Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/KGJG1V2XH9-J698SHrrOczbqbeg.roa
File: KGJG1V2XH9-J698SHrrOczbqbeg.roa (raw, json)
Hash identifier: dAb72DbONN61FkMrE7A3n5iJEa37RQjvSIe18MYHmHU=
Subject key identifier: 28:62:46:D5:5D:97:1F:DF:89:EB:DF:12:1E:BA:CE:73:36:EA:6D:E8
Certificate issuer: /CN=01423ad4d629b2f828b79f00ac40388e37b8e252
Certificate serial: 030B92D2
Authority key identifier: 01:42:3A:D4:D6:29:B2:F8:28:B7:9F:00:AC:40:38:8E:37:B8:E2:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AUI61NYpsvgot58ArEA4jje44lI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/KGJG1V2XH9-J698SHrrOczbqbeg.roa
Signing time: Sat 01 Jan 2022 12:03:01 +0000
ROA not before: Sat 01 Jan 2022 12:03:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61355
IP address blocks: 185.234.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51090130 (0x30b92d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01423ad4d629b2f828b79f00ac40388e37b8e252
Validity
Not Before: Jan 1 12:03:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=286246d55d971fdf89ebdf121ebace7336ea6de8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:e9:06:9b:da:b0:6e:43:71:0e:89:c3:53:6a:
25:1a:80:96:87:7a:dd:2c:c3:2c:c4:21:80:76:d6:
91:71:fa:6b:92:fd:4f:ef:4f:c1:db:12:60:28:b3:
ee:44:0e:53:5b:09:a0:b6:38:f2:66:b0:56:db:6e:
5f:7d:ea:d5:bd:09:2b:dd:9c:35:c5:26:b7:5f:d9:
e6:3a:77:ea:b4:58:8f:a8:17:cf:c4:b8:ff:1d:8e:
c3:fd:60:70:e8:d5:22:9d:76:8d:c1:af:aa:b9:fc:
77:af:62:73:14:85:19:be:b3:fc:46:f6:a0:d5:44:
16:e7:27:6f:f9:80:c7:4b:86:47:95:c1:5a:5e:3b:
0d:ad:bc:11:55:31:46:81:8d:a7:31:19:6f:8b:6e:
09:b9:3b:59:00:7f:83:c4:c8:a3:c9:5a:db:18:e3:
3b:7c:fa:cc:52:96:49:1a:b8:b0:5f:f9:17:16:44:
36:64:cc:46:cb:d8:40:76:c0:5b:a0:2d:ff:7c:b8:
2c:6d:dc:cc:06:ca:dd:90:46:96:2b:59:f4:3a:74:
6d:4b:d7:78:50:88:2c:19:48:cd:0c:c3:45:47:55:
34:12:7c:ac:41:47:54:02:30:1e:cb:bc:6a:da:37:
62:07:bb:af:af:5b:3d:e1:e3:83:d0:34:b3:1b:99:
b1:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:62:46:D5:5D:97:1F:DF:89:EB:DF:12:1E:BA:CE:73:36:EA:6D:E8
X509v3 Authority Key Identifier:
keyid:01:42:3A:D4:D6:29:B2:F8:28:B7:9F:00:AC:40:38:8E:37:B8:E2:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AUI61NYpsvgot58ArEA4jje44lI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/KGJG1V2XH9-J698SHrrOczbqbeg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/AUI61NYpsvgot58ArEA4jje44lI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.109.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:25:fb:3b:23:19:8e:5d:22:26:7f:a9:6a:ea:c5:a3:51:34:
d3:60:92:a8:d3:04:1a:a7:0a:3e:23:5a:8c:84:03:d0:5d:1a:
a3:19:8e:2b:96:ac:a5:c9:5e:a1:be:9a:d0:de:67:15:f3:ca:
2b:1b:41:e8:76:cd:fb:6b:7e:ea:27:9a:74:0d:48:5c:4b:ab:
2c:2f:55:2d:e1:ad:67:8e:97:a8:75:0c:8d:66:a3:c1:dc:16:
c2:8c:31:7c:33:48:7c:75:c4:f8:0b:e4:5e:3d:ff:ab:25:ca:
43:d7:0d:85:ad:37:76:fc:4e:42:e3:61:f0:5a:6d:9e:4a:8d:
21:63:6b:7e:67:40:a6:16:4a:b9:d5:73:05:44:0e:92:b1:aa:
92:4a:dc:24:3e:c5:15:46:30:6c:91:68:fa:99:42:e7:90:a9:
9e:75:d4:0d:23:d5:19:d3:ea:f1:8f:22:ee:13:9c:c6:9e:3b:
61:68:3b:b0:18:d5:07:ef:d5:2e:0c:93:f6:ce:3f:79:3e:18:
6f:1f:5c:21:2b:74:e6:f1:ff:8f:a8:23:96:20:83:6a:74:1b:
91:1c:b3:f7:dc:38:ab:a9:f5:05:91:78:8b:b2:98:36:5b:03:
75:78:c7:5f:bd:aa:96:d2:97:ab:53:77:a8:b0:6d:e0:5b:df:
7d:59:da:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org