Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/d37915-6a39-44d1-8e21-4ba3fc3484ce/1/KNilHVAdzdw8PRg1e_NznqnuRec.roa
File: KNilHVAdzdw8PRg1e_NznqnuRec.roa (raw, json)
Hash identifier: AkFiQFqPsiCf+YaDLi2IMFYf8LvdaeIsCZa4uQmA1dA=
Subject key identifier: 28:D8:A5:1D:50:1D:CD:DC:3C:3D:18:35:7B:F3:73:9E:A9:EE:45:E7
Certificate issuer: /CN=064983d3a4a1c26aa295034869c584f757380b2b
Certificate serial: 0183594B6B4E81BD86FBA2579661CCF69BC3
Authority key identifier: 06:49:83:D3:A4:A1:C2:6A:A2:95:03:48:69:C5:84:F7:57:38:0B:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BkmD06ShwmqilQNIacWE91c4Cys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/d37915-6a39-44d1-8e21-4ba3fc3484ce/1/KNilHVAdzdw8PRg1e_NznqnuRec.roa
Signing time: Tue 20 Sep 2022 05:07:38 +0000
ROA not before: Tue 20 Sep 2022 05:07:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42065
IP address blocks: 185.26.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:59:4b:6b:4e:81:bd:86:fb:a2:57:96:61:cc:f6:9b:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=064983d3a4a1c26aa295034869c584f757380b2b
Validity
Not Before: Sep 20 05:07:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=28d8a51d501dcddc3c3d18357bf3739ea9ee45e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:fa:39:95:cb:0e:38:69:fa:34:a7:6a:a9:0f:
38:00:ad:5a:4f:a2:74:b3:05:0f:6a:1a:db:f9:64:
60:33:84:55:4d:4c:0b:b9:d0:9c:c6:37:f0:bc:6c:
70:ee:70:a9:89:ac:ea:1f:57:ad:0c:f8:6b:5b:b3:
3e:2b:4f:4a:44:f9:71:9b:a2:97:3f:13:6b:1a:7f:
96:f3:ae:57:dd:6c:8d:40:2e:a9:8a:79:12:c3:51:
77:e4:15:eb:44:fe:b3:93:cb:e2:e4:9d:2b:fb:16:
c2:bd:62:0c:ad:54:eb:a2:e3:63:9e:bc:a5:34:1c:
ff:59:dc:84:ac:19:8e:97:bc:a2:0f:cb:b6:2d:b8:
4b:5f:63:fc:30:20:f1:cc:00:6f:8f:c0:2c:f7:35:
55:98:bb:08:3d:d0:be:fc:ba:dd:66:41:29:38:fa:
be:46:cd:1f:69:a5:8c:5b:60:d9:d9:b9:6f:2b:08:
83:0f:91:21:8d:83:e2:0b:56:33:66:d3:dd:31:f1:
82:b3:34:87:4c:5e:11:3d:8d:33:fd:6b:31:e5:64:
ac:e3:4a:d7:06:0b:40:05:42:6f:4e:4f:ac:49:cf:
e7:7d:7a:18:e6:43:6a:50:7e:02:47:a1:c2:2f:18:
b2:b0:d4:e2:7c:e4:76:e3:51:6e:3f:d1:59:7f:7e:
78:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:D8:A5:1D:50:1D:CD:DC:3C:3D:18:35:7B:F3:73:9E:A9:EE:45:E7
X509v3 Authority Key Identifier:
keyid:06:49:83:D3:A4:A1:C2:6A:A2:95:03:48:69:C5:84:F7:57:38:0B:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BkmD06ShwmqilQNIacWE91c4Cys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/d37915-6a39-44d1-8e21-4ba3fc3484ce/1/KNilHVAdzdw8PRg1e_NznqnuRec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/d37915-6a39-44d1-8e21-4ba3fc3484ce/1/BkmD06ShwmqilQNIacWE91c4Cys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.26.74.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:6a:87:b3:a2:58:db:fd:8e:0f:17:8c:68:fa:a1:16:55:fd:
ef:22:f9:d3:c2:55:4e:5e:1d:7a:d3:79:83:9a:45:a7:23:36:
ce:82:94:5b:a8:fa:2e:a9:5a:51:06:01:dc:c9:e1:18:00:4e:
b6:86:e6:be:6c:a4:53:24:bb:ba:c0:25:81:c6:f9:5c:0d:7e:
fa:db:73:23:73:85:7d:1a:3b:07:02:29:69:67:25:c0:51:6f:
c6:85:3d:bc:f3:e5:f5:71:38:51:a0:c8:20:24:c6:18:a4:16:
48:ab:33:fc:7f:c3:60:03:66:50:f5:b2:63:fb:2c:1e:83:f8:
e9:fc:88:53:df:3e:e4:6d:a3:13:d1:89:78:cb:06:46:b3:5a:
0a:b1:23:30:a3:6d:10:24:1e:8f:67:30:8a:71:16:5d:e7:67:
23:fd:d6:97:5a:9b:ae:37:19:40:bb:e1:34:e2:e3:e1:ef:7a:
55:0d:9d:13:65:f6:17:d2:7c:0d:ec:76:8f:85:a4:2f:25:e3:
d4:3e:72:b1:be:0d:7b:bc:81:0a:0b:28:e1:b8:a0:2e:7d:54:
7c:1d:c0:57:8f:0d:3d:c2:be:d4:4f:89:4e:5c:5b:fe:7f:29:
92:09:4e:0d:f6:34:0b:cd:e8:0d:43:33:2c:db:f5:69:b0:21:
43:9c:fb:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:10 2023 by rpki-client on console-ams.rpki-client.org