Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/ksyPcQYX1FWkne_hTSM_HVQ9kwE.roa
File: ksyPcQYX1FWkne_hTSM_HVQ9kwE.roa (raw, json)
Hash identifier: JuSSvTw6Ek9QC3j04rSPw7wsHeNV1KLiB9OWaPHACK8=
Subject key identifier: 92:CC:8F:71:06:17:D4:55:A4:9D:EF:E1:4D:23:3F:1D:54:3D:93:01
Certificate issuer: /CN=352ae33b11b36a319ba81347d852480d8e74c87d
Certificate serial: 05FC1815
Authority key identifier: 35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/ksyPcQYX1FWkne_hTSM_HVQ9kwE.roa
Signing time: Sat 01 Jan 2022 13:55:32 +0000
ROA not before: Sat 01 Jan 2022 13:55:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205888
IP address blocks: 188.85.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100407317 (0x5fc1815)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=352ae33b11b36a319ba81347d852480d8e74c87d
Validity
Not Before: Jan 1 13:55:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=92cc8f710617d455a49defe14d233f1d543d9301
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:f6:14:0f:49:2b:f5:c4:d8:d6:dc:a5:a0:ef:
60:8a:d0:00:f8:4b:71:5f:8c:55:0e:5b:00:9e:73:
cd:04:e7:97:40:39:c6:8a:a0:6d:b3:46:72:d1:44:
d2:01:2f:15:47:33:06:d9:5f:fb:88:b5:f6:28:eb:
07:84:0c:85:0e:a9:f7:1e:70:61:6f:5a:e6:b6:b4:
f1:1b:95:0d:ac:3d:02:34:e1:2c:7f:00:f3:0a:ea:
c0:77:22:13:73:62:a6:ff:86:78:90:6a:7c:6c:6e:
4c:12:87:b1:ec:f0:8d:10:fd:d3:c9:a0:1f:2f:51:
4d:07:9d:e9:6e:7c:5d:5c:3d:aa:37:72:fe:1f:19:
db:89:6f:e8:74:38:3d:6e:27:dc:9e:f7:01:b1:67:
0f:ce:88:86:f4:ad:45:67:65:98:4c:f3:ca:bd:9d:
44:ce:b6:31:c3:b0:c7:65:f5:14:72:f9:ee:17:be:
83:b3:fd:43:30:93:ba:2d:f1:60:c5:22:74:70:d8:
c5:e4:0e:27:53:5d:8c:d1:f8:f5:f0:69:32:7c:e5:
5b:ee:2b:fe:32:13:bf:65:cb:2c:45:a3:d1:64:b8:
2f:29:89:67:e2:6c:89:f1:7d:20:ca:1b:de:56:de:
3a:52:a4:35:fb:c8:16:7f:4d:e3:f8:62:4b:44:8c:
c3:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:CC:8F:71:06:17:D4:55:A4:9D:EF:E1:4D:23:3F:1D:54:3D:93:01
X509v3 Authority Key Identifier:
keyid:35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/ksyPcQYX1FWkne_hTSM_HVQ9kwE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/NSrjOxGzajGbqBNH2FJIDY50yH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.85.140.0/24
Signature Algorithm: sha256WithRSAEncryption
97:42:ee:da:50:66:e1:67:53:98:6d:ff:f4:36:79:d7:c0:e8:
06:dd:50:54:fd:3f:78:f4:cd:5d:96:db:5b:e4:73:f2:0c:40:
ce:7e:ed:5c:f5:21:96:f1:49:b2:17:2d:05:82:ab:11:23:bc:
8e:05:72:a4:15:85:5a:db:47:8a:6a:3f:f3:af:5b:46:f5:ce:
e4:3f:24:90:30:62:a5:52:8b:c6:da:8c:a1:89:e4:3d:77:d1:
7a:d6:77:bd:52:13:c7:7a:1e:60:f0:b9:ff:90:63:5e:17:ee:
b4:cd:63:49:40:e1:1e:37:c2:a3:8f:bd:6e:fb:46:1e:f2:46:
05:e2:a3:2d:40:fe:55:5a:64:43:ef:a3:16:1a:83:76:dc:95:
95:c6:18:58:d5:d4:c2:b8:09:08:03:fd:d4:fc:a2:41:7e:d9:
8d:bb:9a:5b:3b:86:84:80:7a:c5:6b:45:19:2b:ee:89:91:cd:
f1:ce:ab:d4:c0:c2:bc:05:ff:fe:3d:85:18:f0:68:8e:1e:49:
71:6b:87:5e:41:98:ca:11:04:e6:97:75:b7:04:e0:6c:c1:19:
91:5a:6d:69:01:f2:0a:1d:1d:c7:63:58:4b:97:53:d0:12:85:
3a:d5:3d:d9:fb:85:f7:86:37:8f:24:6f:e1:01:e3:9e:20:5f:
37:29:d2:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:01 2024 by rpki-client on console-fra.rpki-client.org