Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/1KHeYU_-dv86L1ajk4wXWyIu-1Q.roa
File: 1KHeYU_-dv86L1ajk4wXWyIu-1Q.roa (raw, json)
Hash identifier: LmB03bw19QFWVpyBmCoipKWTqxUPYtfzGpbYZkKtRC8=
Subject key identifier: D4:A1:DE:61:4F:FE:76:FF:3A:2F:56:A3:93:8C:17:5B:22:2E:FB:54
Certificate issuer: /CN=94166b704843d3d9754095c83a91b493828200a2
Certificate serial: 018415B3A6ECBADE75074FFA73FEB7E71ACC
Authority key identifier: 94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/1KHeYU_-dv86L1ajk4wXWyIu-1Q.roa
Signing time: Wed 26 Oct 2022 19:10:05 +0000
ROA not before: Wed 26 Oct 2022 19:10:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 91.103.124.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:15:b3:a6:ec:ba:de:75:07:4f:fa:73:fe:b7:e7:1a:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94166b704843d3d9754095c83a91b493828200a2
Validity
Not Before: Oct 26 19:10:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d4a1de614ffe76ff3a2f56a3938c175b222efb54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:67:4a:25:2d:54:ed:06:fc:bc:2b:26:4d:cc:
04:f9:08:1b:21:f3:c5:cc:97:20:ec:6e:85:92:a9:
3b:2c:1d:75:5e:1e:45:b7:81:de:f4:51:9b:7d:1d:
24:d0:eb:cd:16:c8:e5:fb:d8:9c:4f:1c:6e:3c:45:
b1:99:4a:9c:5c:2f:6e:df:f2:5e:57:50:5c:b9:45:
a1:25:f1:ef:18:c5:86:a8:62:ec:4c:ed:09:e5:0b:
cf:1c:1e:2e:42:84:50:e3:9a:65:7e:d5:ed:6a:23:
a8:d3:5c:03:6a:3e:94:23:c5:f6:87:4f:fb:34:90:
7e:fd:9d:b3:8b:19:76:9c:25:cb:84:49:0c:2c:a0:
45:d2:53:bb:dc:0c:bc:21:a6:2f:ba:fb:77:fd:2b:
13:f8:18:7c:17:9a:d4:ef:e2:34:2c:e8:27:5f:ca:
3d:fd:fd:cf:1d:cf:9d:2f:a8:22:11:ed:8c:2d:fb:
4e:1b:e0:23:45:6b:ba:28:75:e4:7e:5e:15:93:d1:
d4:42:e0:e3:e7:15:87:82:75:b7:24:6d:02:f1:4e:
c3:e9:5e:ba:a9:fb:47:f8:54:4d:7f:28:7e:67:c4:
eb:91:4a:a9:fa:08:8e:77:d2:d7:a1:83:42:4e:e3:
a0:58:03:62:eb:f3:07:8e:52:5f:5f:0f:ea:d5:fc:
0a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:A1:DE:61:4F:FE:76:FF:3A:2F:56:A3:93:8C:17:5B:22:2E:FB:54
X509v3 Authority Key Identifier:
keyid:94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/1KHeYU_-dv86L1ajk4wXWyIu-1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.103.124.0/22
Signature Algorithm: sha256WithRSAEncryption
64:07:49:2c:37:12:42:9c:a9:1d:6f:bf:73:7f:14:67:47:0d:
e5:99:50:ee:e4:d7:28:3b:8e:24:b7:be:f7:31:51:2b:e8:91:
e1:23:da:df:0b:ef:e0:4f:ce:db:09:bd:04:1d:1a:dd:f9:d7:
96:3e:d0:fc:87:d8:4e:f0:3a:0e:b9:3b:5f:51:20:c5:6d:2e:
29:c2:ce:b6:8e:3d:24:73:5d:ea:f3:d4:82:f8:ac:d2:64:81:
0e:cf:d5:4a:b2:c0:8f:f0:d1:7e:cd:fe:54:51:d8:fa:34:7e:
69:25:92:3a:c1:69:1a:f8:b7:3d:f8:44:38:ea:25:be:18:49:
9e:b5:90:61:f9:12:49:17:b6:68:74:6e:ed:86:71:6a:3f:4d:
b1:19:df:6d:86:f4:52:ba:04:e2:33:55:93:4a:d0:97:c6:89:
7e:74:d6:b0:8e:fd:fe:ad:39:ad:63:fe:0e:9d:ba:0b:77:cf:
bc:77:77:12:cd:42:7e:0b:f4:55:10:08:e2:f7:b3:13:73:05:
a4:52:75:0b:c9:99:2c:88:7d:be:90:a0:23:54:3f:96:af:de:
b3:0b:c0:f5:45:21:dc:17:eb:cb:9b:94:ed:30:05:99:ac:d8:
19:65:ed:da:23:71:64:f3:0e:5c:59:e6:fd:65:b0:ae:84:1b:
6c:ec:78:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:25 2024 by rpki-client on console-ams.rpki-client.org