Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/ktfQf4ZldBkotkb8lGMVibG3iLg.roa
File: ktfQf4ZldBkotkb8lGMVibG3iLg.roa (raw, json)
Hash identifier: /BR8g5cbkIzQCk2SdSKZtSKk4TWNt9ImBPeqwlTIDdg=
Subject key identifier: 92:D7:D0:7F:86:65:74:19:28:B6:46:FC:94:63:15:89:B1:B7:88:B8
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 0181D7FC96E53B4136EAE83251C4F0004C4B
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/ktfQf4ZldBkotkb8lGMVibG3iLg.roa
Signing time: Thu 07 Jul 2022 09:27:44 +0000
ROA not before: Thu 07 Jul 2022 09:27:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44271
IP address blocks: 85.121.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d7:fc:96:e5:3b:41:36:ea:e8:32:51:c4:f0:00:4c:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jul 7 09:27:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=92d7d07f8665741928b646fc94631589b1b788b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:6a:af:4d:11:7a:48:a9:85:60:91:ec:48:cd:
8a:81:4a:65:83:c9:12:58:d8:a6:41:83:b2:69:a0:
0e:92:8d:c7:83:e6:9b:fd:aa:25:8c:aa:77:45:d1:
ae:a5:59:b9:a1:79:38:46:d4:2f:c0:f5:5e:a4:ba:
b3:44:f4:17:d9:04:bc:9d:cf:0e:6b:88:dc:e9:b7:
b5:dd:f6:41:f4:ac:f9:9e:ea:7f:34:be:2d:a4:2b:
53:35:b1:11:88:8f:ca:ca:76:d6:bf:ea:a4:14:d0:
63:66:66:ed:dd:ef:ea:07:19:e4:8c:73:fa:ea:7e:
49:9c:47:73:e1:e5:61:48:85:92:49:d5:64:e0:5d:
01:ee:a4:c8:26:ef:a2:c1:11:0c:7e:b8:6a:2a:d7:
85:58:0b:ac:7a:95:e0:5f:8b:5c:aa:57:04:ae:64:
89:04:01:72:2b:01:8b:61:60:0d:62:e2:2a:62:53:
1b:99:ee:a2:d5:bd:9d:a8:9a:bd:17:c8:9f:2f:4c:
84:82:63:71:b2:19:a9:23:3b:df:04:86:39:58:1d:
a8:fb:bd:a5:c2:78:1f:6c:03:29:38:3e:05:ec:3d:
0a:9b:39:d8:61:7c:fe:86:5d:8d:c4:66:cb:d2:5c:
f3:dc:fe:77:14:ba:d3:1b:ef:d8:96:98:0f:55:18:
c2:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:D7:D0:7F:86:65:74:19:28:B6:46:FC:94:63:15:89:B1:B7:88:B8
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/ktfQf4ZldBkotkb8lGMVibG3iLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.121.182.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:44:2a:96:d6:d5:0d:e2:38:27:1c:08:0d:3d:14:a3:0a:0d:
fb:12:13:7b:a5:6f:50:fb:14:a0:6a:13:76:a7:dd:3e:be:1a:
00:73:04:65:ae:54:c6:db:8a:75:79:6a:c7:97:b1:15:0a:63:
78:c8:4a:d5:dd:5f:95:f2:c3:5d:1e:52:87:ab:4f:1a:82:9d:
c4:8d:ff:e3:02:89:10:40:99:36:e0:69:a1:2c:4e:82:09:83:
c2:d2:15:79:a7:22:c2:58:fe:b5:81:9a:8e:60:f3:75:02:ad:
f0:1b:31:2a:d1:40:7a:3b:32:bf:88:94:c5:07:f7:be:08:5f:
ed:0c:3e:4e:f5:05:ee:f8:63:9b:1f:23:32:4e:15:48:fa:e4:
ea:ae:c2:82:cc:16:1c:6d:66:60:55:b8:f3:fb:72:9f:e0:29:
20:83:61:e9:9f:cd:9c:bb:76:5e:a7:35:9f:8c:37:8e:3e:fb:
aa:df:33:16:98:56:26:d6:7a:87:28:40:7f:b5:1d:fd:5e:bf:
f1:6e:72:91:79:97:51:e9:f3:76:9f:f4:10:64:f6:77:ad:f5:
29:00:76:7e:81:14:40:54:0d:41:9d:8d:a5:6f:77:4f:02:f8:
82:a3:e7:fd:61:64:e9:f6:74:d0:33:40:18:49:d3:7c:8b:de:
ce:89:ba:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-ams.rpki-client.org