Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/19511d-537e-4241-a0d8-2d91cfd7aaf4/1/Kje6eNMD5HZYMNJOEaYORKY2jd4.roa
File: Kje6eNMD5HZYMNJOEaYORKY2jd4.roa (raw, json)
Hash identifier: 56/Bm8M8Jx5fSj2ZnubrmIgdv05K55D4ssf+yvPT9sU=
Subject key identifier: 2A:37:BA:78:D3:03:E4:76:58:30:D2:4E:11:A6:0E:44:A6:36:8D:DE
Certificate issuer: /CN=2ac943517f5e3b747e7530320789a03444b43912
Certificate serial: 01853F5F3311D2F9833ADE59112C812C8D0A
Authority key identifier: 2A:C9:43:51:7F:5E:3B:74:7E:75:30:32:07:89:A0:34:44:B4:39:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KslDUX9eO3R-dTAyB4mgNES0ORI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/19511d-537e-4241-a0d8-2d91cfd7aaf4/1/Kje6eNMD5HZYMNJOEaYORKY2jd4.roa
Signing time: Fri 23 Dec 2022 14:24:41 +0000
ROA not before: Fri 23 Dec 2022 14:24:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209051
IP address blocks: 185.166.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:3f:5f:33:11:d2:f9:83:3a:de:59:11:2c:81:2c:8d:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac943517f5e3b747e7530320789a03444b43912
Validity
Not Before: Dec 23 14:24:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a37ba78d303e4765830d24e11a60e44a6368dde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:00:ef:0e:5d:7c:88:ef:ec:ad:39:8d:f6:99:
52:41:42:b4:bf:f2:48:7f:82:72:34:57:ae:8c:e7:
6c:2b:54:66:43:5e:f1:49:da:8b:4a:16:30:21:c9:
54:11:78:36:c4:b2:1b:f4:35:e0:f8:f2:08:2c:f0:
61:2b:3e:0f:9e:ab:60:db:b9:de:d7:02:a2:c5:7d:
a2:c4:2a:48:d8:63:2f:7f:37:9e:b8:d4:a8:b0:87:
70:60:6b:56:83:bb:64:a6:2e:c8:64:50:21:de:ae:
c0:10:12:f2:c8:fc:7d:bb:db:78:ae:5a:0d:72:35:
27:e9:96:a0:98:c7:b2:64:1c:31:82:a1:c9:85:d3:
fa:e5:58:3f:b5:4d:e7:4f:a4:2c:95:bb:c1:7c:4d:
e1:c4:ca:6d:df:47:51:a6:b2:98:fd:b2:30:18:6a:
e2:02:06:2b:e9:fc:08:2a:cd:27:af:af:35:b1:a8:
dc:41:e5:7f:09:5e:6d:dc:0c:0d:c3:85:99:8d:08:
f2:45:a0:39:d5:1a:40:e5:70:8b:2c:ce:09:53:8c:
81:db:33:59:80:5c:82:73:27:b8:71:7b:1b:de:27:
d8:04:f8:71:a6:52:a5:33:9d:17:58:95:41:69:08:
dd:98:37:58:e7:27:a4:05:d0:11:67:53:c1:6f:c7:
14:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:37:BA:78:D3:03:E4:76:58:30:D2:4E:11:A6:0E:44:A6:36:8D:DE
X509v3 Authority Key Identifier:
keyid:2A:C9:43:51:7F:5E:3B:74:7E:75:30:32:07:89:A0:34:44:B4:39:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KslDUX9eO3R-dTAyB4mgNES0ORI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/19511d-537e-4241-a0d8-2d91cfd7aaf4/1/Kje6eNMD5HZYMNJOEaYORKY2jd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/19511d-537e-4241-a0d8-2d91cfd7aaf4/1/KslDUX9eO3R-dTAyB4mgNES0ORI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.166.88.0/24
Signature Algorithm: sha256WithRSAEncryption
56:e5:8f:de:e0:e2:9a:68:50:36:28:63:b1:a5:16:2b:2b:ff:
57:bc:3d:89:87:b7:98:34:36:85:16:9d:ea:aa:5f:fc:7e:88:
3b:c9:4c:07:1e:fb:2b:38:2e:4b:94:41:f1:b8:8d:9b:6d:c7:
95:12:35:d9:05:97:d2:25:51:1c:32:41:6a:cb:97:75:5e:69:
17:16:61:0f:00:d7:83:f3:31:39:53:60:d7:9d:c9:9c:72:08:
b2:32:cc:7c:7a:24:b9:62:1f:01:16:d6:f9:2d:c7:90:9b:84:
6f:9f:a3:9a:85:3b:9f:29:72:f9:d9:38:14:db:34:c5:86:1f:
c6:e8:9e:b7:c0:ea:e2:62:eb:2d:31:73:54:10:d6:07:36:b1:
ee:8d:96:8c:c7:d9:f6:ab:1e:f7:da:7d:87:f1:c3:6a:fe:f8:
8d:64:52:4d:77:dd:b9:bd:2c:b2:cf:18:3f:c8:8f:4b:d1:75:
99:36:9a:5e:4a:47:3a:82:8e:7e:35:db:b2:c7:14:b8:3a:c4:
2a:a3:03:b9:7a:ae:b0:e7:6f:4d:e6:c6:16:76:1f:52:2d:14:
b1:f6:68:24:01:fa:17:19:12:6b:60:d1:b6:26:ab:ab:cf:24:
09:cd:55:aa:48:dd:ab:0c:18:90:99:21:aa:d5:16:cd:87:62:
51:2b:1c:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:18 2024 by rpki-client on console-fra.rpki-client.org