Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/KQgBVPKfn1KgputtAJ_Yn48HLGs.roa
File: KQgBVPKfn1KgputtAJ_Yn48HLGs.roa (raw, json)
Hash identifier: P1raKVQNnlFtd9sOFmcab/IbhcAksATUlO1b/p/tiZA=
Subject key identifier: 29:08:01:54:F2:9F:9F:52:A0:A6:EB:6D:00:9F:D8:9F:8F:07:2C:6B
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 09D5C6FC
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/KQgBVPKfn1KgputtAJ_Yn48HLGs.roa
Signing time: Thu 10 Mar 2022 13:27:32 +0000
ROA not before: Thu 10 Mar 2022 13:27:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49476
IP address blocks: 185.13.157.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 165005052 (0x9d5c6fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Mar 10 13:27:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29080154f29f9f52a0a6eb6d009fd89f8f072c6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:06:87:a8:ca:b1:43:eb:b9:7b:2b:17:07:f1:
31:38:94:bd:75:1a:90:d2:bc:7e:d7:5a:3f:84:2a:
79:f7:d0:03:ca:76:c2:19:c3:d0:a9:83:14:e7:5b:
29:35:2c:51:29:0b:7c:48:b6:98:db:d9:34:26:f2:
a2:d8:8b:0f:df:39:09:b7:cb:5e:3d:40:3b:d8:02:
b1:e2:6a:a5:43:7e:9c:61:84:1d:b0:10:ce:be:8c:
bc:76:00:d1:73:2c:32:08:bf:09:77:9a:fb:19:cc:
30:fc:a5:34:f1:7c:be:2f:80:cf:f8:93:0b:4c:ee:
b7:20:ec:f4:59:74:ef:09:82:1b:ba:60:23:ab:5a:
18:a3:81:05:a5:ff:da:7e:01:09:f1:54:cb:2b:58:
bb:af:f2:4e:b7:38:15:2c:90:f1:ec:b0:59:7b:b3:
60:77:51:ee:9d:5b:5e:78:c8:07:c3:61:2f:b8:a1:
1c:13:fb:c0:64:ec:b6:51:96:f1:d6:ee:18:e1:60:
9e:91:a0:93:bd:dd:e6:73:37:8f:ef:08:2c:4a:a5:
18:7b:f1:2f:7c:f1:73:9a:07:97:46:d8:e0:0b:c0:
ec:cd:fe:5b:10:06:3a:68:31:a7:b3:b8:c1:a6:f4:
5e:4b:89:4a:31:a6:94:e9:25:e0:de:7e:24:fe:17:
58:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:08:01:54:F2:9F:9F:52:A0:A6:EB:6D:00:9F:D8:9F:8F:07:2C:6B
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/KQgBVPKfn1KgputtAJ_Yn48HLGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.13.157.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:f0:57:9d:88:c8:16:85:1c:54:9f:18:b4:56:a1:b3:98:9e:
79:3a:e4:fc:68:1a:ad:e8:1a:4d:f4:b7:3f:f2:77:84:56:27:
e6:30:22:84:39:e6:a1:52:0e:a9:28:b0:53:20:ae:9d:52:25:
a7:ad:67:bf:12:fc:1f:e5:f3:11:88:f6:cb:6f:bd:53:02:bd:
36:6b:34:9d:9e:fb:19:62:31:07:c8:4b:dc:1a:89:9a:9c:9d:
a0:0f:30:d8:3a:32:37:7b:2b:eb:f4:7b:dc:e5:d9:d6:ae:73:
26:96:12:7c:4b:1f:63:65:ea:c3:de:83:cc:00:a8:ad:e5:0f:
88:d8:94:ee:0f:e8:00:f1:6e:18:15:cf:ac:bf:57:8b:6f:34:
94:79:94:0a:2c:3d:d6:be:99:20:6c:eb:f1:6f:38:07:14:60:
57:cd:6f:36:08:cf:6e:4c:cc:af:65:83:ca:0f:c2:fc:b7:28:
62:14:ae:c2:d2:4e:26:12:80:ab:92:cd:b9:46:2e:5a:21:83:
f3:50:43:78:9e:2d:69:ff:34:55:ba:a5:51:c2:da:47:3d:49:
cc:f7:e4:f2:be:b8:23:27:64:d6:10:95:62:95:59:4c:f1:34:
21:09:73:5e:b9:2b:fd:1e:33:f9:f0:6b:30:01:2a:cf:0b:c7:
67:f5:49:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:54 2024 by rpki-client on console-ams.rpki-client.org