Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/kgrATs0Csfbsi9ixgf6pCd7Bhcw.roa
File: kgrATs0Csfbsi9ixgf6pCd7Bhcw.roa (raw, json)
Hash identifier: P1fnyf7bGbrMqVxKj+d0AjJ7clf+a97Q3HucMLlWmnU=
Subject key identifier: 92:0A:C0:4E:CD:02:B1:F6:EC:8B:D8:B1:81:FE:A9:09:DE:C1:85:CC
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018248C62D2FBBF45CBD0383F86BFD436217
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/kgrATs0Csfbsi9ixgf6pCd7Bhcw.roa
Signing time: Fri 29 Jul 2022 07:05:23 +0000
ROA not before: Fri 29 Jul 2022 07:05:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203790
IP address blocks: 212.193.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:48:c6:2d:2f:bb:f4:5c:bd:03:83:f8:6b:fd:43:62:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 29 07:05:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=920ac04ecd02b1f6ec8bd8b181fea909dec185cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:db:2a:0d:fb:5e:8f:0c:a9:87:ce:bc:8e:3a:
fc:0d:c7:d0:33:ca:1a:8d:23:c0:2a:2a:99:16:59:
41:56:70:30:53:74:34:f0:7b:6c:07:21:5b:37:42:
2c:40:24:02:f0:df:58:54:45:fc:f6:56:c0:b1:ce:
d4:81:92:63:b7:81:e0:f0:b4:47:07:a5:17:61:72:
4c:bf:cb:80:cb:ad:cd:02:f8:ab:4d:39:e1:9e:98:
c0:0c:a8:72:ed:de:dc:7b:67:37:46:80:63:62:d4:
09:b8:17:54:7d:b1:2a:22:2d:fc:b9:4d:4a:73:5e:
cf:06:19:c2:5d:e3:90:06:6c:62:fe:dc:96:05:b7:
c1:fd:0c:a2:ec:a8:42:08:da:af:bc:fc:57:c6:bd:
6e:9c:f8:a2:7e:7d:cc:b0:de:d1:9e:4d:a7:c5:7d:
91:b1:0a:99:c4:bc:0e:27:d4:e1:57:14:08:58:21:
7b:7b:96:0f:d3:28:f2:24:a2:0a:87:32:09:31:83:
cd:df:e2:44:77:35:37:a1:f9:91:cc:51:1f:ac:e1:
1b:b5:58:52:f4:3e:0e:ec:68:24:ff:50:4d:5c:52:
68:9a:69:0f:03:c1:df:8d:f2:34:5b:d2:16:4c:a9:
12:91:a0:f4:2f:7d:57:10:63:2d:0d:28:57:03:31:
d1:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:0A:C0:4E:CD:02:B1:F6:EC:8B:D8:B1:81:FE:A9:09:DE:C1:85:CC
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/kgrATs0Csfbsi9ixgf6pCd7Bhcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.193.15.0/24
Signature Algorithm: sha256WithRSAEncryption
00:f8:74:81:21:56:9f:07:da:24:0f:4f:28:84:23:51:84:b6:
51:11:95:70:e9:d9:e4:4a:93:d5:a7:1d:e9:16:1b:cb:dd:f9:
72:cc:37:b3:35:93:30:63:f8:c3:60:6a:32:ba:29:53:3f:4c:
c7:38:d6:64:85:55:1a:07:1d:dd:87:99:bf:a4:37:61:40:3f:
d7:34:3d:de:42:94:05:83:61:ca:0d:9a:49:83:4c:f4:c0:e8:
06:35:91:f2:65:6e:a3:e1:1f:5b:d6:b5:b2:2e:5a:89:35:6f:
ce:d6:fd:c7:9b:a8:69:d7:25:bc:7e:ce:4f:2e:63:6d:22:03:
e9:1f:2b:d1:34:6d:69:f2:b7:66:67:97:54:d4:50:d5:53:f2:
e4:f0:23:29:6c:45:31:7b:b0:35:4b:fb:24:a4:6e:a8:1e:73:
31:b8:df:9a:e2:13:df:47:97:f2:92:44:b7:d0:68:bf:70:cd:
19:9c:ec:98:16:fe:4a:94:7c:fe:c2:17:2c:db:b4:a1:e1:e3:
2a:67:5e:2d:6d:a3:68:2a:e0:d7:27:93:bd:99:ea:51:d6:0b:
f8:68:2e:fa:a3:ac:2f:ca:33:ca:1f:f3:10:3f:55:a3:45:03:
8b:70:d0:f9:db:f8:c7:14:66:5f:ff:1f:81:13:7c:ec:e1:4c:
02:3f:15:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:44 2024 by rpki-client on console-ams.rpki-client.org