Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/fd492d-2ca7-4fa2-8ece-9b9324d618db/1/Kjn8CYXvfAIUuR7_9ymDz7gbu1Q.roa
File: Kjn8CYXvfAIUuR7_9ymDz7gbu1Q.roa (raw, json)
Hash identifier: 2WgOet3PDUKf/PYo0DOQKvwE5MnujYxyQXI60njHI+M=
Subject key identifier: 2A:39:FC:09:85:EF:7C:02:14:B9:1E:FF:F7:29:83:CF:B8:1B:BB:54
Certificate issuer: /CN=1488c18c62f08a4ed8ef83e0aa8d5690b8505368
Certificate serial: 015061
Authority key identifier: 14:88:C1:8C:62:F0:8A:4E:D8:EF:83:E0:AA:8D:56:90:B8:50:53:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FIjBjGLwik7Y74Pgqo1WkLhQU2g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/fd492d-2ca7-4fa2-8ece-9b9324d618db/1/Kjn8CYXvfAIUuR7_9ymDz7gbu1Q.roa
Signing time: Sun 06 Mar 2022 07:55:05 +0000
ROA not before: Sun 06 Mar 2022 07:55:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50131
IP address blocks: 176.116.1.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86113 (0x15061)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1488c18c62f08a4ed8ef83e0aa8d5690b8505368
Validity
Not Before: Mar 6 07:55:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a39fc0985ef7c0214b91efff72983cfb81bbb54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fd:92:82:d0:75:a9:25:12:be:db:75:e4:e3:
ad:98:7e:b7:81:ae:47:e4:36:d3:21:d9:ff:57:64:
f7:0e:cb:25:75:42:06:c0:9f:04:b1:9d:8c:29:43:
db:1e:5f:7d:40:14:d2:43:02:9a:15:67:7e:f5:f5:
86:03:7b:3a:51:fb:d4:ef:7b:67:3a:95:10:fc:7e:
ad:87:e1:be:9c:1f:01:bf:69:c6:03:6f:d9:67:95:
80:51:6c:b6:a7:86:25:21:e0:1d:48:e0:1e:f3:2e:
af:e4:43:64:3f:5c:bd:45:62:a5:98:75:e4:33:3e:
9b:5f:0b:26:b4:e7:ce:a0:53:dc:06:14:99:d9:e8:
22:d6:dc:b1:52:4b:6a:c3:31:dc:ec:6e:2d:9e:de:
e3:dd:7f:bf:c1:03:0e:f2:5d:2d:57:a3:39:c6:22:
3d:d3:a8:04:92:76:77:b1:e1:4d:e3:e0:d3:8e:3b:
0d:86:08:66:87:9e:94:e9:33:9c:a6:e8:6a:1b:13:
b4:31:97:05:6a:d8:1d:0c:f1:99:14:df:35:b1:f1:
6c:9b:c6:de:23:67:61:f5:b8:9e:3c:33:9e:ae:e2:
f8:04:bd:5a:20:d1:a0:68:59:c1:96:c0:f5:2e:a9:
48:e6:b3:ee:25:88:2b:54:38:62:b6:85:a9:89:b6:
d3:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:39:FC:09:85:EF:7C:02:14:B9:1E:FF:F7:29:83:CF:B8:1B:BB:54
X509v3 Authority Key Identifier:
keyid:14:88:C1:8C:62:F0:8A:4E:D8:EF:83:E0:AA:8D:56:90:B8:50:53:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FIjBjGLwik7Y74Pgqo1WkLhQU2g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/fd492d-2ca7-4fa2-8ece-9b9324d618db/1/Kjn8CYXvfAIUuR7_9ymDz7gbu1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/fd492d-2ca7-4fa2-8ece-9b9324d618db/1/FIjBjGLwik7Y74Pgqo1WkLhQU2g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.1.0/24
Signature Algorithm: sha256WithRSAEncryption
20:b2:9d:80:d2:4c:a7:1e:60:4c:4a:eb:3a:6d:37:ad:eb:61:
ea:b3:f7:51:0f:ec:e9:83:d6:f9:47:41:11:42:39:c8:6b:7d:
33:f9:a6:91:08:49:bf:70:d0:6f:0c:9b:54:df:0f:22:dd:a4:
e3:b4:92:42:c1:a6:fb:8b:d2:7c:8f:93:02:62:5a:ca:cf:c4:
d1:c4:ed:dc:45:14:65:34:4b:43:fc:09:d1:46:fd:89:2a:24:
20:38:af:bd:9b:d8:96:d6:0f:36:5c:0b:64:18:f0:72:05:fd:
0f:19:7f:7f:e6:86:ca:e8:59:03:34:d4:0c:fc:59:c1:a9:e3:
66:72:ad:13:de:14:a1:ae:57:ed:1f:f4:dd:3d:16:51:3e:83:
e6:13:91:57:94:43:a8:c3:7a:43:06:13:fd:47:5e:51:94:62:
07:bc:03:3e:87:28:3c:69:d4:cb:3d:1b:31:9e:9c:9f:e5:a2:
43:9d:e1:de:72:34:05:04:9f:f6:4b:f3:59:2d:ed:08:3b:c4:
fd:56:4c:9d:e5:c9:27:d4:35:9d:c9:cc:85:54:02:2e:d3:6a:
77:a0:bc:86:5e:5c:46:aa:be:fe:82:b5:9c:f7:9d:6c:c0:fa:
57:6e:31:dd:f5:6b:f6:ed:a3:3b:77:a2:09:74:70:8a:c5:b3:
34:aa:e9:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:15 2023 by rpki-client on console-fra.rpki-client.org