Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/KpJ_jiOI64W_xrkUrg7VgLT2-B8.roa
File: KpJ_jiOI64W_xrkUrg7VgLT2-B8.roa (raw, json)
Hash identifier: 8VB0GCRnEVSLy53/WL85bRDG+sfe9iKvjvWavtUbX78=
Subject key identifier: 2A:92:7F:8E:23:88:EB:85:BF:C6:B9:14:AE:0E:D5:80:B4:F6:F8:1F
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1B40C7ED
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/KpJ_jiOI64W_xrkUrg7VgLT2-B8.roa
Signing time: Wed 25 May 2022 11:55:36 +0000
ROA not before: Wed 25 May 2022 11:55:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62342
IP address blocks: 80.96.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 457230317 (0x1b40c7ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: May 25 11:55:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a927f8e2388eb85bfc6b914ae0ed580b4f6f81f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3c:97:16:3d:06:ef:a2:b0:59:f3:f6:2f:a9:
11:28:66:1c:92:c4:93:88:0c:a6:4b:e2:cc:bb:74:
cb:84:07:ff:d6:5a:ed:0b:6d:a6:31:eb:96:9a:16:
78:92:3c:8a:9f:10:bc:cd:88:b7:7b:71:a3:54:70:
ed:03:c6:b5:ab:c0:1b:10:e4:c0:50:e1:ea:de:72:
2d:69:e2:d2:45:1e:69:68:df:42:9e:3a:40:ca:66:
3e:99:15:57:b8:f9:b2:1a:e9:e3:a2:8e:29:2c:78:
68:99:07:e7:e5:ab:e2:0a:f7:bc:4e:92:24:06:7f:
e8:3c:ca:c4:b6:95:99:de:c5:3b:bc:49:04:8a:23:
a3:97:45:5b:7a:22:0c:2c:11:17:e8:1d:26:01:7a:
27:c0:1b:c8:ba:25:81:9a:fc:3d:aa:a0:81:fc:86:
db:f2:c3:dd:e2:33:4b:58:c2:5c:09:f2:68:f4:66:
a4:ee:21:6f:ed:83:b9:95:f0:7b:35:fa:42:38:ee:
33:9b:0c:5c:8d:eb:33:09:b8:59:24:7f:33:ea:6c:
6d:7a:ca:85:cb:d8:d3:fa:26:d1:47:dd:2d:a9:cb:
5b:7d:66:f2:ce:80:66:fc:ff:f5:61:61:6c:e6:0d:
ed:b2:5f:7f:02:af:eb:06:0a:fd:9f:ee:09:1c:b3:
17:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:92:7F:8E:23:88:EB:85:BF:C6:B9:14:AE:0E:D5:80:B4:F6:F8:1F
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/KpJ_jiOI64W_xrkUrg7VgLT2-B8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.52.0/24
Signature Algorithm: sha256WithRSAEncryption
50:53:50:28:b7:ac:fc:7f:08:45:8a:71:48:19:fe:fb:db:58:
34:39:63:d9:73:02:ed:b8:68:63:3d:d7:e1:dd:0b:f0:fd:ab:
93:9e:bc:2d:cd:0b:a7:4e:4a:5d:4d:8a:ff:79:22:94:80:22:
cc:51:ae:17:31:94:84:dc:cf:30:0b:1e:d3:a7:ae:55:a6:33:
9c:d6:a4:ef:34:7b:75:76:f4:67:78:0c:91:4b:18:df:5f:3b:
8c:25:a1:0a:6a:ab:54:ea:a2:03:2f:c1:5d:1f:bc:46:27:b8:
9a:07:28:46:9c:42:58:01:c6:0a:ba:d3:6f:fa:b3:18:bc:9f:
45:1c:78:1b:11:f0:da:ee:2c:53:b9:85:29:c2:0f:6f:9b:86:
51:ee:83:63:ec:d6:e5:1d:55:ad:e8:65:dd:24:27:2a:a1:e7:
48:21:a0:10:bc:2f:bf:4e:ae:27:a1:be:0a:7d:2f:a3:13:c2:
05:03:13:03:b0:b9:08:a2:29:7e:74:ee:95:f2:7a:91:41:d6:
27:86:b1:fb:a0:87:74:f1:02:7d:db:a5:87:e2:a1:91:8c:25:
62:47:d9:42:bd:67:a9:09:27:2a:cd:1a:48:ef:9e:84:94:6c:
e8:5d:d3:5a:71:5e:b9:7b:7d:9a:ec:c1:6e:2b:62:27:1b:aa:
62:61:e5:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:04 2024 by rpki-client on console-ams.rpki-client.org