Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/kAGYrERLjNbh-wnB_-20x3upT9c.roa
File: kAGYrERLjNbh-wnB_-20x3upT9c.roa (raw, json)
Hash identifier: r+xboBpgkiKzqI6fbE1tqivytog+LNvZp5khMn7rowg=
Subject key identifier: 90:01:98:AC:44:4B:8C:D6:E1:FB:09:C1:FF:ED:B4:C7:7B:A9:4F:D7
Certificate issuer: /CN=5d39d15bd2fcc84771ba6aa29aa54428b21cef60
Certificate serial: 018389EB1AC23B84145980FD664B06F4CDEB
Authority key identifier: 5D:39:D1:5B:D2:FC:C8:47:71:BA:6A:A2:9A:A5:44:28:B2:1C:EF:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTnRW9L8yEdxumqimqVEKLIc72A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/kAGYrERLjNbh-wnB_-20x3upT9c.roa
Signing time: Thu 29 Sep 2022 15:43:49 +0000
ROA not before: Thu 29 Sep 2022 15:43:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57564
IP address blocks: 176.102.128.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:89:eb:1a:c2:3b:84:14:59:80:fd:66:4b:06:f4:cd:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d39d15bd2fcc84771ba6aa29aa54428b21cef60
Validity
Not Before: Sep 29 15:43:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=900198ac444b8cd6e1fb09c1ffedb4c77ba94fd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:6a:2a:82:02:92:5d:a3:30:61:80:d1:4c:7b:
61:53:10:03:c2:97:bf:c9:dc:7e:a6:fb:42:9e:c6:
71:13:b8:ba:06:a2:09:e3:ca:fa:8a:0a:3d:9d:9a:
fa:67:b5:37:54:a2:1b:1a:4b:69:f2:03:af:2a:49:
bb:28:82:9c:fa:1f:3d:b1:c1:52:25:d2:1b:c0:9d:
da:d3:fa:68:f9:e6:13:7d:89:3a:5c:ff:00:f2:95:
13:19:f6:fd:4d:e2:12:fc:45:62:29:6d:d1:35:b6:
31:56:df:02:7c:b4:c9:4f:b4:9d:ee:de:e6:a6:22:
07:2a:63:da:7b:83:05:4d:0a:c8:e3:63:59:e1:fc:
9e:e9:e2:bf:a9:fd:01:45:db:eb:0c:db:c8:1d:54:
fb:28:7f:4f:a3:72:d5:af:39:f6:d4:b0:98:bb:17:
c3:6c:61:80:e3:0b:bc:2e:73:18:47:02:6f:6f:e5:
cb:f7:14:c0:53:2d:b6:6a:3d:6e:2c:ce:eb:47:ed:
a0:77:bc:da:45:7e:7e:25:50:2d:5b:e2:e5:4b:50:
1d:4e:d2:37:bd:5d:47:74:04:17:fc:76:5c:e6:ce:
e2:bf:b1:10:36:62:41:b6:6f:d3:83:ff:1e:5d:6e:
fe:2f:7a:98:98:1e:5b:60:7c:0c:43:ec:be:65:25:
61:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:01:98:AC:44:4B:8C:D6:E1:FB:09:C1:FF:ED:B4:C7:7B:A9:4F:D7
X509v3 Authority Key Identifier:
keyid:5D:39:D1:5B:D2:FC:C8:47:71:BA:6A:A2:9A:A5:44:28:B2:1C:EF:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTnRW9L8yEdxumqimqVEKLIc72A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/kAGYrERLjNbh-wnB_-20x3upT9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/XTnRW9L8yEdxumqimqVEKLIc72A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.102.128.0/19
Signature Algorithm: sha256WithRSAEncryption
9f:0f:2b:a9:39:8d:b1:9e:a0:b9:73:44:b0:b8:af:fa:9c:98:
10:15:0d:b0:21:d5:01:64:72:d4:5d:df:dc:ad:c9:30:18:66:
40:a6:2a:2d:ca:f1:a4:e2:af:23:39:ec:eb:d0:f2:9a:1c:fe:
c9:bb:55:be:ea:2d:e1:16:a6:ec:b3:92:1c:6c:7b:da:41:25:
5d:de:e4:b3:9c:48:48:e8:98:31:9b:17:b2:ed:cb:16:93:71:
b6:20:45:ff:3d:66:a3:37:fc:1e:37:cf:ff:13:3c:77:4d:91:
74:f1:a9:10:76:e0:02:e9:d1:99:67:49:aa:5a:f7:3d:d7:5a:
b4:7b:51:f0:26:14:91:1b:77:c1:f3:b6:29:a9:b6:2c:b3:ef:
7b:90:94:8d:e1:db:49:c8:ad:88:b4:cd:a5:9a:ea:b3:f6:2e:
8f:5c:e0:89:63:c3:b0:b1:65:71:07:f1:53:43:20:22:13:9e:
c9:a0:71:c3:e5:0b:e2:02:b1:3d:1d:12:f1:38:05:43:6a:79:
f5:fc:d1:d7:d6:5b:0a:7c:c6:21:5b:09:36:36:d3:f6:48:57:
98:fa:32:da:4f:51:27:4c:0d:b6:f0:5e:73:10:4f:4d:e6:6f:
e5:24:89:b0:af:e5:8a:86:b0:34:17:fa:2d:78:b4:95:c9:92:
a8:22:06:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:06 2025 by rpki-client