Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/K993Nkf79I4giWTUCDHBcanNcec.roa
File: K993Nkf79I4giWTUCDHBcanNcec.roa (raw, json)
Hash identifier: YQGIqsjIG34vHZ/gNTsmDTfhEySmgRvDsRXPrIWPHVY=
Subject key identifier: 2B:DF:77:36:47:FB:F4:8E:20:89:64:D4:08:31:C1:71:A9:CD:71:E7
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0182EAAAE9B1A79C4C9D676F97E23D763CE2
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/K993Nkf79I4giWTUCDHBcanNcec.roa
Signing time: Mon 29 Aug 2022 17:34:05 +0000
ROA not before: Mon 29 Aug 2022 17:34:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 188.215.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ea:aa:e9:b1:a7:9c:4c:9d:67:6f:97:e2:3d:76:3c:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Aug 29 17:34:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2bdf773647fbf48e208964d40831c171a9cd71e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:31:82:f9:d2:34:7e:2a:ac:dd:dd:c1:72:a6:
f6:3c:f7:c8:1c:c7:a1:bd:b2:2d:33:96:1d:62:74:
70:9c:9e:ba:e2:a4:9e:14:fa:bb:fd:a9:8e:6d:61:
35:e9:8b:8a:4c:cb:dc:de:d9:83:38:fd:5b:fc:71:
b6:5c:fd:4f:40:6f:5e:de:8c:80:9f:56:d9:11:ce:
44:43:90:35:98:e0:04:4c:cb:20:67:1b:3c:95:2f:
ea:c0:b8:ab:36:d6:e3:3a:b6:3d:c5:54:5a:60:7e:
e4:7b:6f:9a:b7:ba:00:32:b1:b3:5b:07:5b:af:d5:
6d:1e:44:48:9b:5b:8d:cd:e3:bc:30:f2:2a:e2:0e:
59:61:ec:5a:57:83:d1:75:a3:c3:db:50:04:67:64:
e0:df:bd:4a:d3:64:25:ec:06:2a:2a:30:45:b6:a4:
93:4e:98:e7:70:66:f0:a1:16:63:14:54:0f:61:ad:
65:ca:d8:ee:26:ae:28:9f:e9:b0:7e:d3:47:43:cb:
e5:57:25:56:72:4f:84:2d:dc:73:98:8a:01:43:ea:
2d:83:ed:af:33:e8:ba:33:37:56:c3:74:6e:d5:15:
b7:bb:6e:a9:23:01:0b:34:c9:a3:61:c5:5a:d4:d7:
92:aa:0b:89:a8:96:ba:f4:83:d6:9a:da:41:2a:d3:
aa:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:DF:77:36:47:FB:F4:8E:20:89:64:D4:08:31:C1:71:A9:CD:71:E7
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/K993Nkf79I4giWTUCDHBcanNcec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.215.73.0/24
Signature Algorithm: sha256WithRSAEncryption
34:d6:c7:f7:6b:27:3e:57:de:a7:c0:14:7e:f2:f8:32:60:2c:
4b:8d:83:f6:6d:44:fb:bc:b1:f0:73:a1:2a:db:da:6c:40:a8:
cd:83:b0:99:61:e8:8d:ec:74:80:d7:bc:be:6d:ae:98:d2:a8:
fa:83:0b:fc:17:0b:f9:54:6b:88:a9:a8:d9:18:92:bb:73:8c:
4b:c1:f3:96:08:27:b3:52:91:c2:9f:b2:68:0d:63:b7:22:59:
90:76:60:1b:f2:10:a7:f1:64:20:8c:54:f4:00:c2:20:59:6c:
16:3e:9a:30:58:a7:12:8b:ba:98:03:ee:14:4c:22:65:c2:27:
12:05:17:3d:41:6d:2d:b6:f3:11:bb:ba:16:9b:46:5d:2f:3a:
6e:ed:ab:2d:39:18:57:9d:88:b6:4f:05:ad:24:77:55:ad:3f:
c3:42:f6:3f:a8:ca:67:b7:dd:14:de:27:7b:c1:62:a1:ef:98:
a6:37:21:a4:4e:ae:31:32:6a:1a:2c:80:76:81:3c:bc:b8:6a:
5f:b8:79:77:a4:4d:ba:14:d8:57:d4:7c:5c:50:90:42:ae:d7:
66:8b:de:ee:88:f0:b9:7a:b8:36:31:e8:d5:20:29:a0:1e:67:
6f:7d:43:a6:e7:69:cc:d4:ab:99:51:49:12:e9:d0:9e:a2:40:
db:24:14:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:38 2024 by rpki-client on console-ams.rpki-client.org