Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/c2f69f-ee8e-475a-9079-ca51fb30eddf/1/K4KGgX620ADx7RtQjL1oBXRLMGg.roa
File: K4KGgX620ADx7RtQjL1oBXRLMGg.roa (raw, json)
Hash identifier: EAuT2o4nkSJ+kw8MW1xBE8USxtSDz8e+smWjrEBTNBg=
Subject key identifier: 2B:82:86:81:7E:B6:D0:00:F1:ED:1B:50:8C:BD:68:05:74:4B:30:68
Certificate issuer: /CN=f354e520e7bb7e13f532cecf05a82d2b797952a2
Certificate serial: 018321529302F8D0CFD551751A52D911871F
Authority key identifier: F3:54:E5:20:E7:BB:7E:13:F5:32:CE:CF:05:A8:2D:2B:79:79:52:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/81TlIOe7fhP1Ms7PBagtK3l5UqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/c2f69f-ee8e-475a-9079-ca51fb30eddf/1/K4KGgX620ADx7RtQjL1oBXRLMGg.roa
Signing time: Fri 09 Sep 2022 08:16:43 +0000
ROA not before: Fri 09 Sep 2022 08:16:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28725
IP address blocks: 194.50.64.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:21:52:93:02:f8:d0:cf:d5:51:75:1a:52:d9:11:87:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f354e520e7bb7e13f532cecf05a82d2b797952a2
Validity
Not Before: Sep 9 08:16:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b8286817eb6d000f1ed1b508cbd6805744b3068
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:64:2a:8d:dd:8f:3a:1d:25:d7:b0:ab:41:7b:
28:7a:7c:10:86:fc:c9:0f:da:f6:fe:dd:1d:d6:df:
69:e2:27:77:10:25:6a:f1:bb:72:94:07:52:ef:1a:
7b:89:47:8e:d8:bd:a9:5d:f5:ad:97:75:07:bb:9a:
0a:76:72:77:f4:48:ef:cb:a6:db:7f:e7:c4:04:db:
55:84:38:3a:3b:24:6b:cb:36:69:3e:86:6d:ee:d6:
e6:7c:03:e7:6e:74:cc:80:c5:4a:ab:32:98:1c:c2:
13:8a:ad:10:17:ed:fb:72:a2:5e:63:11:d3:05:4e:
fc:f4:0f:e1:12:fc:58:9b:c3:00:41:7d:84:c5:27:
d1:c1:f6:4e:fe:04:55:91:cd:3d:d6:d7:68:4e:06:
da:c4:1d:40:92:19:d3:64:3b:90:ad:09:ba:b4:56:
cb:8a:56:ef:46:e4:df:99:f6:83:81:5e:ab:e8:eb:
40:7d:50:37:17:d9:dc:d6:94:f4:04:f1:66:31:2f:
d5:c1:24:33:50:f2:9f:22:4e:61:8f:46:95:2c:fc:
b0:4f:14:df:99:07:6d:f8:7a:af:14:02:04:a9:b8:
28:38:e7:a4:78:eb:7b:93:21:bd:5e:6b:8e:67:e9:
78:7b:ef:fc:ef:89:28:c7:8c:37:d1:ab:48:75:fe:
79:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:82:86:81:7E:B6:D0:00:F1:ED:1B:50:8C:BD:68:05:74:4B:30:68
X509v3 Authority Key Identifier:
keyid:F3:54:E5:20:E7:BB:7E:13:F5:32:CE:CF:05:A8:2D:2B:79:79:52:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/81TlIOe7fhP1Ms7PBagtK3l5UqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/c2f69f-ee8e-475a-9079-ca51fb30eddf/1/K4KGgX620ADx7RtQjL1oBXRLMGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/c2f69f-ee8e-475a-9079-ca51fb30eddf/1/81TlIOe7fhP1Ms7PBagtK3l5UqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.64.0/22
Signature Algorithm: sha256WithRSAEncryption
70:9e:14:ac:f4:71:26:3c:51:b1:dc:87:0b:91:cd:9a:64:17:
1b:c2:11:53:b3:ef:66:68:16:96:2e:75:96:e7:55:39:f8:68:
da:06:1a:20:c8:9e:d0:f3:11:48:de:73:fa:71:ea:4e:c8:9e:
f8:2d:1f:10:f7:b0:c5:1f:5e:e6:e4:b0:87:77:2b:d9:c4:25:
95:2f:55:1e:2c:8a:c0:b4:83:0b:85:7b:4f:9c:02:41:0a:69:
5d:bb:7f:21:b9:e5:e6:1f:c4:9d:03:eb:ec:44:8a:e7:99:04:
41:8e:3e:57:fb:b2:ca:bc:11:e5:46:fd:70:be:d6:03:15:df:
ae:a0:75:1a:80:12:cf:97:1f:0a:8c:b1:00:7c:07:a5:0b:75:
68:04:3f:fb:18:7b:19:04:8a:6d:91:db:ad:cb:da:aa:d8:e8:
f0:b4:fe:74:22:ea:f1:0f:8e:5a:6d:f4:ae:25:47:43:81:b6:
33:cf:93:7d:49:e4:18:3b:10:e9:92:6d:61:7c:52:c7:ec:9c:
3e:f7:c8:ca:c1:99:51:e6:25:59:3a:d4:54:b0:d7:ce:09:7a:
d1:e5:2e:84:1b:bd:d8:f8:9a:99:f7:4f:86:87:4b:7e:08:81:
94:c2:f2:37:0e:68:17:f6:2b:3a:8e:4b:d7:20:50:a3:85:11:
53:ff:b9:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:41 2023 by rpki-client on console-ams.rpki-client.org