Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/KrR-Pa9iHgMBaXMEwvCy7mIn5O0.roa
File: KrR-Pa9iHgMBaXMEwvCy7mIn5O0.roa (raw, json)
Hash identifier: HZXwZL1hWbYGniM8VdeazIaZ8Mfhit5ubM1VCK7VzMc=
Subject key identifier: 2A:B4:7E:3D:AF:62:1E:03:01:69:73:04:C2:F0:B2:EE:62:27:E4:ED
Certificate issuer: /CN=d25b90b8981b591d75a7e935e1304a74075602fd
Certificate serial: 05180066
Authority key identifier: D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/KrR-Pa9iHgMBaXMEwvCy7mIn5O0.roa
Signing time: Sat 01 Jan 2022 12:59:14 +0000
ROA not before: Sat 01 Jan 2022 12:59:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205798
IP address blocks: 193.141.109.0/24 maxlen: 24
193.142.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85459046 (0x5180066)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d25b90b8981b591d75a7e935e1304a74075602fd
Validity
Not Before: Jan 1 12:59:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ab47e3daf621e0301697304c2f0b2ee6227e4ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:0d:66:a2:e6:08:71:d1:da:1c:df:7e:54:45:
97:5f:1f:2f:92:35:08:29:7b:90:89:c7:3a:2c:e4:
bf:32:ee:e6:27:0b:f4:72:e3:c7:35:bf:27:31:e8:
33:24:48:eb:ab:4a:c7:5f:52:2c:27:26:36:29:cd:
9d:04:6d:07:ab:12:70:39:50:b2:60:5f:46:0c:0b:
8d:d0:32:34:98:e2:55:96:85:11:96:03:98:dd:67:
8d:5f:9d:77:78:f7:c6:ad:06:2b:aa:51:b1:5c:ec:
f5:e9:fb:d6:fa:12:d3:dc:5e:ea:20:2f:21:be:24:
37:e4:b6:a1:57:4d:cf:23:21:ea:41:36:cd:fc:66:
32:39:ee:53:24:37:16:51:32:06:db:4d:15:b5:34:
82:fa:19:5c:53:d3:91:67:e3:ba:c1:fb:fe:10:31:
56:30:c2:29:85:2a:c4:57:01:9a:32:f7:f0:71:62:
8d:14:a5:0d:a2:09:3e:a8:24:44:97:e3:03:a8:a6:
b4:2d:43:7d:d8:09:07:e2:c8:18:67:58:f1:88:5d:
c7:a6:d6:41:11:5c:64:54:6b:ae:0e:d3:85:a8:76:
2b:32:de:04:d8:6a:cc:3b:7d:42:8e:2f:a9:b5:ca:
d7:24:44:27:3b:90:fa:54:e2:29:7e:62:e0:ed:25:
fd:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:B4:7E:3D:AF:62:1E:03:01:69:73:04:C2:F0:B2:EE:62:27:E4:ED
X509v3 Authority Key Identifier:
keyid:D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/KrR-Pa9iHgMBaXMEwvCy7mIn5O0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.141.109.0/24
193.142.3.0/24
Signature Algorithm: sha256WithRSAEncryption
20:c3:ee:05:04:11:b8:35:14:5f:f4:97:07:cf:b5:86:cd:c4:
87:c7:1d:82:02:23:8f:7c:7b:3d:cc:1d:27:35:00:f8:7c:9b:
15:a9:65:8e:13:3a:9d:09:2b:cd:a9:64:93:86:32:1c:12:88:
94:90:68:b0:6b:95:2e:e8:4c:dd:e1:ad:ff:e7:b0:82:e6:75:
5e:81:56:b3:f3:01:ab:21:d7:34:8f:a2:32:b9:5d:14:c2:ac:
1a:74:1c:58:29:c6:96:c8:00:7a:49:22:8d:02:09:20:d9:bf:
eb:e1:f3:cb:0f:c9:b5:77:36:8b:c3:c3:d6:be:9c:2a:11:cc:
2f:8e:bd:1e:a7:69:c5:61:a6:dd:7c:16:2a:79:76:58:59:ea:
9b:71:2e:09:94:74:03:de:6c:bd:c6:50:23:71:1b:04:a7:d8:
7b:99:ef:ff:1d:bc:24:e6:26:68:e7:cf:e1:34:6e:b0:18:a3:
d4:68:4b:bb:41:e4:ef:dd:b4:fb:94:f9:76:a4:19:54:1c:ef:
ea:de:81:80:c6:76:97:24:02:2e:6e:74:ac:37:f3:42:78:45:
2d:15:f4:b4:85:d9:bb:31:8e:fd:e1:7f:73:c4:f4:23:50:82:
d4:ce:71:33:af:ef:37:69:35:5f:cd:c7:ca:17:61:00:2d:ab:
0d:45:2d:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:51 2024 by rpki-client on console-fra.rpki-client.org