Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/326ae7-ed9f-4105-8b5d-3b68a84cd2b8/1/KN5Wev1W7HKdr0Ub4zg_Ph9n5jU.roa
File: KN5Wev1W7HKdr0Ub4zg_Ph9n5jU.roa (raw, json)
Hash identifier: jlNt4P0tAruLkPDRjuco1axEycz8PWaMgO31ZJq68wQ=
Subject key identifier: 28:DE:56:7A:FD:56:EC:72:9D:AF:45:1B:E3:38:3F:3E:1F:67:E6:35
Certificate issuer: /CN=4d69fe11ba001b12a6fbd189629a3fb181bd8c9b
Certificate serial: 08695ED2
Authority key identifier: 4D:69:FE:11:BA:00:1B:12:A6:FB:D1:89:62:9A:3F:B1:81:BD:8C:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TWn-EboAGxKm-9GJYpo_sYG9jJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/326ae7-ed9f-4105-8b5d-3b68a84cd2b8/1/KN5Wev1W7HKdr0Ub4zg_Ph9n5jU.roa
Signing time: Sat 01 Jan 2022 15:57:28 +0000
ROA not before: Sat 01 Jan 2022 15:57:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200539
IP address blocks: 185.239.12.0/22 maxlen: 22
185.103.152.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141123282 (0x8695ed2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d69fe11ba001b12a6fbd189629a3fb181bd8c9b
Validity
Not Before: Jan 1 15:57:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=28de567afd56ec729daf451be3383f3e1f67e635
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:59:59:d0:fd:fa:c9:a5:c1:64:19:23:9e:6d:
ba:f8:5f:23:9c:79:8f:c3:31:90:35:94:10:88:90:
e8:17:43:60:5f:f0:07:17:18:8c:18:bd:a5:77:b0:
39:c9:d3:d1:1a:92:59:52:0b:8c:96:0b:96:95:f1:
d0:16:98:2e:09:93:9c:51:02:32:26:cc:be:e9:75:
11:a8:20:6c:cc:c4:91:ac:03:78:5d:cc:01:93:d0:
15:30:a5:cb:06:4a:5d:44:18:10:35:be:76:26:75:
66:7d:e1:fb:fe:93:0f:9f:67:83:c0:05:2e:a0:97:
a4:ef:cb:34:80:7c:57:f1:d7:2c:ed:22:30:37:13:
bb:26:f6:67:18:64:de:30:12:61:ca:61:ae:06:c0:
04:c8:09:bd:29:8c:52:59:8e:ee:47:e1:4d:5c:12:
22:68:d9:bc:91:16:79:45:95:e4:be:22:a6:69:cf:
7c:22:c8:87:56:2f:79:bd:fd:93:e2:ff:38:46:ce:
4c:5c:1d:6d:74:c3:f9:e3:e9:15:e8:34:48:7c:0f:
10:86:af:03:06:a6:6a:0b:93:f9:0c:0f:46:94:bc:
1e:a0:98:23:cc:cb:b3:81:23:62:a7:9a:26:1d:22:
46:d9:ef:a0:91:26:eb:72:fd:19:08:89:3f:fa:97:
23:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:DE:56:7A:FD:56:EC:72:9D:AF:45:1B:E3:38:3F:3E:1F:67:E6:35
X509v3 Authority Key Identifier:
keyid:4D:69:FE:11:BA:00:1B:12:A6:FB:D1:89:62:9A:3F:B1:81:BD:8C:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TWn-EboAGxKm-9GJYpo_sYG9jJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/326ae7-ed9f-4105-8b5d-3b68a84cd2b8/1/KN5Wev1W7HKdr0Ub4zg_Ph9n5jU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/326ae7-ed9f-4105-8b5d-3b68a84cd2b8/1/TWn-EboAGxKm-9GJYpo_sYG9jJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.152.0/22
185.239.12.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:2a:aa:43:07:26:6a:50:d8:4d:58:03:e0:a0:41:f9:1b:92:
f0:5b:9e:fe:61:ff:c9:bd:5e:30:f7:1f:19:c8:ec:93:70:3f:
7d:d2:d4:ae:57:bd:72:f4:e5:1f:99:7a:6b:c6:7c:e4:f3:49:
83:df:9e:58:a6:a1:30:31:00:ea:af:6b:d8:11:6f:ca:a6:6d:
44:8f:6d:74:6e:a2:83:ab:50:a6:f6:b0:d3:b9:ef:b1:a5:c6:
6f:9e:1d:76:66:4b:5e:68:12:a0:2f:01:33:e2:f6:b9:42:a1:
03:f2:e6:e3:03:b8:e9:3b:6f:b4:b6:23:b9:f5:ad:5b:d1:a1:
0d:82:03:a2:06:e6:1b:f7:71:c5:ef:9d:ba:29:2e:c4:e8:1e:
bb:52:4e:22:90:07:01:5b:2e:17:1e:cf:7a:3d:1a:71:d2:b0:
3d:45:2a:40:fc:09:e4:b0:ab:5b:ff:c9:0f:d4:da:5b:c3:ba:
f8:d5:ff:e5:15:0e:0f:8a:a5:fe:90:7f:fe:ce:17:aa:29:37:
ea:64:43:08:87:0a:d5:ae:d0:9d:cc:7a:11:c0:2b:5e:41:8c:
14:8b:ff:5c:33:84:b8:4a:12:32:49:a7:10:6c:26:6f:96:2d:
40:c0:8a:b8:9b:07:b7:fd:7e:1e:db:c7:45:09:d4:f1:5d:bc:
39:9b:44:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:39 2023 by rpki-client on console-ams.rpki-client.org