Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/f9c0f8-bb07-4234-ab06-2b1aaae880ea/1/klInCLsfR0lfKOhbXQYuymzB984.roa
File: klInCLsfR0lfKOhbXQYuymzB984.roa (raw, json)
Hash identifier: is6zSHZRv7/8uG/qaSGXlXoybsrMkNzJWHsNtQ/yFKM=
Subject key identifier: 92:52:27:08:BB:1F:47:49:5F:28:E8:5B:5D:06:2E:CA:6C:C1:F7:CE
Certificate issuer: /CN=0dcef0e1fa4a0088ff8d7b91b8a864eed9ec61dc
Certificate serial: 013520D5
Authority key identifier: 0D:CE:F0:E1:FA:4A:00:88:FF:8D:7B:91:B8:A8:64:EE:D9:EC:61:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dc7w4fpKAIj_jXuRuKhk7tnsYdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/f9c0f8-bb07-4234-ab06-2b1aaae880ea/1/klInCLsfR0lfKOhbXQYuymzB984.roa
Signing time: Sat 01 Jan 2022 10:59:33 +0000
ROA not before: Sat 01 Jan 2022 10:59:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 194.126.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20259029 (0x13520d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dcef0e1fa4a0088ff8d7b91b8a864eed9ec61dc
Validity
Not Before: Jan 1 10:59:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=92522708bb1f47495f28e85b5d062eca6cc1f7ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:29:35:70:01:8d:c5:28:89:83:d6:8c:9b:05:
bf:42:33:94:c3:a5:cd:03:52:5b:06:2f:18:7b:bf:
14:f6:27:b2:2d:52:c2:e0:dc:4a:48:79:56:53:3f:
fd:48:5f:f7:49:f7:99:d9:e8:60:2e:e9:93:0e:ee:
38:36:2d:80:dd:b3:3a:98:a1:76:f5:a8:b7:20:37:
14:6e:a1:30:84:c7:b0:75:de:c4:c7:a0:e3:37:0f:
20:bd:76:4a:88:c3:8c:56:f0:7e:91:0c:59:9e:f7:
b4:0a:9c:7d:02:02:4a:99:4a:0e:83:2e:b0:83:c0:
63:e9:eb:25:5c:42:5f:0c:6c:01:e9:48:b7:2a:c5:
9f:8c:8c:2f:2b:5b:57:0a:de:6a:a2:e0:29:3c:a2:
37:7d:63:b5:f3:0a:f4:9a:d4:d2:a5:39:d3:59:0a:
58:3a:67:d8:0c:c2:97:26:6c:ca:2f:83:b4:9f:86:
30:a8:96:e6:3f:d9:ce:4b:a1:0b:2d:4c:bf:56:2f:
62:ca:fa:e2:84:e1:42:0a:b5:03:69:c9:46:41:aa:
61:23:1b:26:c2:b7:b9:21:f1:c6:99:fc:2c:3a:4d:
10:d8:18:07:42:de:e4:6d:dd:16:e8:9a:d4:21:60:
70:40:0e:8b:b2:da:db:8f:60:e1:12:e4:ce:36:04:
b2:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:52:27:08:BB:1F:47:49:5F:28:E8:5B:5D:06:2E:CA:6C:C1:F7:CE
X509v3 Authority Key Identifier:
keyid:0D:CE:F0:E1:FA:4A:00:88:FF:8D:7B:91:B8:A8:64:EE:D9:EC:61:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dc7w4fpKAIj_jXuRuKhk7tnsYdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/f9c0f8-bb07-4234-ab06-2b1aaae880ea/1/klInCLsfR0lfKOhbXQYuymzB984.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/f9c0f8-bb07-4234-ab06-2b1aaae880ea/1/Dc7w4fpKAIj_jXuRuKhk7tnsYdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.126.176.0/24
Signature Algorithm: sha256WithRSAEncryption
99:a9:40:8c:a9:91:79:7a:a8:19:e2:9a:45:cb:3f:9b:93:cd:
27:18:0f:74:82:77:87:f6:5b:24:45:f0:00:94:96:1d:bf:27:
6b:4f:22:55:26:49:e8:26:e2:6b:ea:bf:a9:8d:6e:9a:63:8a:
90:30:b9:a2:f4:6b:f3:d7:12:c8:f8:78:32:ef:01:70:8d:82:
d8:5a:f9:0c:f3:88:c6:61:11:dd:d2:8c:77:20:a6:0c:8a:6f:
5f:08:18:91:86:a5:23:d8:06:d1:ac:24:37:1a:a2:87:58:b4:
c0:1f:ec:d7:89:b6:66:93:3f:69:c2:39:39:ae:b8:c8:61:43:
f9:52:29:4e:36:37:04:d1:48:59:8f:25:3c:56:71:a2:98:50:
64:10:7a:81:9b:3c:2c:fb:5e:fe:a4:82:18:c3:a4:e2:24:36:
2d:3a:93:03:3a:0e:92:6b:1e:c3:88:02:a7:f2:1a:f4:d3:df:
3d:86:5d:20:a2:8c:7d:b3:23:24:1f:db:25:ea:b0:00:03:bc:
55:44:c0:83:e7:1d:fd:be:82:9a:f6:37:18:0d:8e:3a:71:03:
cb:b0:da:6d:1b:b4:44:03:b9:8f:27:5f:65:d5:e0:72:e4:36:
56:34:e5:53:68:a1:21:e3:3c:5d:49:09:2f:65:df:ce:86:07:
b4:31:b5:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:49 2023 by rpki-client on console-ams.rpki-client.org