Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/8cd3ba-9d72-434f-8f82-aab4bd8fce9d/1/kFbzEmSk4-mV_xQrDNNrvylq8u4.roa
File: kFbzEmSk4-mV_xQrDNNrvylq8u4.roa (raw, json)
Hash identifier: C/R9tSaD1D6cicAa+pVtoWUpJMM9Ykk29Fki40cueRM=
Subject key identifier: 90:56:F3:12:64:A4:E3:E9:95:FF:14:2B:0C:D3:6B:BF:29:6A:F2:EE
Certificate issuer: /CN=e35a056c8242971d1a90b0bfa98b1b7a93052884
Certificate serial: 0A96F8A6
Authority key identifier: E3:5A:05:6C:82:42:97:1D:1A:90:B0:BF:A9:8B:1B:7A:93:05:28:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/41oFbIJClx0akLC_qYsbepMFKIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/8cd3ba-9d72-434f-8f82-aab4bd8fce9d/1/kFbzEmSk4-mV_xQrDNNrvylq8u4.roa
Signing time: Sat 01 Jan 2022 16:11:16 +0000
ROA not before: Sat 01 Jan 2022 16:11:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57672
IP address blocks: 192.146.137.0/24 maxlen: 24
2001:67c:26b4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177666214 (0xa96f8a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e35a056c8242971d1a90b0bfa98b1b7a93052884
Validity
Not Before: Jan 1 16:11:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9056f31264a4e3e995ff142b0cd36bbf296af2ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:08:9a:cc:33:18:4b:ae:1c:25:22:87:c9:57:
6f:f5:90:b9:88:fb:78:97:e1:26:04:6b:94:a7:c7:
5f:0c:a4:68:f9:25:58:5f:77:93:35:39:8d:27:0d:
88:80:b0:98:90:56:68:d1:52:c9:ea:d0:dc:13:02:
7b:65:4f:d4:19:47:31:ca:8e:9f:47:f9:70:ec:fc:
a8:54:e4:bd:03:4d:d5:b2:7c:85:b3:b4:eb:97:70:
20:16:38:f2:6a:dc:d5:da:87:ac:11:b0:e4:20:34:
54:8d:46:51:99:ce:46:a9:ad:90:b9:15:28:63:f1:
79:bc:ca:42:9b:9c:3b:72:ef:8c:75:9f:b3:88:73:
56:db:ea:02:b9:94:ed:13:ee:67:e6:78:53:4f:47:
7e:b3:c7:7b:5f:b6:55:e7:3d:55:e1:81:85:37:d1:
54:b7:2b:a3:ac:86:91:c6:3c:df:d9:d6:70:bd:15:
4f:90:39:97:cc:13:d3:0c:50:84:3b:bf:0e:dc:91:
3c:94:d1:2d:bb:31:dd:10:3d:de:73:6f:56:5b:f9:
0d:ad:8e:5a:c6:07:eb:71:63:cc:68:4e:f7:e6:b8:
eb:9b:e3:73:2b:2d:92:5c:97:57:5e:ce:5b:47:5a:
ca:ee:02:5d:ab:56:59:0b:ce:f6:18:99:9f:b3:1e:
df:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:56:F3:12:64:A4:E3:E9:95:FF:14:2B:0C:D3:6B:BF:29:6A:F2:EE
X509v3 Authority Key Identifier:
keyid:E3:5A:05:6C:82:42:97:1D:1A:90:B0:BF:A9:8B:1B:7A:93:05:28:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/41oFbIJClx0akLC_qYsbepMFKIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/8cd3ba-9d72-434f-8f82-aab4bd8fce9d/1/kFbzEmSk4-mV_xQrDNNrvylq8u4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/8cd3ba-9d72-434f-8f82-aab4bd8fce9d/1/41oFbIJClx0akLC_qYsbepMFKIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.146.137.0/24
IPv6:
2001:67c:26b4::/48
Signature Algorithm: sha256WithRSAEncryption
a9:3f:a2:93:c0:37:ca:b2:31:90:5a:f0:95:e9:e3:e9:00:68:
59:e7:41:85:c1:18:c1:28:d3:86:69:b1:bf:b3:98:a6:d1:b1:
60:30:a2:ba:99:10:8c:2e:b6:a4:4e:5d:cc:e4:fc:87:e9:0c:
a1:c9:68:14:b3:ae:d4:d1:d7:01:63:32:ac:33:cd:1e:83:f1:
b2:68:a5:7e:8a:57:a7:36:fd:f4:2a:71:21:ca:05:56:15:06:
49:01:78:5a:fc:e4:61:9a:eb:a4:1f:3e:59:69:1a:6d:13:7e:
6d:c8:fd:3d:f1:9c:d6:21:67:a6:70:6a:19:95:4f:4f:eb:93:
d9:b8:f2:c1:75:98:e9:73:43:73:f7:24:02:06:54:2b:ec:ef:
81:7b:d4:6d:69:c1:b7:67:9f:02:1d:63:e5:aa:f9:f9:5d:46:
c4:47:06:3f:3c:ee:fe:c9:2f:87:84:a7:9e:2b:a4:79:47:47:
2f:15:74:dd:21:10:07:a0:85:58:a3:4b:20:61:75:a6:cd:ad:
31:6d:e0:84:46:d1:e3:22:56:8f:7d:17:86:7a:b9:d7:12:09:
5b:fa:18:2e:25:e6:69:63:bd:bb:2c:7e:8e:3a:40:80:13:ba:
3e:c2:f4:fb:27:de:e6:b8:3f:49:ba:e2:25:47:84:42:78:e7:
1b:f3:ea:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:42 2024 by rpki-client on console-fra.rpki-client.org