Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/K2rO03wUyRW40TkSQH-B_EzKKUY.roa
File: K2rO03wUyRW40TkSQH-B_EzKKUY.roa (raw, json)
Hash identifier: wqt4x3zW0he56ONQNkA5JiJQdHYj2RYyGDeGDRbr9fI=
Subject key identifier: 2B:6A:CE:D3:7C:14:C9:15:B8:D1:39:12:40:7F:81:FC:4C:CA:29:46
Certificate issuer: /CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Certificate serial: 09914DF9
Authority key identifier: DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/K2rO03wUyRW40TkSQH-B_EzKKUY.roa
Signing time: Sat 01 Jan 2022 05:04:04 +0000
ROA not before: Sat 01 Jan 2022 05:04:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50564
IP address blocks: 176.227.156.0/24 maxlen: 24
178.156.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160517625 (0x9914df9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Validity
Not Before: Jan 1 05:04:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b6aced37c14c915b8d13912407f81fc4cca2946
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:55:cd:1b:2b:f1:24:58:f9:6b:7d:b1:77:0a:
87:bb:ee:c9:01:a0:fa:a4:d0:b7:ec:38:8c:fb:4c:
70:ed:a2:27:ad:59:8b:89:b9:1f:01:ce:54:72:88:
73:44:57:41:3a:cd:b7:16:2a:3c:41:33:7d:96:14:
b3:85:f6:58:69:6e:f1:51:2b:75:d3:3a:96:76:b9:
48:8e:4a:12:8d:d7:49:cb:a1:31:f9:d1:30:3c:d5:
e1:1f:7d:89:07:d7:da:1b:7a:5a:8b:bc:9e:a1:5c:
c8:b2:4b:68:3f:3a:13:25:5d:f0:ce:ef:44:a7:4c:
22:2e:71:16:7a:72:7c:6d:1a:65:c9:80:54:df:99:
5e:b6:7b:91:20:51:d7:5c:b1:8c:5e:9e:4b:11:db:
60:17:0d:fa:b5:40:93:67:79:22:e1:e6:82:35:bb:
3e:e8:26:c0:96:1a:77:eb:29:ca:ec:be:a0:bd:ec:
82:e3:41:3d:58:12:f4:7d:10:2e:8c:3e:70:7e:5f:
e8:60:5b:25:02:22:89:7f:98:fd:cd:79:9f:fb:ab:
db:d5:c0:e4:a1:ff:95:d4:a8:07:38:10:a7:0c:c7:
7c:e4:4e:8f:3f:d3:48:f3:1e:fc:65:0e:41:e6:54:
47:26:8d:3a:04:52:02:00:5c:60:73:f7:f7:26:5c:
41:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:6A:CE:D3:7C:14:C9:15:B8:D1:39:12:40:7F:81:FC:4C:CA:29:46
X509v3 Authority Key Identifier:
keyid:DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/K2rO03wUyRW40TkSQH-B_EzKKUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.227.156.0/24
178.156.77.0/24
Signature Algorithm: sha256WithRSAEncryption
33:2b:fa:28:93:75:cd:90:b1:ce:d0:c5:26:0a:31:d6:ce:94:
bb:51:6f:db:0d:64:bc:91:47:b2:a0:89:b5:b5:08:97:60:b9:
8e:f9:49:34:ac:c9:0b:70:df:ba:55:2a:8d:d2:2d:5c:d6:d9:
58:20:5c:f1:1d:17:27:9d:91:71:d2:39:2c:4a:d8:9b:e4:61:
d5:95:f3:3b:ed:e1:77:35:6e:28:fe:f2:5a:66:dd:49:7a:bf:
6d:51:a8:01:42:da:d8:3f:dc:7b:a5:fc:17:66:13:e0:a0:03:
2b:2c:b7:41:19:d2:45:70:f5:19:65:79:e6:52:93:d2:2b:d1:
8f:9f:f7:31:91:56:61:41:a7:c5:64:39:bd:af:4f:06:2d:4a:
ce:59:a2:74:11:2a:2c:76:21:54:a7:8e:eb:38:0b:1a:29:a6:
d8:12:cb:85:32:1c:57:7d:cc:43:04:a1:95:65:d5:ca:fd:3c:
3b:de:29:41:bf:10:30:ea:9a:92:70:f2:53:fc:39:13:1c:c0:
87:93:9b:fe:73:e0:df:58:52:f2:8a:cf:15:d2:ef:5b:06:12:
ae:32:88:5a:3c:7a:fe:78:c8:09:b7:f5:75:84:e5:82:4e:af:
96:2f:06:f6:b3:49:af:27:0d:10:e0:2e:f0:82:4d:c5:b2:65:
4d:31:c1:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:02 2023 by rpki-client on console-ams.rpki-client.org