Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/kKQsTIxTX1CCSX6511IB8p4LH64.roa
File: kKQsTIxTX1CCSX6511IB8p4LH64.roa (raw, json)
Hash identifier: u6dPZRjVgy9Eegin9Y5AE8jIrAVdLJtrCycMuK/BH9M=
Subject key identifier: 90:A4:2C:4C:8C:53:5F:50:82:49:7E:B9:D7:52:01:F2:9E:0B:1F:AE
Certificate issuer: /CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Certificate serial: 01835FCC2618E5ECF17E8C7E1DE0306AD256
Authority key identifier: 54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/kKQsTIxTX1CCSX6511IB8p4LH64.roa
Signing time: Wed 21 Sep 2022 11:25:58 +0000
ROA not before: Wed 21 Sep 2022 11:25:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 150303
IP address blocks: 185.104.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:5f:cc:26:18:e5:ec:f1:7e:8c:7e:1d:e0:30:6a:d2:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Validity
Not Before: Sep 21 11:25:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90a42c4c8c535f5082497eb9d75201f29e0b1fae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9c:2a:8e:e0:54:81:c8:ff:f5:98:23:af:bd:
21:29:55:a5:39:2c:de:d7:de:f6:2d:f9:15:28:66:
5a:b7:8e:9e:00:30:b4:2e:10:81:0b:77:e5:71:a4:
4c:2f:a7:38:fd:ab:11:45:45:71:e2:a8:5f:1c:15:
d1:46:80:59:92:72:3d:70:2a:25:90:29:b1:08:40:
ce:cc:b5:20:08:68:fb:b7:02:eb:55:66:80:09:58:
39:9f:41:4b:ce:bb:b6:65:53:b6:7f:ea:78:86:da:
6d:a2:33:0e:a9:02:df:92:b0:e2:79:1e:c7:63:63:
31:da:ad:c6:7f:f2:a9:82:75:b3:8d:d1:c9:b3:8a:
49:14:4b:3e:5c:b6:60:5e:0c:9e:fc:55:73:02:ed:
e8:90:1a:db:84:0c:8f:43:b0:9c:f6:5a:bc:c6:3f:
70:ad:7f:ec:ed:a0:45:7b:26:9a:e7:c6:c5:ac:5f:
20:e6:75:54:cf:b0:9e:a9:ce:d0:37:a5:66:ab:51:
b4:02:66:88:b3:c6:f3:b8:9b:a2:6c:0f:b1:9d:3e:
88:9d:c5:6e:74:69:a2:f3:45:9d:2f:97:88:f1:f8:
ce:06:fe:ed:fb:89:57:30:c2:c3:9b:bc:ff:91:b2:
e4:b2:16:46:25:95:02:a4:cb:65:4e:51:64:d6:dd:
4e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:A4:2C:4C:8C:53:5F:50:82:49:7E:B9:D7:52:01:F2:9E:0B:1F:AE
X509v3 Authority Key Identifier:
keyid:54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/kKQsTIxTX1CCSX6511IB8p4LH64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/VB_cei8RpXZtOte99iXOXhGaj98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.38.0/24
Signature Algorithm: sha256WithRSAEncryption
44:91:e1:e4:20:75:17:57:20:22:49:79:08:0f:09:42:86:3b:
6d:a7:d8:71:6d:f1:27:04:e0:62:92:bd:e1:6a:59:ce:54:9d:
9f:ac:8a:11:53:53:a0:82:e8:31:ce:3a:3f:7a:9a:d5:70:b5:
12:8b:53:63:e7:97:87:b1:13:5e:0d:da:ed:2e:e5:c3:c8:fd:
cc:d2:1a:15:50:a2:36:6e:e7:24:4e:19:12:9f:c4:3c:c0:40:
03:9b:e2:9a:99:54:d5:76:15:d3:31:fe:62:ef:76:09:e5:b7:
9c:6e:0e:db:be:3a:9d:97:43:f8:dd:c0:51:80:51:f7:4c:ae:
f7:2a:5e:8a:54:bf:59:f1:20:d9:30:c0:96:78:b1:4a:7e:b0:
86:31:29:73:56:ea:48:9e:65:7e:73:86:17:75:b5:c3:52:81:
fa:f2:94:e2:d8:e2:1c:a7:bc:f0:5b:dd:ec:29:7e:f7:7b:a9:
5f:37:7f:46:da:2c:6a:38:7c:b4:db:92:7e:01:be:73:31:69:
de:14:cc:ad:48:61:c1:64:77:b7:b3:2d:ae:04:2b:d0:3c:cb:
d6:87:88:e1:46:36:9b:f3:70:6c:07:6e:72:ce:0b:8b:4b:6c:
98:3c:bd:dc:1c:5b:69:c4:fe:5b:9f:f1:38:1c:17:93:c7:91:
70:37:a2:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:57 2023 by rpki-client on console-fra.rpki-client.org