Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/Ko-GCR7SOJPsHsFncM08PydvwW8.roa
File: Ko-GCR7SOJPsHsFncM08PydvwW8.roa (raw, json)
Hash identifier: VuwDZZ9uJkXktZABSZYHNh4pthWd5oQxEIxHfPYclks=
Subject key identifier: 2A:8F:86:09:1E:D2:38:93:EC:1E:C1:67:70:CD:3C:3F:27:6F:C1:6F
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 495A7A71
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/Ko-GCR7SOJPsHsFncM08PydvwW8.roa
Signing time: Mon 28 Mar 2022 18:10:41 +0000
ROA not before: Mon 28 Mar 2022 18:10:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50340
IP address blocks: 146.185.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1230666353 (0x495a7a71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Mar 28 18:10:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a8f86091ed23893ec1ec16770cd3c3f276fc16f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:de:79:3f:73:58:65:0f:03:a0:6e:b7:b1:45:
39:7a:ee:1b:68:c3:3f:2b:a3:46:77:0d:b1:57:ef:
64:3c:83:6c:3f:59:6c:65:60:c6:93:9d:3d:33:4e:
23:ac:69:53:f4:a5:40:d2:a9:5d:16:a0:68:53:dc:
96:53:73:c8:d1:0d:69:f7:d1:e8:c0:d2:a4:d5:39:
d6:8a:39:86:32:03:4d:99:e1:b7:7e:a1:d2:b5:79:
09:9e:93:4b:22:7a:35:00:49:37:ff:ca:9e:e2:98:
23:a2:12:f6:79:d9:ef:2c:02:a0:63:92:d4:b6:b3:
40:53:cf:e0:24:29:5c:b5:8b:11:b5:9e:ce:db:c6:
30:c9:ef:ae:c1:51:62:c8:3a:cc:dc:a1:83:d4:67:
ac:e3:a4:96:02:19:77:29:52:c1:f3:63:95:c4:94:
62:62:d8:eb:ab:0b:da:59:69:70:0d:a8:9c:78:45:
4a:b6:37:62:ee:c7:f1:06:12:e8:c8:e8:bc:35:58:
c2:b2:51:19:92:f3:bd:90:78:fa:95:3c:cc:69:67:
70:df:f9:4f:0f:b5:93:3b:50:3f:1d:8d:16:7d:60:
34:ad:36:ce:b6:e9:b0:78:45:98:ed:9a:df:4c:47:
9c:fa:0d:4b:f5:09:a0:ef:e2:2c:cd:81:5d:79:90:
d5:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:8F:86:09:1E:D2:38:93:EC:1E:C1:67:70:CD:3C:3F:27:6F:C1:6F
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/Ko-GCR7SOJPsHsFncM08PydvwW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.185.235.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:6a:42:af:a3:30:4c:ec:11:96:22:4f:05:c4:90:9e:52:d7:
2c:67:7a:c1:84:d0:b6:c9:4b:a7:1c:52:02:c6:f3:ed:69:65:
d8:bc:f8:16:87:5c:01:b5:3a:86:83:f3:7e:ef:80:36:ef:02:
30:e6:70:8b:52:d9:03:70:24:79:a9:07:7e:d1:df:a5:87:5d:
1f:a0:0e:25:25:bb:a8:83:87:f7:6d:36:f6:83:a8:81:df:e4:
ee:22:a2:dc:7a:4f:ed:af:7b:b3:8e:5e:88:56:f8:bd:b3:6c:
14:1e:53:10:64:3a:e3:70:be:47:e8:30:d8:95:66:e5:49:a8:
f6:a8:e8:75:2f:d3:d4:06:f2:46:8c:08:fe:72:ec:93:d7:80:
b9:44:ea:38:43:c8:0c:04:7b:fe:67:d7:73:03:5c:3f:2e:b6:
29:db:c8:34:d7:5d:3f:fd:7a:5b:4e:71:3f:70:09:da:50:80:
90:01:57:90:dc:55:7a:96:76:3c:68:0c:f1:a1:92:ed:18:13:
f7:42:6e:fa:4b:92:ab:ae:6f:27:6b:d6:ee:bf:b4:42:23:85:
ee:cd:47:a3:27:38:03:67:46:c0:04:a0:0c:f6:9a:c7:02:4b:
90:77:76:15:30:ba:ce:7b:23:f6:00:72:04:6b:9b:4d:93:c4:
5e:0f:58:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:56 2023 by rpki-client on console-fra.rpki-client.org