Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/KW9QiPP_YNianoUWCbmAwD0qu28.roa
File: KW9QiPP_YNianoUWCbmAwD0qu28.roa (raw, json)
Hash identifier: zNzxaOej7Krvtx0BPvAZFR1A/m3Y0jj5rXPvAwev0W8=
Subject key identifier: 29:6F:50:88:F3:FF:60:D8:9A:9E:85:16:09:B9:80:C0:3D:2A:BB:6F
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 03DFD626
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/KW9QiPP_YNianoUWCbmAwD0qu28.roa
Signing time: Sat 01 Jan 2022 13:04:08 +0000
ROA not before: Sat 01 Jan 2022 13:04:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204821
IP address blocks: 185.231.184.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65000998 (0x3dfd626)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 13:04:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=296f5088f3ff60d89a9e851609b980c03d2abb6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:01:44:4a:ab:de:4c:10:17:01:39:c7:c4:55:
53:9d:14:f7:26:0e:23:76:a6:ab:0f:36:be:de:9c:
bb:00:1c:ce:7b:0b:e1:fd:12:3d:70:80:5e:40:d0:
ea:10:84:e8:46:da:46:08:bb:fd:17:bc:fb:7b:55:
56:ea:26:fe:98:70:53:f9:b8:59:2d:e0:0c:7c:48:
1f:49:3e:e0:10:77:1c:1f:54:bd:00:8d:0b:f1:3a:
17:c7:88:88:84:c4:c5:f6:22:e1:6b:1c:34:17:dc:
3c:e1:cf:fc:a3:99:9c:f5:2a:04:a9:07:c5:eb:87:
25:49:09:a7:12:30:e6:6c:36:b6:81:51:29:8b:a6:
6e:14:52:9b:23:2b:84:28:6d:de:46:36:38:45:86:
ec:24:81:32:a7:b6:16:03:52:e9:de:7a:ee:af:27:
a2:da:35:be:71:4c:29:0f:7b:c8:ff:9f:3f:23:ec:
95:15:0a:0a:ba:77:ba:e9:d8:30:05:ae:a6:74:3f:
b2:5b:45:dc:0a:e1:6d:4d:f5:ed:6b:d2:da:6a:30:
95:83:32:5b:79:f6:d8:8c:8c:1b:5c:d6:fa:cc:ef:
12:66:d3:a0:f4:0b:69:01:ae:1c:d0:d7:1c:73:56:
2e:75:d7:a8:d3:1a:8c:1e:43:c8:c5:a3:55:47:10:
72:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:6F:50:88:F3:FF:60:D8:9A:9E:85:16:09:B9:80:C0:3D:2A:BB:6F
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/KW9QiPP_YNianoUWCbmAwD0qu28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.231.184.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:4c:c2:09:4b:7d:6b:ad:69:58:5d:88:02:57:e8:d8:58:34:
cb:8d:52:62:ce:a2:de:c1:30:59:c3:25:66:be:5f:d3:8f:bb:
67:af:ec:ba:06:ee:4f:d4:08:40:d7:24:87:8f:68:5d:d9:b2:
c7:74:b3:41:b2:b3:54:10:e3:41:89:d1:e6:43:00:57:c5:ed:
d4:7d:19:18:2b:77:10:9d:bf:1e:87:33:42:9f:54:81:5b:55:
f7:95:59:55:1c:f8:9d:20:47:45:af:19:0a:7e:16:cc:d2:2a:
b3:3e:1a:15:63:6d:b4:03:86:2f:70:0f:10:7f:4f:ad:c2:d7:
cb:bb:c5:66:4f:43:be:5c:62:ab:2e:47:0a:74:c6:a7:c3:1d:
23:1f:87:10:d3:ff:c9:da:df:ba:ef:20:ae:14:58:1e:f3:b3:
ac:fd:42:f9:26:9a:e1:88:4d:5b:5c:99:b3:af:6f:52:21:67:
c7:e1:d3:32:17:6f:91:14:0a:c1:72:43:28:59:36:db:35:c1:
d1:6c:21:be:19:11:80:70:57:cf:60:c6:06:01:81:be:a0:6f:
2b:8c:7f:8d:0b:34:dd:88:6c:ec:a7:60:c7:50:bf:94:b1:d2:
7b:db:ed:e9:e4:31:67:04:0c:14:ab:df:67:15:1e:ad:d1:53:
98:dd:55:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:49 2023 by rpki-client on console-fra.rpki-client.org