Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/Ktsk2ISPaOXYtwobgQt5cBaE1Bk.roa
File: Ktsk2ISPaOXYtwobgQt5cBaE1Bk.roa (raw, json)
Hash identifier: MyjmN2omxL/VLkQkC5iGN6JaPX8m9MxhlPsf3M/4rro=
Subject key identifier: 2A:DB:24:D8:84:8F:68:E5:D8:B7:0A:1B:81:0B:79:70:16:84:D4:19
Certificate issuer: /CN=7554ac4c7f451c5bb9382fbcd46d70c4c0f9de56
Certificate serial: 0184AF2AD849E3796AACE4DEB4E237E8EA2A
Authority key identifier: 75:54:AC:4C:7F:45:1C:5B:B9:38:2F:BC:D4:6D:70:C4:C0:F9:DE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dVSsTH9FHFu5OC-81G1wxMD53lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/Ktsk2ISPaOXYtwobgQt5cBaE1Bk.roa
Signing time: Fri 25 Nov 2022 14:22:11 +0000
ROA not before: Fri 25 Nov 2022 14:22:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63023
IP address blocks: 185.177.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:af:2a:d8:49:e3:79:6a:ac:e4:de:b4:e2:37:e8:ea:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7554ac4c7f451c5bb9382fbcd46d70c4c0f9de56
Validity
Not Before: Nov 25 14:22:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2adb24d8848f68e5d8b70a1b810b79701684d419
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:9b:25:7a:3a:b8:fc:c8:90:b8:db:90:f7:bc:
6a:74:09:91:51:ab:46:4e:20:4b:d8:a3:31:7e:ac:
63:9b:0a:b2:ab:be:61:19:04:c5:95:51:de:79:34:
68:6d:7e:ca:e9:3c:55:53:45:3d:6f:68:dc:e6:7e:
93:bd:b3:84:bc:22:71:c5:bf:9a:8d:62:23:be:36:
23:37:56:15:bb:4d:d1:ae:3a:f4:c1:4f:7e:a2:d1:
23:77:4c:7e:36:3e:3e:28:0b:6a:2d:21:ca:3b:f4:
d8:57:85:42:25:ce:e5:68:0e:58:27:0f:2b:63:9f:
8f:23:3b:28:b4:2f:5c:73:ff:84:85:c7:f8:bc:8c:
64:04:75:6d:17:14:79:b7:6a:75:98:a2:38:24:b2:
52:86:7e:11:ec:23:d3:36:15:6f:01:63:1b:f6:87:
8a:03:52:4f:72:27:4c:00:ad:20:8d:f0:37:02:f6:
73:6f:64:2f:93:9d:56:3f:22:11:2d:c7:30:89:c0:
93:62:0a:14:be:6e:db:2d:ad:3c:ee:ea:13:9c:0c:
28:cd:4d:5f:5f:69:71:88:3f:58:1f:e0:4a:d9:c4:
49:dc:69:0b:bf:bd:dd:63:95:04:11:e9:4b:1e:e2:
9e:8b:19:2a:f0:65:31:7e:54:c3:82:87:b4:a2:b7:
5d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:DB:24:D8:84:8F:68:E5:D8:B7:0A:1B:81:0B:79:70:16:84:D4:19
X509v3 Authority Key Identifier:
keyid:75:54:AC:4C:7F:45:1C:5B:B9:38:2F:BC:D4:6D:70:C4:C0:F9:DE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dVSsTH9FHFu5OC-81G1wxMD53lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/Ktsk2ISPaOXYtwobgQt5cBaE1Bk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/dVSsTH9FHFu5OC-81G1wxMD53lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.229.0/24
Signature Algorithm: sha256WithRSAEncryption
04:21:24:63:e8:ba:bb:60:c1:9b:63:d2:0a:b2:23:57:52:db:
cc:f6:9d:5d:3a:9c:b2:1b:6d:c6:33:ef:8e:fa:0a:45:03:0d:
62:d6:b8:c8:c6:fa:d1:fc:59:f3:94:00:82:35:18:94:09:b0:
38:07:5c:86:76:cc:eb:c7:92:af:b7:c8:ae:35:35:49:06:03:
5c:d0:58:82:ab:fd:93:f8:9b:3a:71:78:5b:32:11:b7:f2:c9:
14:08:71:bf:83:46:5a:a7:52:dd:89:14:ae:8b:3f:b5:d4:a5:
cd:e5:c6:2c:95:bf:95:0d:00:35:ec:1d:f1:f5:b8:41:a2:53:
63:fe:21:fe:e7:24:cc:b2:37:a1:ad:69:aa:3a:a8:89:cc:07:
2f:12:74:d6:3c:ba:71:85:ca:0b:82:45:fa:23:ce:0c:6b:be:
74:8d:5e:d9:07:df:5b:3a:71:0c:aa:87:61:77:33:39:b5:f0:
8a:71:d7:a5:ee:d5:cd:49:78:cb:5e:28:50:de:6c:c9:f3:5b:
eb:a1:d8:b9:7b:6a:05:6b:c2:65:16:f3:e1:bb:db:54:08:0f:
df:ae:1a:e3:21:68:17:f4:7f:70:03:e9:a1:6a:d1:ce:ab:52:
e3:95:fd:61:c1:15:7a:f6:85:77:58:86:ac:94:74:80:8c:ba:
da:30:98:f3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYSvKthJ43lqrOTetOI36OoqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1NTRhYzRjN2Y0NTFjNWJiOTM4MmZiY2Q0NmQ3MGM0YzBm
OWRlNTYwHhcNMjIxMTI1MTQyMjExWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYWRiMjRkODg0OGY2OGU1ZDhiNzBhMWI4MTBiNzk3MDE2ODRkNDE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsJslejq4/MiQuNuQ97xqdAmRUatG
TiBL2KMxfqxjmwqyq75hGQTFlVHeeTRobX7K6TxVU0U9b2jc5n6TvbOEvCJxxb+a
jWIjvjYjN1YVu03Rrjr0wU9+otEjd0x+Nj4+KAtqLSHKO/TYV4VCJc7laA5YJw8r
Y5+PIzsotC9cc/+Ehcf4vIxkBHVtFxR5t2p1mKI4JLJShn4R7CPTNhVvAWMb9oeK
A1JPcidMAK0gjfA3AvZzb2Qvk51WPyIRLccwicCTYgoUvm7bLa087uoTnAwozU1f
X2lxiD9YH+BK2cRJ3GkLv73dY5UEEelLHuKeixkq8GUxflTDgoe0orddbQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCrbJNiEj2jl2LcKG4ELeXAWhNQZMB8GA1UdIwQY
MBaAFHVUrEx/RRxbuTgvvNRtcMTA+d5WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZFZTc1RIOUZIRnU1T0MtODFHMXd4TUQ1M2xZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy84N2EwMGEtYjZmNi00NzIxLWE4Mjgt
ZDkzMzdkYjM5ZDFmLzEvS3RzazJJU1BhT1hZdHdvYmdRdDVjQmFFMUJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy84N2EwMGEtYjZmNi00NzIxLWE4MjgtZDkzMzdkYjM5ZDFm
LzEvZFZTc1RIOUZIRnU1T0MtODFHMXd4TUQ1M2xZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAubHlMA0G
CSqGSIb3DQEBCwUAA4IBAQAEISRj6Lq7YMGbY9IKsiNXUtvM9p1dOpyyG23GM++O
+gpFAw1i1rjIxvrR/FnzlACCNRiUCbA4B1yGdszrx5Kvt8iuNTVJBgNc0FiCq/2T
+Js6cXhbMhG38skUCHG/g0Zap1LdiRSuiz+11KXN5cYslb+VDQA17B3x9bhBolNj
/iH+5yTMsjehrWmqOqiJzAcvEnTWPLpxhcoLgkX6I84Ma750jV7ZB99bOnEMqodh
dzM5tfCKcdel7tXNSXjLXihQ3mzJ81vrodi5e2oFa8JlFvPhu9tUCA/frhrjIWgX
9H9wA+mhatHOq1Ljlf1hwRV69oV3WIaslHSAjLraMJjz
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:30 2024 by rpki-client on console-ams.rpki-client.org