Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/b1016c-121a-4988-b890-ecc4c1c36b0d/1/KrLV_azYgfeKL2e_ATMAIiaMGnI.roa
File: KrLV_azYgfeKL2e_ATMAIiaMGnI.roa (raw, json)
Hash identifier: aLVBBZOSk9dU6mDIzOquaWU1u/QJRMrtKVXU76a9zm0=
Subject key identifier: 2A:B2:D5:FD:AC:D8:81:F7:8A:2F:67:BF:01:33:00:22:26:8C:1A:72
Certificate issuer: /CN=03590f562050d9769ed57b07b1bc931ecddf1397
Certificate serial: 7A7F6B
Authority key identifier: 03:59:0F:56:20:50:D9:76:9E:D5:7B:07:B1:BC:93:1E:CD:DF:13:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A1kPViBQ2Xae1XsHsbyTHs3fE5c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/b1016c-121a-4988-b890-ecc4c1c36b0d/1/KrLV_azYgfeKL2e_ATMAIiaMGnI.roa
Signing time: Wed 25 May 2022 06:32:13 +0000
ROA not before: Wed 25 May 2022 06:32:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47322
IP address blocks: 171.25.227.0/24 maxlen: 24
195.182.52.0/24 maxlen: 24
185.151.74.0/24 maxlen: 24
185.151.75.0/24 maxlen: 24
185.151.72.0/24 maxlen: 24
185.151.73.0/24 maxlen: 24
171.25.226.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8028011 (0x7a7f6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03590f562050d9769ed57b07b1bc931ecddf1397
Validity
Not Before: May 25 06:32:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ab2d5fdacd881f78a2f67bf01330022268c1a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:53:c7:c0:f5:28:aa:6b:5f:3b:7c:3d:cf:97:
3e:a7:27:55:a5:68:42:6c:9c:54:0b:45:75:a3:47:
d6:a1:45:52:a4:d9:e5:bf:10:19:72:66:94:81:68:
ba:ba:1c:a7:70:0a:12:e2:83:d4:48:0d:a0:ae:08:
15:06:30:da:51:c7:01:84:6e:3a:74:03:fa:c9:b5:
65:fb:10:22:ed:36:59:ae:a8:a0:ec:a0:a6:19:86:
77:a0:88:bc:81:f6:42:c5:06:65:45:6f:29:54:20:
3f:76:16:91:a8:33:68:ef:4c:f4:9d:62:f2:2b:d6:
f1:e7:1a:96:d8:88:a4:fc:ea:f1:3a:12:5a:f3:da:
be:08:e2:b4:d5:90:76:9b:5d:0b:f5:90:fc:f5:da:
bc:0b:8b:28:d9:18:2f:e3:84:17:ad:ce:06:c7:30:
19:cd:5c:42:32:68:78:45:aa:11:87:6c:2b:68:fc:
fb:8e:e6:d4:26:bb:81:b5:41:cf:c9:32:b8:44:1e:
52:71:90:24:60:09:b2:de:e6:99:e2:4b:2a:8d:b3:
69:93:21:56:d3:b8:08:3f:88:4b:79:9f:65:8f:f5:
af:80:20:28:5d:85:40:32:c0:56:fe:ee:41:f1:bd:
4a:f1:b7:c5:bb:e7:59:a8:df:37:44:29:6b:fc:8a:
b4:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:B2:D5:FD:AC:D8:81:F7:8A:2F:67:BF:01:33:00:22:26:8C:1A:72
X509v3 Authority Key Identifier:
keyid:03:59:0F:56:20:50:D9:76:9E:D5:7B:07:B1:BC:93:1E:CD:DF:13:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A1kPViBQ2Xae1XsHsbyTHs3fE5c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/b1016c-121a-4988-b890-ecc4c1c36b0d/1/KrLV_azYgfeKL2e_ATMAIiaMGnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/b1016c-121a-4988-b890-ecc4c1c36b0d/1/A1kPViBQ2Xae1XsHsbyTHs3fE5c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.25.226.0/23
185.151.72.0/22
195.182.52.0/24
Signature Algorithm: sha256WithRSAEncryption
11:81:d0:ea:e7:28:28:fb:f1:ca:0c:41:07:a1:02:7a:77:f1:
14:a5:c5:61:0b:34:f5:86:4b:b8:16:b2:50:ec:a5:d7:c8:71:
a8:2e:cb:42:2d:7f:d4:22:97:c0:3a:1e:45:ea:c2:b9:91:1e:
7c:3f:2e:5a:cb:4d:cf:1e:5f:04:65:6a:d7:33:78:e7:ad:c3:
be:22:58:14:b5:b2:f1:53:74:dd:1f:41:e4:c9:30:ae:86:34:
90:42:e9:01:7c:9f:fd:c7:7f:72:15:4b:5f:2b:ef:08:e4:d1:
78:5e:98:70:da:ea:24:88:52:87:41:26:be:4d:74:e9:13:ba:
46:17:d2:d2:6a:88:05:1b:5d:0c:dc:1a:f2:12:d6:9e:95:5b:
35:4a:bd:ee:d9:4a:ce:34:42:3e:da:d7:6c:88:7a:19:3b:2e:
1c:3f:f8:c3:e0:ca:51:31:32:3a:3a:6f:ea:06:d5:fc:c8:32:
0d:e8:40:e6:92:be:fb:2b:57:c5:62:7a:21:c8:65:72:15:cf:
17:43:ed:b3:f9:d3:e6:70:b0:df:e6:f7:4f:01:b0:bc:11:c0:
5c:04:5c:d3:e0:f0:6d:a0:1d:69:28:6e:a0:82:73:ad:53:a4:
81:96:d3:5b:4e:c0:ee:a1:e7:5d:61:d2:4d:d1:72:1a:2e:e1:
27:4c:45:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:43 2024 by rpki-client on console-fra.rpki-client.org