Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/KlJKkciiPTYpDQojHjbycZ-CgyQ.roa
File: KlJKkciiPTYpDQojHjbycZ-CgyQ.roa (raw, json)
Hash identifier: diGjD5VblNJn3MrSRoO7FBle/ViZb8Xx05KNi0F2hXI=
Subject key identifier: 2A:52:4A:91:C8:A2:3D:36:29:0D:0A:23:1E:36:F2:71:9F:82:83:24
Certificate issuer: /CN=c3fb403a241883e58fced52d39d80eabd52bb36f
Certificate serial: 03BF56B7
Authority key identifier: C3:FB:40:3A:24:18:83:E5:8F:CE:D5:2D:39:D8:0E:AB:D5:2B:B3:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w_tAOiQYg-WPztUtOdgOq9Urs28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/KlJKkciiPTYpDQojHjbycZ-CgyQ.roa
Signing time: Sat 01 Jan 2022 06:54:57 +0000
ROA not before: Sat 01 Jan 2022 06:54:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197610
IP address blocks: 213.174.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62871223 (0x3bf56b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3fb403a241883e58fced52d39d80eabd52bb36f
Validity
Not Before: Jan 1 06:54:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a524a91c8a23d36290d0a231e36f2719f828324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:00:4a:b0:75:be:66:b5:9d:81:76:69:6c:0e:
d9:9d:de:9f:75:ab:c9:fc:12:69:10:7c:83:cc:6a:
f9:68:c2:b4:42:00:06:ce:26:b7:0c:43:88:d6:b1:
19:62:02:a8:9a:c4:bf:d2:5f:d8:52:4c:dd:91:91:
9a:05:3b:5a:03:97:4d:bf:6b:49:b6:49:60:92:e5:
9d:e5:40:87:09:46:f1:cb:3c:40:22:21:94:e0:ee:
11:a0:d5:73:d2:ad:ed:3d:8a:a7:ac:ec:8e:3d:b1:
73:8c:45:92:9b:73:23:a4:68:18:50:26:9b:3e:2d:
30:c9:a9:05:f8:24:ac:f9:6a:80:87:fa:06:22:47:
56:8b:1c:5c:27:a3:8d:93:a3:56:e3:2b:82:69:32:
98:45:9d:20:f8:2c:52:08:5e:5c:dd:a5:31:c1:9d:
5f:5c:2e:de:1e:8e:89:79:e1:c2:c8:17:84:da:46:
28:19:ec:68:58:36:32:3f:d7:15:d9:fc:9e:7a:0b:
67:35:70:5b:b0:36:2e:cc:14:01:6c:5b:90:71:53:
e5:52:30:f2:72:27:33:c5:95:9a:48:a5:6d:a2:65:
d5:6e:af:72:59:c9:07:2e:de:1b:4d:59:52:4c:b7:
2a:07:86:0f:f7:10:c8:91:7f:2b:2a:ed:ff:63:b4:
99:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:52:4A:91:C8:A2:3D:36:29:0D:0A:23:1E:36:F2:71:9F:82:83:24
X509v3 Authority Key Identifier:
keyid:C3:FB:40:3A:24:18:83:E5:8F:CE:D5:2D:39:D8:0E:AB:D5:2B:B3:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w_tAOiQYg-WPztUtOdgOq9Urs28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/KlJKkciiPTYpDQojHjbycZ-CgyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/w_tAOiQYg-WPztUtOdgOq9Urs28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.174.28.0/24
Signature Algorithm: sha256WithRSAEncryption
69:bc:3b:8f:db:b8:da:8f:06:83:6f:5f:fe:39:ee:3e:64:aa:
79:48:ed:18:11:f1:57:14:53:6f:1c:b2:61:89:27:6e:67:47:
c2:c0:21:55:c5:85:49:f3:27:5c:d4:fd:02:34:6c:85:0e:3f:
88:7f:2a:1b:04:fb:4d:22:40:c2:8c:0c:cc:03:ef:f2:53:b7:
cb:ec:26:50:1e:49:6c:a4:68:c5:6f:a4:a0:f3:16:9b:ca:f5:
1f:2e:8f:d2:96:9e:20:9c:c6:a6:dc:dc:e7:0e:2c:87:b5:ac:
90:d6:2b:46:74:cf:3e:74:49:0d:e5:0a:1e:2a:08:03:c1:0f:
cd:c0:f7:42:26:9c:36:f4:f3:9e:f0:90:16:64:e4:b5:f7:f9:
d1:26:4a:78:23:2f:53:4a:b3:c4:c2:06:36:1a:02:76:ef:44:
54:bf:29:8b:73:a9:ec:68:7c:b8:79:53:f8:95:56:77:a7:1d:
fc:6f:6d:03:d8:11:be:e2:3a:66:e2:d9:e7:c8:8f:a5:69:f0:
dd:9d:f0:d3:2f:44:c7:73:2e:0e:c9:56:f5:cc:c7:f8:c4:39:
d5:ac:a2:bf:de:ac:e6:c6:c7:b7:f1:61:61:58:da:20:99:a2:
d1:41:23:0d:d6:f1:94:15:60:ba:ae:ed:dd:ad:ed:fd:cc:27:
e0:b6:a5:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:28 2024 by rpki-client on console-fra.rpki-client.org