Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/ab62e7-7367-4bde-934a-b42522d05895/1/dk_kRKhSGCOpYQkqnRKd9yYjIMA.roa
File: dk_kRKhSGCOpYQkqnRKd9yYjIMA.roa (raw, json)
Hash identifier: QQWnvMOSUhLUAiOUf+BtYSjSbhcAw2gyD2oMOZuAxyw=
Subject key identifier: 76:4F:E4:44:A8:52:18:23:A9:61:09:2A:9D:12:9D:F7:26:23:20:C0
Certificate issuer: /CN=24350aa8a94af666099fd073ec621cd15d04b316
Certificate serial: 289555B2
Authority key identifier: 24:35:0A:A8:A9:4A:F6:66:09:9F:D0:73:EC:62:1C:D1:5D:04:B3:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JDUKqKlK9mYJn9Bz7GIc0V0EsxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/ab62e7-7367-4bde-934a-b42522d05895/1/dk_kRKhSGCOpYQkqnRKd9yYjIMA.roa
Signing time: Sat 01 Jan 2022 02:01:36 +0000
ROA not before: Sat 01 Jan 2022 02:01:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42681
IP address blocks: 193.142.116.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 680875442 (0x289555b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24350aa8a94af666099fd073ec621cd15d04b316
Validity
Not Before: Jan 1 02:01:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=764fe444a8521823a961092a9d129df7262320c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:01:20:bf:2c:5d:40:e4:51:2e:df:14:a5:0e:
e7:30:fa:85:b7:b3:1b:26:cc:dc:e1:1e:26:8f:0e:
77:9e:88:cf:28:07:5f:38:00:2c:6a:68:58:b8:8d:
3f:b8:48:df:df:d3:ec:8c:15:98:3d:1c:2b:38:2e:
91:21:ed:cf:a6:6b:1b:1e:7e:c1:f6:0c:b4:3c:d1:
74:f1:b9:02:12:d9:e3:82:ab:88:ad:c9:a1:63:97:
de:ef:ae:eb:fd:20:22:ef:9e:83:dd:e6:de:33:57:
98:0c:c1:dd:f5:e3:60:1a:44:15:9b:1a:9c:02:a0:
fa:41:c7:f0:d9:a4:1b:57:22:66:35:e9:0c:f3:ce:
e1:e2:16:a5:50:25:c4:8f:cd:29:c7:ce:0c:32:20:
76:76:53:46:e0:e9:26:d9:14:f3:27:f2:1b:f3:63:
d7:9b:97:4d:0e:61:df:fa:0e:e0:ca:d3:32:b5:fa:
bf:94:20:de:76:5c:98:17:3b:48:6d:9f:cf:8c:3c:
ed:b4:c0:e9:41:0d:38:55:77:7d:ce:a0:84:ec:2b:
97:44:bc:ec:92:6b:43:94:4d:58:5b:a2:5b:ec:8f:
06:76:f7:5b:5e:74:e6:b1:c3:83:b3:88:64:92:54:
85:ce:39:1a:b9:eb:c7:64:24:b5:82:99:78:e8:4d:
c2:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:4F:E4:44:A8:52:18:23:A9:61:09:2A:9D:12:9D:F7:26:23:20:C0
X509v3 Authority Key Identifier:
keyid:24:35:0A:A8:A9:4A:F6:66:09:9F:D0:73:EC:62:1C:D1:5D:04:B3:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JDUKqKlK9mYJn9Bz7GIc0V0EsxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/ab62e7-7367-4bde-934a-b42522d05895/1/dk_kRKhSGCOpYQkqnRKd9yYjIMA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/ab62e7-7367-4bde-934a-b42522d05895/1/JDUKqKlK9mYJn9Bz7GIc0V0EsxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.142.116.0/24
Signature Algorithm: sha256WithRSAEncryption
af:c0:79:31:d5:64:ab:99:8b:23:43:c2:97:99:bd:9a:e1:da:
c0:25:54:53:a5:fd:9c:43:65:2d:2e:bd:45:b5:ae:1b:62:15:
fc:f5:9d:47:a2:db:53:a6:b2:73:71:23:e7:ff:89:28:9c:e8:
19:4d:ac:fb:5a:63:d7:3c:08:b9:8a:1c:4b:b4:c1:1c:2a:ca:
32:97:41:43:e4:cd:34:b2:3e:c7:b8:76:d1:b8:02:e9:e4:3b:
15:6f:15:a5:f2:4b:2c:3e:30:5b:d3:8c:d5:03:a2:a4:cb:33:
8c:f5:15:d7:2c:ba:ff:4c:2a:54:cb:b9:d3:10:a7:e5:3a:f8:
bd:45:94:af:00:61:26:55:d4:f3:3a:7d:b0:40:e3:e0:c5:96:
0e:ff:66:23:22:a6:2e:3a:e2:05:ac:09:f4:6e:41:71:14:60:
59:f3:a1:98:ff:6a:a0:56:d0:cc:2b:1e:bf:dc:39:0f:52:45:
33:cb:c8:0d:20:9c:63:e3:af:07:30:d4:48:c7:9e:38:a4:45:
12:82:8d:53:0f:5d:fa:5f:20:e5:8e:4b:e0:15:5f:47:cb:be:
8c:b7:a3:4c:10:41:ac:f4:53:8d:e6:47:0c:14:3a:69:be:a7:
a1:ac:4b:18:3e:18:45:18:c8:8a:dc:f8:9d:48:73:13:63:8e:
f2:72:41:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:09 2024 by rpki-client on console-fra.rpki-client.org