15:55:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 559
IP address blocks: 193.247.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111619764 (0x6a72eb4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d9aae8443cca1feed797d9a892f83321038c0f7
Validity
Not Before: Jan 1 15:55:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b5e2d2defc3d7d8dcb1d9b54b231014cdd384f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d9:98:ef:4b:79:2f:16:54:9f:44:67:34:d2:
ad:1a:29:23:dd:63:50:b5:a8:26:f4:66:15:7a:f8:
77:5b:90:65:fe:06:de:3b:b7:eb:17:30:cb:05:d9:
f4:91:fa:d3:ed:fb:9d:6c:ca:4d:2c:be:d3:b4:e4:
f5:f4:e8:b9:8a:62:12:6b:b2:cf:6c:c3:ce:60:e6:
64:01:14:06:95:ac:14:c5:e2:6f:ca:70:cc:f5:0b:
94:a1:d2:01:60:f2:de:9c:73:11:1a:3e:bf:ca:f6:
bd:7e:cc:38:9c:da:d4:88:c3:3e:a5:08:3e:0a:1b:
5c:00:16:38:0a:97:1e:44:c5:64:fd:96:5a:56:aa:
e8:1f:a3:49:85:de:2e:32:79:96:5d:39:bc:e7:38:
3a:a4:2e:6e:00:fc:16:e0:f7:86:34:0f:42:58:20:
58:3e:18:16:2e:6b:bd:a4:8d:ba:eb:eb:28:b9:13:
5a:8c:f1:da:74:f1:b8:bb:fc:7c:2f:4e:91:95:a2:
d7:72:b3:69:df:8f:7c:a3:2d:1b:84:67:f4:55:44:
d1:1c:af:cd:88:7c:23:d1:44:e3:51:e2:19:e2:b9:
9f:ab:42:be:25:c5:39:00:7d:48:1c:10:11:5e:38:
58:3f:8b:89:82:fa:3a:1a:2b:9a:a0:40:ce:c1:4f:
56:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:5E:2D:2D:EF:C3:D7:D8:DC:B1:D9:B5:4B:23:10:14:CD:D3:84:F7
X509v3 Authority Key Identifier:
keyid:3D:9A:AE:84:43:CC:A1:FE:ED:79:7D:9A:89:2F:83:32:10:38:C0:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZquhEPMof7teX2aiS-DMhA4wPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b35797-8134-4bb7-90dd-287d36dbf5ee/1/K14tLe_D19jcsdm1SyMQFM3ThPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b35797-8134-4bb7-90dd-287d36dbf5ee/1/PZquhEPMof7teX2aiS-DMhA4wPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.247.254.0/24
Signature Algorithm: sha256WithRSAEncryption
37:0a:15:00:78:96:9c:bb:d1:eb:64:43:c5:77:e2:e6:58:f4:
b3:92:d6:25:43:58:2b:3f:d4:4e:0c:3e:45:08:a7:bc:2f:6d:
93:3d:2e:ad:82:b7:7c:35:27:59:d8:a9:67:8a:8c:7e:d9:3e:
38:01:85:31:0c:03:cd:f0:17:07:c4:1f:f0:57:50:09:24:26:
15:ee:e0:2c:26:03:64:09:e6:27:1e:50:51:c3:98:1c:da:df:
0f:c2:99:64:6d:b9:44:1f:b7:be:cf:b0:16:a8:d4:6b:13:63:
ca:4d:46:4e:98:1b:47:3d:ac:78:41:91:8a:34:ff:42:2d:25:
ea:5e:b6:36:a2:6f:a0:2f:fd:90:37:5b:1b:6f:0c:73:3e:9a:
e6:c9:e2:8c:53:ba:9c:ee:79:d3:08:a1:70:01:e3:3d:d6:79:
a9:a2:05:7d:f7:6f:2a:24:21:6b:d3:88:de:3d:0c:09:df:b4:
2d:51:d3:39:ca:1a:e7:42:04:43:ce:76:fb:58:b3:33:ce:ef:
0d:d2:a3:a6:23:4e:b4:92:d6:22:94:94:76:39:90:d6:8e:08:
e8:ba:cb:3d:87:0e:85:b8:5e:cd:67:3c:59:41:19:0b:08:3a:
6b:e3:84:a3:2e:fa:fc:02:a3:e7:69:f3:b4:ba:f0:c9:e3:ac:
ca:86:2f:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:14 2024 by rpki-client on console-ams.rpki-client.org