Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/73beeb-6a05-4cca-86be-acfc3d2c2522/1/vKN5-4NMEJRNFlknAvxfTg7KqrM.roa
File: vKN5-4NMEJRNFlknAvxfTg7KqrM.roa (raw, json)
Hash identifier: 4BMDHJsd/fIGzdXQvA2co16YwXj2rH0qwZ+//2jec7k=
Subject key identifier: BC:A3:79:FB:83:4C:10:94:4D:16:59:27:02:FC:5F:4E:0E:CA:AA:B3
Certificate issuer: /CN=b6c167dfa9882b2aa8f84595f58a97c305ca43c5
Certificate serial: 275E2B2F
Authority key identifier: B6:C1:67:DF:A9:88:2B:2A:A8:F8:45:95:F5:8A:97:C3:05:CA:43:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tsFn36mIKyqo-EWV9YqXwwXKQ8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/73beeb-6a05-4cca-86be-acfc3d2c2522/1/vKN5-4NMEJRNFlknAvxfTg7KqrM.roa
Signing time: Sat 01 Jan 2022 14:02:24 +0000
ROA not before: Sat 01 Jan 2022 14:02:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62375
IP address blocks: 158.58.187.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 660482863 (0x275e2b2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6c167dfa9882b2aa8f84595f58a97c305ca43c5
Validity
Not Before: Jan 1 14:02:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bca379fb834c10944d16592702fc5f4e0ecaaab3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:33:bc:a8:74:a9:dd:df:5a:b9:5a:39:4f:16:
c2:80:b7:2e:4e:2d:32:29:fe:81:de:bc:1f:2c:0b:
7f:42:06:61:5b:bc:0d:a2:b5:f9:ef:d0:1a:88:43:
09:f8:90:77:4b:c5:b1:cb:71:26:05:ef:86:79:0b:
8a:dc:3f:aa:be:13:4b:19:37:5c:91:5a:dd:68:81:
5e:12:0d:b1:eb:5a:67:17:f3:13:6e:18:90:dd:78:
6e:93:c5:a7:6d:e3:f1:c2:a3:b2:44:ec:82:f4:86:
d8:ea:d7:18:1a:e0:de:af:d4:6e:18:20:65:ba:50:
22:3b:47:6b:50:94:a2:0b:14:97:7f:02:7e:fc:b0:
e0:a1:53:4f:d9:93:27:58:a0:19:20:e5:54:ee:6a:
7e:06:8f:c1:57:87:2e:3d:19:8b:28:ed:43:c4:ca:
aa:da:19:2e:57:b9:7b:ff:60:6e:5c:a5:dc:9f:04:
6c:d3:39:e7:05:40:a3:bd:9a:1b:37:ed:70:cb:b1:
a7:22:b1:4d:83:f5:e0:08:dd:63:01:64:8a:af:96:
49:8f:bd:68:d2:ce:76:5f:83:49:cd:8c:1b:ad:88:
49:5a:3b:b2:5f:56:24:0b:94:4d:06:bb:44:30:7d:
1d:d3:9d:04:f8:db:fd:be:a4:10:92:29:16:cc:77:
ec:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:A3:79:FB:83:4C:10:94:4D:16:59:27:02:FC:5F:4E:0E:CA:AA:B3
X509v3 Authority Key Identifier:
keyid:B6:C1:67:DF:A9:88:2B:2A:A8:F8:45:95:F5:8A:97:C3:05:CA:43:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tsFn36mIKyqo-EWV9YqXwwXKQ8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/73beeb-6a05-4cca-86be-acfc3d2c2522/1/vKN5-4NMEJRNFlknAvxfTg7KqrM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/73beeb-6a05-4cca-86be-acfc3d2c2522/1/tsFn36mIKyqo-EWV9YqXwwXKQ8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.58.187.0/24
Signature Algorithm: sha256WithRSAEncryption
93:e5:d6:b3:1d:f8:95:0c:9c:47:73:c9:a4:85:21:a7:be:86:
02:c0:1e:5f:ac:fb:60:50:f1:22:89:d0:82:0a:a9:57:eb:23:
06:c8:2f:cc:6f:94:8e:19:4d:38:fe:f3:36:fb:7f:20:50:54:
57:4e:d9:5f:ef:1f:81:f6:35:31:43:4a:fe:42:31:38:1f:df:
8e:72:66:23:cc:f7:7f:97:68:30:3e:80:d8:33:54:e7:3a:ac:
53:fa:5d:a3:c3:b3:64:fe:fa:a2:93:53:de:c9:f7:0e:65:33:
e2:65:ca:35:ea:29:52:f6:8c:ec:8b:fe:7e:f8:58:d1:cc:aa:
83:9a:eb:77:c7:23:57:a0:a7:3e:9c:52:7d:7b:00:8e:47:17:
78:81:07:46:83:c3:ae:d3:bf:62:a1:58:ef:70:46:2f:1d:af:
ad:3e:a9:97:63:8c:e7:54:7d:9a:9c:3f:b5:42:f0:8f:f7:80:
86:3b:d2:43:96:ac:6d:8e:22:e1:57:71:a4:3b:22:2d:2f:55:
48:23:25:48:d8:6f:c1:46:65:ff:78:fd:3c:08:7e:a3:ba:23:
7b:5d:57:4e:4f:10:7c:f3:27:de:26:35:fe:15:5d:81:b6:4a:
fa:ed:3f:91:fa:c7:59:c7:29:5c:80:d8:ba:5c:65:05:16:2c:
ec:64:31:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:52 2023 by rpki-client on console-fra.rpki-client.org