Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/f92cd7-646c-441b-ae46-9b282c643256/1/KD-SEDYZNeXGlr6VjGVMRqPIJHM.roa
File: KD-SEDYZNeXGlr6VjGVMRqPIJHM.roa (raw, json)
Hash identifier: N0NpIuvPSu7C9S2HLIX7nLm+LB3GwKD7SMOFUCxe058=
Subject key identifier: 28:3F:92:10:36:19:35:E5:C6:96:BE:95:8C:65:4C:46:A3:C8:24:73
Certificate issuer: /CN=7e1167886da81524431bbf2efb0572914b686ebc
Certificate serial: 0183C6D07FC23364D49F4F6D311594E23073
Authority key identifier: 7E:11:67:88:6D:A8:15:24:43:1B:BF:2E:FB:05:72:91:4B:68:6E:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fhFniG2oFSRDG78u-wVykUtobrw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/f92cd7-646c-441b-ae46-9b282c643256/1/KD-SEDYZNeXGlr6VjGVMRqPIJHM.roa
Signing time: Tue 11 Oct 2022 11:31:36 +0000
ROA not before: Tue 11 Oct 2022 11:31:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5610
IP address blocks: 193.17.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c6:d0:7f:c2:33:64:d4:9f:4f:6d:31:15:94:e2:30:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e1167886da81524431bbf2efb0572914b686ebc
Validity
Not Before: Oct 11 11:31:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=283f9210361935e5c696be958c654c46a3c82473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:24:35:10:5a:7c:aa:12:fc:9f:58:f4:83:bd:
1c:1d:df:bb:06:81:83:ce:2e:48:f5:3d:45:a5:c4:
f5:15:fa:af:03:30:a6:dc:27:f8:56:51:0e:fb:87:
51:97:cd:e9:03:39:57:e2:0c:40:6e:5a:9d:fb:35:
9e:0b:ce:34:35:ee:2d:ec:0e:e7:60:b1:c0:30:6a:
b0:2a:47:fc:0b:ee:0e:a2:0a:d7:db:66:31:4a:90:
7c:d3:bd:46:99:67:3f:ac:99:71:74:d8:b5:da:17:
b3:84:5d:14:56:a4:fa:d2:86:9a:39:eb:a1:81:1b:
dc:ba:82:1e:73:a2:8f:ea:39:bc:71:6e:28:9d:87:
3e:18:9d:11:5d:99:26:51:0b:8d:88:82:c3:01:c2:
c0:f3:72:94:40:81:a7:95:31:fb:d7:c3:c8:cc:28:
a9:20:1a:89:bd:bf:53:80:9c:69:e6:16:35:b8:76:
a4:53:eb:18:5c:1b:de:a5:8b:01:c5:ec:9a:38:24:
09:06:a1:19:74:86:c7:48:31:f7:6f:23:7d:08:d3:
5b:6e:a6:cf:7d:fe:45:91:0b:fb:8e:84:ea:94:3d:
7d:c9:c0:7f:f5:69:1c:e9:e6:43:17:50:07:bc:bc:
d2:03:3b:13:28:a7:31:21:17:ad:2f:78:20:f4:66:
e9:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:3F:92:10:36:19:35:E5:C6:96:BE:95:8C:65:4C:46:A3:C8:24:73
X509v3 Authority Key Identifier:
keyid:7E:11:67:88:6D:A8:15:24:43:1B:BF:2E:FB:05:72:91:4B:68:6E:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fhFniG2oFSRDG78u-wVykUtobrw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f92cd7-646c-441b-ae46-9b282c643256/1/KD-SEDYZNeXGlr6VjGVMRqPIJHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f92cd7-646c-441b-ae46-9b282c643256/1/fhFniG2oFSRDG78u-wVykUtobrw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.13.0/24
Signature Algorithm: sha256WithRSAEncryption
36:49:2d:3e:30:50:d1:8a:86:fb:ed:44:3d:f5:ec:ad:38:81:
ae:bd:e4:5e:90:a2:eb:a6:e5:4f:34:76:b8:91:6e:5d:d0:a6:
ec:27:d6:92:58:43:76:e3:aa:80:b9:95:5e:f4:d9:e8:28:cb:
8e:4a:86:43:c3:07:96:c6:42:d9:62:32:20:ef:aa:62:61:75:
c3:13:a5:f0:7b:ab:67:c6:b2:84:f2:b4:9e:50:3d:63:b7:66:
cb:2a:88:a5:7c:d3:cd:b5:86:c2:d0:08:28:fc:40:c1:ad:f2:
56:1e:f3:00:6c:f3:2c:ca:80:b3:e5:70:c3:00:96:3c:a0:50:
10:b9:c3:69:42:10:b0:68:ac:ce:40:f5:d2:82:e1:a5:50:b1:
9a:b3:16:72:27:03:f9:13:3f:9c:b4:0d:47:1b:74:e6:af:db:
6c:20:1b:d2:31:21:10:cb:3f:76:61:5a:0f:c0:35:6e:db:c5:
ea:7e:1f:6d:58:40:4f:23:0a:7d:28:c5:3c:32:68:cd:a5:3e:
c3:6b:3d:43:97:b3:ba:93:0f:1b:b7:53:4d:af:3c:f1:10:74:
62:3f:36:fc:ba:a3:b3:71:45:b9:ce:24:93:2d:5e:76:d0:a0:
93:6d:ac:88:bb:58:dd:67:ed:bd:7e:84:6c:28:8b:9c:31:bf:
47:6b:18:c4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYPG0H/CM2TUn09tMRWU4jBzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdlMTE2Nzg4NmRhODE1MjQ0MzFiYmYyZWZiMDU3MjkxNGI2
ODZlYmMwHhcNMjIxMDExMTEzMTM2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyODNmOTIxMDM2MTkzNWU1YzY5NmJlOTU4YzY1NGM0NmEzYzgyNDczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvSQ1EFp8qhL8n1j0g70cHd+7BoGD
zi5I9T1FpcT1FfqvAzCm3Cf4VlEO+4dRl83pAzlX4gxAblqd+zWeC840Ne4t7A7n
YLHAMGqwKkf8C+4OogrX22YxSpB8071GmWc/rJlxdNi12hezhF0UVqT60oaaOeuh
gRvcuoIec6KP6jm8cW4onYc+GJ0RXZkmUQuNiILDAcLA83KUQIGnlTH718PIzCip
IBqJvb9TgJxp5hY1uHakU+sYXBvepYsBxeyaOCQJBqEZdIbHSDH3byN9CNNbbqbP
ff5FkQv7joTqlD19ycB/9Wkc6eZDF1AHvLzSAzsTKKcxIRetL3gg9GbprQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCg/khA2GTXlxpa+lYxlTEajyCRzMB8GA1UdIwQY
MBaAFH4RZ4htqBUkQxu/LvsFcpFLaG68MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmhGbmlHMm9GU1JERzc4dS13VnlrVXRvYnJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9mOTJjZDctNjQ2Yy00NDFiLWFlNDYt
OWIyODJjNjQzMjU2LzEvS0QtU0VEWVpOZVhHbHI2VmpHVk1ScVBJSkhNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi9mOTJjZDctNjQ2Yy00NDFiLWFlNDYtOWIyODJjNjQzMjU2
LzEvZmhGbmlHMm9GU1JERzc4dS13VnlrVXRvYnJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRENMA0G
CSqGSIb3DQEBCwUAA4IBAQA2SS0+MFDRiob77UQ99eytOIGuveRekKLrpuVPNHa4
kW5d0KbsJ9aSWEN246qAuZVe9NnoKMuOSoZDwweWxkLZYjIg76piYXXDE6Xwe6tn
xrKE8rSeUD1jt2bLKoilfNPNtYbC0Ago/EDBrfJWHvMAbPMsyoCz5XDDAJY8oFAQ
ucNpQhCwaKzOQPXSguGlULGasxZyJwP5Ez+ctA1HG3Tmr9tsIBvSMSEQyz92YVoP
wDVu28Xqfh9tWEBPIwp9KMU8MmjNpT7Daz1Dl7O6kw8bt1NNrzzxEHRiPzb8uqOz
cUW5ziSTLV520KCTbayIu1jdZ+29foRsKIucMb9HaxjE
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:12 2024 by rpki-client on console-ams.rpki-client.org