Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/a86a91-6356-4c2c-9f8f-de4accb00dd7/1/kMcyKESV-efhdjbWzBBCzm3TFJs.roa
File: kMcyKESV-efhdjbWzBBCzm3TFJs.roa (raw, json)
Hash identifier: /Z8NSPkE7lx8Whotz3bjgP1Pzp8YjYGQgVykNxeSNAQ=
Subject key identifier: 90:C7:32:28:44:95:F9:E7:E1:76:36:D6:CC:10:42:CE:6D:D3:14:9B
Certificate issuer: /CN=9759529dd3170645d76cf6ac0659506cc649ca90
Certificate serial: 03AEFA23
Authority key identifier: 97:59:52:9D:D3:17:06:45:D7:6C:F6:AC:06:59:50:6C:C6:49:CA:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l1lSndMXBkXXbPasBllQbMZJypA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/a86a91-6356-4c2c-9f8f-de4accb00dd7/1/kMcyKESV-efhdjbWzBBCzm3TFJs.roa
Signing time: Sat 01 Jan 2022 12:03:38 +0000
ROA not before: Sat 01 Jan 2022 12:03:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.169.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61798947 (0x3aefa23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9759529dd3170645d76cf6ac0659506cc649ca90
Validity
Not Before: Jan 1 12:03:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90c732284495f9e7e17636d6cc1042ce6dd3149b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:de:83:b4:d2:01:95:6b:06:99:89:30:9d:43:
90:a2:66:b0:46:a8:77:6e:b9:42:e0:aa:0c:37:34:
0f:30:5d:6c:95:18:b5:81:57:35:e7:78:ff:79:5b:
b1:80:4b:29:1f:a5:9b:b2:1e:b9:84:75:11:ff:15:
da:8e:bf:60:ab:a8:45:12:6e:bb:5e:f6:27:de:41:
60:3f:19:15:13:33:b1:13:6e:df:55:4f:31:95:50:
e0:c4:14:e3:9d:68:3f:94:ce:8e:7c:8e:0b:1b:b4:
54:d6:00:76:e8:f7:25:86:0f:16:20:05:58:c8:12:
99:58:90:3a:c7:e3:95:39:69:5c:af:90:07:e9:f4:
2a:e2:00:7b:aa:f2:ff:cf:0f:d1:f0:08:23:6d:3f:
94:38:0e:27:9c:37:3e:c8:57:31:06:da:e9:9d:84:
52:17:58:83:e5:94:c1:f8:64:53:13:f4:c4:8f:ce:
22:e2:1c:d6:d6:7a:56:a3:64:1b:51:db:47:57:fb:
24:4e:d6:ed:17:ac:1e:2a:81:ee:a0:cf:41:7d:81:
fb:b5:bf:6a:73:27:07:9f:c2:41:73:65:e3:44:87:
2a:56:1e:f6:de:fd:79:ee:8a:c3:36:5b:c7:21:33:
9c:04:f0:8f:7e:bf:a8:9d:f3:d8:a4:0f:d2:d7:d3:
53:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:C7:32:28:44:95:F9:E7:E1:76:36:D6:CC:10:42:CE:6D:D3:14:9B
X509v3 Authority Key Identifier:
keyid:97:59:52:9D:D3:17:06:45:D7:6C:F6:AC:06:59:50:6C:C6:49:CA:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l1lSndMXBkXXbPasBllQbMZJypA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/a86a91-6356-4c2c-9f8f-de4accb00dd7/1/kMcyKESV-efhdjbWzBBCzm3TFJs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/a86a91-6356-4c2c-9f8f-de4accb00dd7/1/l1lSndMXBkXXbPasBllQbMZJypA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.27.0/24
Signature Algorithm: sha256WithRSAEncryption
44:d9:64:10:34:40:d4:9a:45:a4:ce:b9:b3:b9:20:19:28:e2:
22:b7:76:d2:bd:1a:7c:bd:e8:70:eb:fb:a6:63:34:10:7b:ef:
15:5f:5a:a0:07:6a:aa:07:e1:2a:02:df:5d:6b:2b:67:e3:4a:
00:34:0d:d1:84:e9:59:35:2f:cc:44:78:cd:4c:da:5f:38:05:
2d:c5:9f:9b:b4:83:4b:38:27:9b:ee:36:c3:85:45:b4:5a:2e:
2e:b5:92:c8:fe:d2:15:f6:10:e8:c2:60:04:f2:a4:0b:96:e9:
97:47:99:5e:67:a8:af:c7:05:1f:bc:91:ff:ff:87:fa:0d:c9:
25:27:db:0d:c8:51:2b:79:81:8e:16:b4:6c:4b:a2:25:9d:b5:
36:15:40:29:07:f4:c9:86:1e:21:5c:fc:66:20:ed:17:75:73:
a2:1e:1d:cf:f3:67:c7:62:cd:eb:f9:30:0f:a4:8a:66:30:7e:
d8:66:c2:63:53:e1:40:f2:04:d5:e0:41:a5:6b:96:27:3e:f0:
42:f7:47:3e:58:62:3e:ac:e3:32:81:2d:a9:2a:47:7d:bd:4d:
e4:81:dc:b0:3b:c6:d3:e6:48:13:49:ae:8f:e8:0a:6a:d1:28:
1c:85:69:0d:5e:c9:1d:8c:69:8b:da:84:f5:9a:01:30:18:a0:
02:31:19:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:46 2023 by rpki-client on console-fra.rpki-client.org