Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/kYMD_YI102k7eBJX8MdEMNQIXmg.roa
File: kYMD_YI102k7eBJX8MdEMNQIXmg.roa (raw, json)
Hash identifier: ISaB+4h0n/HUE6YjQ1ShnoeOSGZTN+EBs/TxxcKW7S0=
Subject key identifier: 91:83:03:FD:82:35:D3:69:3B:78:12:57:F0:C7:44:30:D4:08:5E:68
Certificate issuer: /CN=13932782ee7758990404fa1ccfb09ec23a86123f
Certificate serial: 01837FAFC1B1FEDFD6E87DC4FBC3B4631859
Authority key identifier: 13:93:27:82:EE:77:58:99:04:04:FA:1C:CF:B0:9E:C2:3A:86:12:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E5Mngu53WJkEBPocz7CewjqGEj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/kYMD_YI102k7eBJX8MdEMNQIXmg.roa
Signing time: Tue 27 Sep 2022 16:02:48 +0000
ROA not before: Tue 27 Sep 2022 16:02:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3344
IP address blocks: 82.136.8.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7f:af:c1:b1:fe:df:d6:e8:7d:c4:fb:c3:b4:63:18:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13932782ee7758990404fa1ccfb09ec23a86123f
Validity
Not Before: Sep 27 16:02:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=918303fd8235d3693b781257f0c74430d4085e68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:02:0a:57:02:e6:12:a6:8d:65:60:12:bc:18:
4b:80:52:6f:bc:74:4c:69:d9:63:98:71:aa:f2:c9:
f3:63:2e:ff:69:b7:d9:93:7a:e0:94:1c:a6:be:8c:
1f:6c:b7:5c:fb:00:3f:f9:cf:db:c5:01:d9:20:46:
f2:e3:b2:19:c0:34:b8:2a:0b:2a:ef:2e:65:7e:09:
c9:39:f6:48:44:0a:a6:cd:b1:1b:38:26:90:24:c8:
54:ad:25:6f:f1:fd:6e:8d:82:67:56:6a:3b:44:fa:
3a:6b:a9:39:6c:80:b2:3c:f9:9d:4a:1a:af:87:c3:
a9:56:af:5c:5b:bf:1f:32:56:bf:22:99:a6:00:ac:
7d:69:7e:75:a8:1b:9b:2b:23:f5:4c:d2:48:ac:89:
57:d5:9c:32:0c:af:38:5e:5d:a8:c6:67:ea:e1:13:
2a:ba:e1:bd:13:9a:78:ee:cd:1f:aa:04:0e:0e:25:
2a:89:91:6d:14:60:08:cf:89:27:41:86:11:ce:52:
6b:12:6a:74:04:5a:66:02:b3:b7:cc:23:ab:2a:e9:
0e:25:a8:4e:4d:af:0e:2a:cc:b0:4f:6c:68:80:35:
8d:35:a3:b7:28:e0:75:76:0b:a3:d3:14:95:16:5c:
1c:09:c6:22:85:85:b4:9c:70:25:89:82:3f:cc:a5:
62:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:83:03:FD:82:35:D3:69:3B:78:12:57:F0:C7:44:30:D4:08:5E:68
X509v3 Authority Key Identifier:
keyid:13:93:27:82:EE:77:58:99:04:04:FA:1C:CF:B0:9E:C2:3A:86:12:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E5Mngu53WJkEBPocz7CewjqGEj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/kYMD_YI102k7eBJX8MdEMNQIXmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/E5Mngu53WJkEBPocz7CewjqGEj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.136.8.0/22
Signature Algorithm: sha256WithRSAEncryption
60:6b:e0:5f:72:2a:93:fe:01:5e:f4:11:ef:89:42:8a:29:aa:
e8:76:34:f7:cb:6c:cb:70:7b:77:2d:a3:bf:b6:38:39:1a:57:
ae:24:45:23:cb:10:c2:d3:95:46:d6:d4:e9:39:89:31:56:35:
d9:69:cf:bb:c1:0a:e5:c8:33:96:e0:9c:5a:b0:85:3c:2a:a0:
27:d7:fb:d4:24:14:d9:a6:c4:27:bd:55:78:38:66:bd:8d:de:
a3:5d:cf:ff:2a:20:c4:d4:a8:3f:ed:c1:7f:6b:7a:f6:f6:16:
f1:2d:39:54:3f:2d:e2:12:83:f8:ac:a4:7d:03:54:4f:b4:66:
5c:fc:32:eb:5f:c2:8c:49:24:d1:c9:ea:87:40:c2:0c:13:29:
12:4a:18:29:01:9d:75:d5:19:e9:4e:54:6e:ca:c7:c2:ec:f3:
cc:37:f7:91:3c:db:82:49:59:9a:92:f4:21:18:da:f9:0b:4a:
26:d8:da:46:98:50:ac:8c:6f:90:39:48:ea:dd:61:9a:69:96:
4f:48:f7:fb:bb:50:48:91:13:7b:77:60:f7:c6:c0:06:28:8d:
a9:22:3c:fd:a2:3d:a5:46:d2:72:e9:82:33:5f:db:a7:77:2f:
4a:3d:90:b7:37:8f:a1:1b:62:6b:5a:57:4e:9e:a5:74:91:4d:
a7:f0:6c:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:46:45 2025 by rpki-client