Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/KM_JqNE_wLbpYloWzBBN-tvrIHo.roa
File: KM_JqNE_wLbpYloWzBBN-tvrIHo.roa (raw, json)
Hash identifier: 719DoGS24E74/23jRQextjuXCWSJLA4RJ1jqznHmfWw=
Subject key identifier: 28:CF:C9:A8:D1:3F:C0:B6:E9:62:5A:16:CC:10:4D:FA:DB:EB:20:7A
Certificate issuer: /CN=f4b9ea4d9d83a728dd41029e86af8a130d389ed4
Certificate serial: 0183D5E9DBBB4C9E623D12EF39E52A709850
Authority key identifier: F4:B9:EA:4D:9D:83:A7:28:DD:41:02:9E:86:AF:8A:13:0D:38:9E:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LnqTZ2DpyjdQQKehq-KEw04ntQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/KM_JqNE_wLbpYloWzBBN-tvrIHo.roa
Signing time: Fri 14 Oct 2022 09:53:36 +0000
ROA not before: Fri 14 Oct 2022 09:53:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34549
IP address blocks: 31.133.92.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d5:e9:db:bb:4c:9e:62:3d:12:ef:39:e5:2a:70:98:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4b9ea4d9d83a728dd41029e86af8a130d389ed4
Validity
Not Before: Oct 14 09:53:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=28cfc9a8d13fc0b6e9625a16cc104dfadbeb207a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:28:11:a5:60:b7:1d:85:5e:81:de:d5:5a:77:
ac:16:f1:03:b9:0a:88:b6:32:a9:8a:60:09:01:4d:
77:21:f6:c8:a5:b2:10:74:cb:17:b7:9e:90:9d:85:
6a:10:29:cf:d0:71:da:6d:43:38:da:1b:7b:98:2d:
de:09:e6:df:3e:5a:d6:f7:15:d1:71:a5:4a:05:5b:
9d:4a:4c:01:e7:73:9a:d7:91:29:c6:1b:e7:2f:53:
c5:08:92:16:cf:f1:e2:bc:58:81:8c:52:75:0e:af:
e9:b8:46:46:54:92:20:90:2a:a5:e6:5b:4e:63:6f:
83:55:67:7a:85:21:8d:a0:3d:00:7a:92:8c:90:44:
85:ff:81:f8:fc:b8:9e:3d:d1:47:5b:55:9c:1b:3a:
9a:6d:27:14:b1:60:7d:42:71:b8:28:44:0a:82:0c:
03:e6:cc:55:f2:37:21:e7:6a:03:e5:5c:08:6e:9e:
c6:ae:4e:40:be:53:d3:11:9c:ea:dd:ac:e2:66:ef:
3c:ec:88:e6:9a:b6:cb:89:38:28:87:da:f0:80:cc:
98:32:97:2f:a5:a7:ec:97:6e:e1:ab:21:06:0f:55:
d2:88:b6:ca:46:79:f3:0f:e7:e9:0c:91:be:cc:d1:
b6:66:fb:ef:88:ce:64:a0:68:d2:2c:e4:a7:bc:c8:
45:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:CF:C9:A8:D1:3F:C0:B6:E9:62:5A:16:CC:10:4D:FA:DB:EB:20:7A
X509v3 Authority Key Identifier:
keyid:F4:B9:EA:4D:9D:83:A7:28:DD:41:02:9E:86:AF:8A:13:0D:38:9E:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LnqTZ2DpyjdQQKehq-KEw04ntQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/KM_JqNE_wLbpYloWzBBN-tvrIHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/9LnqTZ2DpyjdQQKehq-KEw04ntQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.133.92.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:dd:e5:6f:32:c5:da:ef:ce:c0:2d:62:1c:6f:37:0d:04:83:
0e:8f:1a:85:5c:2a:8b:e1:1f:a2:5a:4a:da:66:14:ef:f0:8f:
69:a9:c3:19:c9:33:51:b3:06:d6:92:87:52:e1:51:1d:60:0a:
85:2f:7f:5c:cb:9b:bf:f2:14:3f:8a:ee:a7:7c:61:f4:dd:ee:
0a:f3:7a:bf:cf:76:fc:25:53:1f:0b:42:97:96:0f:af:93:cd:
35:72:d6:2d:53:cd:2e:ce:6c:a4:dd:45:07:38:35:5d:3a:8b:
63:73:24:93:0f:f2:e0:db:be:87:d6:09:a0:8d:8b:e8:fd:d4:
d5:2e:63:a0:4a:6d:2e:3c:53:aa:7f:04:99:fc:e9:3c:0b:1a:
e8:13:0e:7e:a8:5a:2f:16:c6:9a:07:ca:2d:67:5d:7b:91:b3:
d3:57:73:10:e4:3f:71:9a:3d:35:14:7e:d2:50:28:7f:e9:fe:
ed:19:ee:6f:20:e5:0e:22:0b:68:66:cb:58:f3:d9:d0:02:b3:
74:de:c3:9d:47:c1:42:6a:ca:0f:2c:9d:1b:25:39:4f:65:a6:
4c:e4:3f:b5:db:60:d1:55:0f:1a:c5:cf:da:77:e6:ec:1f:e7:
4e:76:c2:16:bb:cb:fd:90:53:f8:fd:29:fd:86:84:d6:d4:ab:
62:ec:67:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:37 2024 by rpki-client on console-fra.rpki-client.org