Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/cf0488-498f-4554-976d-19aa8fb82da3/1/K9PRU967si0XJLkdEY2yCZkVCHE.roa
File: K9PRU967si0XJLkdEY2yCZkVCHE.roa (raw, json)
Hash identifier: /+fzVUB86b62Cdu8auNOEZtMP2o6GeVEt44gjOqNOuc=
Subject key identifier: 2B:D3:D1:53:DE:BB:B2:2D:17:24:B9:1D:11:8D:B2:09:99:15:08:71
Certificate issuer: /CN=04725e10669a8f7bee3bbc104dae82570598006d
Certificate serial: D44D24
Authority key identifier: 04:72:5E:10:66:9A:8F:7B:EE:3B:BC:10:4D:AE:82:57:05:98:00:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BHJeEGaaj3vuO7wQTa6CVwWYAG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/cf0488-498f-4554-976d-19aa8fb82da3/1/K9PRU967si0XJLkdEY2yCZkVCHE.roa
Signing time: Sat 01 Jan 2022 05:04:41 +0000
ROA not before: Sat 01 Jan 2022 05:04:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 188.244.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13913380 (0xd44d24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04725e10669a8f7bee3bbc104dae82570598006d
Validity
Not Before: Jan 1 05:04:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2bd3d153debbb22d1724b91d118db20999150871
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1b:aa:5e:28:6e:d6:e5:24:26:8d:08:0d:66:
c5:16:be:78:60:d1:4e:ba:f4:b9:ac:e8:c1:69:88:
13:82:ec:ca:39:21:b2:52:ae:f9:b8:26:07:a2:6d:
e9:dc:d0:1d:90:d1:94:f4:61:a9:6e:68:e0:51:81:
a6:04:d3:6e:5e:66:bd:26:5b:8b:42:63:05:1f:41:
0a:14:46:f7:00:0b:6a:53:11:df:38:53:c5:40:3a:
f0:3c:72:3b:9f:ca:ad:fc:f2:eb:e0:9a:ae:6e:55:
a1:c4:6a:82:22:d8:08:b0:74:c7:71:4e:3b:44:0c:
8c:d7:6c:98:4a:29:c2:88:2e:d8:e2:5e:8a:7d:74:
0c:69:62:96:13:e8:d4:92:6e:97:3e:b0:df:7f:d2:
c2:a4:af:61:84:1b:a6:78:b8:ed:42:b6:fd:23:6d:
0f:cd:5c:b5:7c:f1:85:a8:26:86:c1:d6:ea:fe:1f:
b0:d7:ed:0f:f3:86:c0:97:3d:78:4f:1a:2f:9c:fa:
17:8f:8d:39:e0:46:73:32:f2:52:80:5d:6f:8c:c7:
43:d9:44:b3:f4:0a:e0:74:68:bd:5c:c2:92:3f:d2:
a1:05:13:02:01:6e:0e:e2:f6:e2:cb:73:59:90:68:
be:bf:f2:45:7b:e7:3f:a8:ba:69:14:3b:55:bc:fd:
78:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:D3:D1:53:DE:BB:B2:2D:17:24:B9:1D:11:8D:B2:09:99:15:08:71
X509v3 Authority Key Identifier:
keyid:04:72:5E:10:66:9A:8F:7B:EE:3B:BC:10:4D:AE:82:57:05:98:00:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BHJeEGaaj3vuO7wQTa6CVwWYAG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/cf0488-498f-4554-976d-19aa8fb82da3/1/K9PRU967si0XJLkdEY2yCZkVCHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/cf0488-498f-4554-976d-19aa8fb82da3/1/BHJeEGaaj3vuO7wQTa6CVwWYAG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.244.119.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:a9:b2:fd:6f:a7:5c:94:d3:91:d9:82:98:10:80:36:99:1a:
22:20:64:bd:2e:2f:9d:a5:e2:40:f8:ac:ba:3d:03:d3:cf:d7:
51:dc:16:30:a0:59:ee:7c:38:92:ed:b0:b6:fa:7b:12:94:ec:
93:71:a9:63:c2:3b:e8:11:50:7e:21:a6:ff:c7:e8:3f:72:6c:
d9:b2:8d:b9:e8:8f:0c:5e:15:9c:47:e6:e6:da:d7:a2:38:b6:
07:3d:ce:97:a7:72:38:e1:56:a8:7b:d8:ee:8e:c3:ae:5b:16:
69:aa:eb:db:d0:94:5a:45:fd:31:aa:a8:2b:e4:be:83:21:ee:
04:54:7d:c1:d4:f5:e6:d1:a3:02:08:a6:15:ff:b3:d3:9b:d4:
4c:ba:c9:a0:f6:9c:b0:87:d0:f4:77:f9:74:6c:b6:76:76:74:
fa:07:8a:16:1b:06:55:42:97:a7:9b:92:ea:f0:7b:ed:b2:e0:
4d:f8:f5:78:04:ee:ed:95:23:87:2f:a2:21:df:9c:1d:de:df:
af:7e:70:a5:39:a7:0a:57:52:bf:5c:90:24:70:0e:50:72:a8:
df:f2:63:ea:90:2a:12:02:1e:de:ce:65:73:33:65:31:aa:f1:
dc:6c:16:8d:09:d7:ac:d0:08:7b:cd:62:6f:c8:14:16:6c:bc:
25:4e:70:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:02 2023 by rpki-client on console-ams.rpki-client.org