Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/KGGqZH8Dd7h1UphBtZ72izakcAo.roa
File: KGGqZH8Dd7h1UphBtZ72izakcAo.roa (raw, json)
Hash identifier: tI7fUf6OGi4qMUcWKbUv5MB1z9l14+j1bjcUn1UGHtE=
Subject key identifier: 28:61:AA:64:7F:03:77:B8:75:52:98:41:B5:9E:F6:8B:36:A4:70:0A
Certificate issuer: /CN=aa4943183b611be3a0775382509490048b0ad738
Certificate serial: 0E900F31
Authority key identifier: AA:49:43:18:3B:61:1B:E3:A0:77:53:82:50:94:90:04:8B:0A:D7:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/KGGqZH8Dd7h1UphBtZ72izakcAo.roa
Signing time: Sat 01 Jan 2022 07:00:47 +0000
ROA not before: Sat 01 Jan 2022 07:00:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34509
IP address blocks: 84.205.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 244322097 (0xe900f31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa4943183b611be3a0775382509490048b0ad738
Validity
Not Before: Jan 1 07:00:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2861aa647f0377b875529841b59ef68b36a4700a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ba:ab:27:5a:b8:37:c6:7d:09:a9:58:f3:58:
a7:9a:f6:d0:ff:13:2d:1e:ee:e8:90:c4:57:cd:89:
eb:98:62:81:6d:12:50:86:83:73:cf:fb:48:13:02:
20:83:d3:a6:88:15:cc:51:93:25:1b:69:18:f9:43:
0a:22:4c:7b:69:9d:81:a5:06:aa:42:3c:c1:fb:b2:
9e:b7:e5:53:fc:f4:60:3c:3b:e7:52:eb:ab:b1:5e:
40:ec:0e:70:02:b9:ea:62:96:4a:f0:42:0f:9e:27:
e8:57:ef:a1:e4:61:f2:3b:c7:aa:f0:09:20:11:93:
b0:dd:15:0f:bb:7f:5c:ce:2a:81:98:7b:eb:c5:a2:
f0:43:87:23:62:70:b5:da:22:99:d7:66:fb:87:15:
a9:66:36:d5:72:b0:e5:96:05:bf:d6:cd:87:02:29:
74:ec:9d:31:9b:d8:b5:02:26:cb:f8:4c:7a:5b:c5:
50:9f:24:56:f5:1a:3e:e8:d2:d7:63:62:26:c5:d0:
57:3b:a5:e0:61:a3:14:e9:c2:2c:2e:d7:71:35:71:
a7:70:91:6b:d0:6a:b3:44:1f:af:a6:c5:a1:a3:fc:
51:9a:8f:67:e5:02:02:6a:b5:cf:71:5b:87:ce:6d:
1e:20:8e:e7:0c:89:d2:93:e6:de:c7:3f:6d:12:be:
61:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:61:AA:64:7F:03:77:B8:75:52:98:41:B5:9E:F6:8B:36:A4:70:0A
X509v3 Authority Key Identifier:
keyid:AA:49:43:18:3B:61:1B:E3:A0:77:53:82:50:94:90:04:8B:0A:D7:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/KGGqZH8Dd7h1UphBtZ72izakcAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.205.160.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:4c:56:76:51:51:08:08:f9:7b:9e:32:2c:bd:3d:c1:6b:c6:
92:1a:f8:29:40:4a:a6:a5:53:ca:67:7c:62:0d:96:ce:23:18:
1b:78:9e:0b:7a:de:ec:07:a0:1c:f2:b7:88:54:c3:af:cd:ea:
a6:78:8a:20:1b:4f:d7:af:63:19:15:86:51:45:6f:5a:e9:19:
08:8f:55:67:f7:ab:68:65:b7:89:f0:6f:de:23:c6:7e:e8:87:
19:98:29:bd:42:e9:7f:4e:f8:45:37:b5:62:90:de:53:77:4e:
3a:ad:dd:e5:02:67:96:ba:d1:23:a1:29:c7:c2:99:c0:0c:85:
fd:0e:b3:1c:57:89:5f:e9:7e:83:3a:0b:77:97:f8:72:b9:44:
f4:6f:07:ee:69:10:de:20:30:b1:35:fa:fa:b3:7e:8f:9b:6e:
33:c9:b9:38:c6:3b:b1:51:94:8a:fc:77:60:13:7e:63:42:b1:
83:13:75:ed:06:85:b2:cf:ef:ff:25:a7:5e:a3:2e:26:fc:ab:
be:2f:a5:bf:50:fb:57:e7:36:ca:a5:8d:ea:f1:8a:6d:1a:77:
22:70:51:e7:d2:21:52:9d:37:cf:f6:86:3a:94:40:e1:be:06:
75:ed:fb:a9:41:fc:3e:84:3a:30:57:21:15:d8:2b:13:2e:f8:
3f:ed:29:da
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDpAPMTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
YTQ5NDMxODNiNjExYmUzYTA3NzUzODI1MDk0OTAwNDhiMGFkNzM4MB4XDTIyMDEw
MTA3MDA0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjg2MWFhNjQ3ZjAz
NzdiODc1NTI5ODQxYjU5ZWY2OGIzNmE0NzAwYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANG6qydauDfGfQmpWPNYp5r20P8TLR7u6JDEV82J65higW0S
UIaDc8/7SBMCIIPTpogVzFGTJRtpGPlDCiJMe2mdgaUGqkI8wfuynrflU/z0YDw7
51Lrq7FeQOwOcAK56mKWSvBCD54n6FfvoeRh8jvHqvAJIBGTsN0VD7t/XM4qgZh7
68Wi8EOHI2Jwtdoimddm+4cVqWY21XKw5ZYFv9bNhwIpdOydMZvYtQImy/hMelvF
UJ8kVvUaPujS12NiJsXQVzul4GGjFOnCLC7XcTVxp3CRa9Bqs0Qfr6bFoaP8UZqP
Z+UCAmq1z3Fbh85tHiCO5wyJ0pPm3sc/bRK+YWsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQoYapkfwN3uHVSmEG1nvaLNqRwCjAfBgNVHSMEGDAWgBSqSUMYO2Eb46B3
U4JQlJAEiwrXODAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3FrbERHRHRoRy1PZ2QxT0NVSlNRQklzSzF6Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjkvN2JiMDM4LTAxYmMtNGQ4NS05ZjA0LWQyMjI3NGJiYTcxMy8x
L0tHR3FaSDhEZDdoMVVwaEJ0WjcyaXpha2NBby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjkv
N2JiMDM4LTAxYmMtNGQ4NS05ZjA0LWQyMjI3NGJiYTcxMy8xL3FrbERHRHRoRy1P
Z2QxT0NVSlNRQklzSzF6Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFTNoDANBgkqhkiG9w0BAQsFAAOC
AQEAtUxWdlFRCAj5e54yLL09wWvGkhr4KUBKpqVTymd8Yg2WziMYG3ieC3re7Aeg
HPK3iFTDr83qpniKIBtP169jGRWGUUVvWukZCI9VZ/eraGW3ifBv3iPGfuiHGZgp
vULpf074RTe1YpDeU3dOOq3d5QJnlrrRI6Epx8KZwAyF/Q6zHFeJX+l+gzoLd5f4
crlE9G8H7mkQ3iAwsTX6+rN+j5tuM8m5OMY7sVGUivx3YBN+Y0KxgxN17QaFss/v
/yWnXqMuJvyrvi+lv1D7V+c2yqWN6vGKbRp3InBR59IhUp03z/aGOpRA4b4Gde37
qUH8PoQ6MFchFdgrEy74P+0p2g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:53 2024 by rpki-client on console-ams.rpki-client.org