Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/f93db8-0e7d-4ea6-891d-70c67f126bf2/1/KyDh0ggo5OzhyBDMHhvtGltJMsc.roa
File: KyDh0ggo5OzhyBDMHhvtGltJMsc.roa (raw, json)
Hash identifier: 8bpeNyXLC47wRU8bC6uTuc7ohJh0nC2t4TJ4UdNJ4Jo=
Subject key identifier: 2B:20:E1:D2:08:28:E4:EC:E1:C8:10:CC:1E:1B:ED:1A:5B:49:32:C7
Certificate issuer: /CN=d7f6f4827c58cb28f996a9aaeb348f1fd26a0ca5
Certificate serial: 0BD1DBEB
Authority key identifier: D7:F6:F4:82:7C:58:CB:28:F9:96:A9:AA:EB:34:8F:1F:D2:6A:0C:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1_b0gnxYyyj5lqmq6zSPH9JqDKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/f93db8-0e7d-4ea6-891d-70c67f126bf2/1/KyDh0ggo5OzhyBDMHhvtGltJMsc.roa
Signing time: Sat 01 Jan 2022 10:57:32 +0000
ROA not before: Sat 01 Jan 2022 10:57:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34906
IP address blocks: 193.189.94.0/24 maxlen: 24
193.189.94.0/23 maxlen: 23
193.189.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 198302699 (0xbd1dbeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7f6f4827c58cb28f996a9aaeb348f1fd26a0ca5
Validity
Not Before: Jan 1 10:57:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b20e1d20828e4ece1c810cc1e1bed1a5b4932c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9d:97:ec:2b:c0:d6:54:ef:24:39:e4:10:a1:
a5:43:d5:90:fa:48:c4:0e:25:61:99:f4:f5:b2:7a:
af:c2:83:bb:21:32:6f:8e:55:3e:0b:9c:5f:8e:4f:
6f:29:bf:39:63:e2:d8:54:2b:20:14:c1:9a:75:6d:
51:d4:16:b7:26:97:b0:27:2d:e2:85:0d:da:ed:49:
8b:59:04:d4:98:a2:c4:8e:f1:d9:66:34:da:14:70:
4f:c0:88:d5:74:d3:c5:8f:d2:e5:48:d8:1b:5d:f0:
f2:fa:46:2f:32:ba:12:8e:07:79:40:13:12:51:95:
e4:cc:73:15:1d:e2:50:0d:5d:66:f2:3e:8b:48:ac:
46:6f:d1:a6:73:10:8e:96:0a:27:41:98:ed:9a:97:
e1:ef:63:01:27:ab:af:5a:3b:d9:cf:17:9f:fe:5b:
56:36:fe:2b:56:7f:93:81:88:66:b2:20:94:6b:b5:
0e:42:c7:12:12:a5:ac:87:ca:2c:51:9c:b6:4b:56:
32:00:bd:63:a3:ac:14:56:4d:6a:ef:45:2f:d2:43:
9c:e4:83:34:7d:90:72:f5:9f:e1:0c:c9:54:ea:bc:
68:a6:96:3f:19:a7:ae:e4:52:a8:8b:f3:11:0c:c8:
18:10:fe:52:e6:b9:84:35:5e:c6:4c:92:f0:75:e9:
dc:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:20:E1:D2:08:28:E4:EC:E1:C8:10:CC:1E:1B:ED:1A:5B:49:32:C7
X509v3 Authority Key Identifier:
keyid:D7:F6:F4:82:7C:58:CB:28:F9:96:A9:AA:EB:34:8F:1F:D2:6A:0C:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1_b0gnxYyyj5lqmq6zSPH9JqDKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/f93db8-0e7d-4ea6-891d-70c67f126bf2/1/KyDh0ggo5OzhyBDMHhvtGltJMsc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/f93db8-0e7d-4ea6-891d-70c67f126bf2/1/1_b0gnxYyyj5lqmq6zSPH9JqDKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.189.94.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:e9:6d:84:19:2c:f0:73:68:4d:a0:51:f3:57:0f:b8:93:d6:
3f:dc:e3:72:d7:3f:ee:b7:86:cd:57:52:40:ef:ed:18:34:90:
df:ca:f6:66:0e:e3:01:db:1a:03:5d:e5:a4:ed:56:cb:57:b4:
31:5e:7f:68:cb:2c:ff:fc:0f:04:67:02:29:38:ab:a1:88:05:
e1:ff:7d:a8:90:37:ff:b1:92:2e:8f:7b:98:6d:b3:2f:dd:a4:
e7:ef:ae:7c:e1:48:dc:f9:5a:36:af:59:79:52:a7:e6:80:02:
18:25:82:30:31:f9:25:2f:fd:0d:d0:0e:81:4a:01:2b:21:d9:
29:ea:23:b8:cf:18:e2:bf:a3:5f:19:b8:63:48:19:56:93:6c:
b5:f8:05:fe:95:c7:97:0b:10:3d:50:23:47:2c:88:5e:ce:b1:
07:5b:9e:cf:e8:91:23:12:a8:f0:7c:f7:ab:e8:6c:69:6f:46:
a0:0a:19:cd:15:48:5c:69:6e:99:e4:96:f4:ba:20:7f:4e:da:
66:a4:7d:16:0a:e8:33:71:b0:68:ff:6a:32:bf:0a:99:3c:41:
34:1a:b0:62:33:4d:df:26:52:be:82:48:da:9c:bf:8e:e8:e2:
9e:23:6d:83:bd:ba:1c:bf:e5:39:38:aa:59:44:28:b4:1c:85:
ff:1f:a6:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:43 2024 by rpki-client on console-ams.rpki-client.org