Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/KhOoJwJ9cmoTZH3Q5332HDBdHHM.roa
File: KhOoJwJ9cmoTZH3Q5332HDBdHHM.roa (raw, json)
Hash identifier: l46+LnJnqJpxuYUaBvyDwNVCqRZpOAjM3yep176DdqM=
Subject key identifier: 2A:13:A8:27:02:7D:72:6A:13:64:7D:D0:E7:7D:F6:1C:30:5D:1C:73
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 01825A6B657BF4BA75D776B62429098158B1
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/KhOoJwJ9cmoTZH3Q5332HDBdHHM.roa
Signing time: Mon 01 Aug 2022 17:19:23 +0000
ROA not before: Mon 01 Aug 2022 17:19:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 188.255.229.0/24 maxlen: 24
77.105.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:5a:6b:65:7b:f4:ba:75:d7:76:b6:24:29:09:81:58:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Aug 1 17:19:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a13a827027d726a13647dd0e77df61c305d1c73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:e4:aa:f0:e3:81:2e:75:ec:a4:9d:5b:83:a1:
c3:ac:46:65:0b:9c:6a:69:48:88:74:43:30:9c:d4:
2c:4f:5f:e2:95:eb:f7:86:5f:6f:37:de:06:21:d6:
5b:72:3c:c5:ab:ac:41:76:fa:2c:3c:8b:3e:d5:9d:
c3:f4:fb:3f:50:b2:e0:ac:0f:1d:ac:8f:23:c4:d6:
6e:6f:6c:51:ef:70:ed:43:d4:a2:20:11:1a:9f:b5:
41:ef:03:73:53:b7:df:d7:32:6d:07:2a:80:cf:dc:
a7:b2:25:b7:90:df:aa:12:c5:39:32:c3:36:e3:ee:
2f:82:0c:35:92:fe:67:1d:be:e1:b6:5c:e5:c7:e8:
cb:98:70:06:93:8a:91:13:72:0d:1e:61:fa:ba:38:
50:4b:83:ef:72:28:1e:e9:51:6c:20:a5:fc:e6:21:
c2:3e:ee:0c:f7:85:8d:bc:db:f3:54:23:fd:c6:1d:
49:8d:27:92:08:e0:b3:5b:87:b6:d6:95:a3:ac:1d:
55:a0:84:6a:64:10:df:76:29:3c:7e:4e:1e:b5:d9:
f4:c8:a4:85:8a:36:8c:e0:50:0f:fe:52:ef:cc:cb:
21:2c:cb:ee:4c:8e:1b:3a:5e:48:3e:b8:9a:3d:b9:
36:3d:7c:d3:ca:7c:d5:cc:32:e8:78:b9:0a:a5:6e:
e9:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:13:A8:27:02:7D:72:6A:13:64:7D:D0:E7:7D:F6:1C:30:5D:1C:73
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/KhOoJwJ9cmoTZH3Q5332HDBdHHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.4.0/24
188.255.229.0/24
Signature Algorithm: sha256WithRSAEncryption
59:a0:ae:39:73:1e:7c:de:97:2d:16:3e:ff:40:99:62:4c:22:
f1:82:d0:89:7f:45:fb:ed:31:2a:6c:dd:a1:56:46:c9:92:7e:
a4:d4:3e:fc:60:b5:90:4e:ce:89:e2:59:31:a4:bc:09:89:11:
8e:08:59:82:bf:96:1d:3a:61:24:62:8a:e7:d7:08:77:43:dc:
95:57:05:8e:f2:2c:90:e7:8f:5d:0e:c0:a8:3a:8e:f2:22:79:
00:b9:80:ee:75:68:cb:7b:5c:36:5b:3e:42:43:20:ee:01:5b:
2b:36:78:06:7f:72:d4:54:7b:62:dd:e1:fc:43:0d:e6:0b:d7:
d1:43:4f:0d:09:43:5a:82:e4:9f:b6:34:49:e6:f3:9e:cc:c1:
bb:2c:95:68:d3:62:7e:70:ad:67:28:20:09:a4:dd:f7:0d:aa:
05:9a:f7:dd:27:e1:7e:a6:d4:b1:32:55:42:22:fa:e8:f6:c3:
04:a0:f6:4a:1c:2c:cf:76:8b:86:df:82:15:e7:b9:d3:ad:cc:
9a:7e:8b:8e:62:f6:4d:1f:1e:9f:df:d4:04:63:63:9f:ac:59:
02:99:6c:55:5b:be:aa:36:3a:83:f0:c0:c0:4f:83:a5:57:3e:
19:80:8b:04:ba:0b:e6:7c:08:e4:3b:cb:58:3b:a0:4d:4b:b8:
91:e4:b1:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:04 2024 by rpki-client on console-ams.rpki-client.org