Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/KjwSify9QX-IHla4cwRXW6LnSss.roa
File: KjwSify9QX-IHla4cwRXW6LnSss.roa (raw, json)
Hash identifier: b0wOVY/2BalXU0KSwvBVEL3GAXymONrhfP4ukq1llng=
Subject key identifier: 2A:3C:12:89:FC:BD:41:7F:88:1E:56:B8:73:04:57:5B:A2:E7:4A:CB
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 38CC7757
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/KjwSify9QX-IHla4cwRXW6LnSss.roa
Signing time: Sat 01 Jan 2022 07:55:10 +0000
ROA not before: Sat 01 Jan 2022 07:55:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1147
IP address blocks: 145.127.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 952923991 (0x38cc7757)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 1 07:55:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a3c1289fcbd417f881e56b87304575ba2e74acb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c7:c8:9d:d9:66:fa:f9:03:4f:dd:b8:a3:f5:
6a:37:29:9f:8d:c9:8b:5d:59:eb:73:34:81:b8:a4:
63:d4:d5:0d:0e:63:d7:7e:a8:d7:ea:77:83:99:89:
c9:51:1e:83:01:7a:5c:48:0e:91:41:71:25:17:2a:
c4:61:3a:17:ee:9d:71:72:8b:6b:0c:b3:f3:dd:5a:
fd:61:12:e9:c3:51:d3:16:d5:b4:82:25:a7:cc:d7:
06:6b:d8:ab:06:55:18:50:b5:c4:d5:c7:0f:c5:72:
65:64:9c:8a:5e:d1:16:b7:fd:9d:87:76:23:d7:1f:
bd:c7:44:6c:18:cb:54:fb:e1:ea:22:82:25:22:75:
df:2b:a6:f9:a3:5d:40:4b:2b:ef:7d:5c:e7:fb:7c:
75:04:0b:be:11:e5:21:83:c1:b3:45:92:d0:d9:fb:
4c:1f:aa:47:d2:6e:a6:b4:f5:68:2e:4c:42:d0:31:
ce:08:cd:20:9e:c7:74:5e:78:9d:a4:8a:1c:c8:4a:
83:04:72:6c:24:78:fa:95:a4:25:48:91:60:e3:05:
01:47:a2:e4:95:9e:cf:10:53:36:8a:a4:ca:56:18:
77:77:e9:58:9d:88:5f:82:9a:fd:43:42:d6:87:fb:
1d:2e:b2:a8:35:bb:82:a3:ab:33:73:10:e9:fb:3b:
20:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:3C:12:89:FC:BD:41:7F:88:1E:56:B8:73:04:57:5B:A2:E7:4A:CB
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/KjwSify9QX-IHla4cwRXW6LnSss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.127.128.0/17
Signature Algorithm: sha256WithRSAEncryption
14:48:7a:aa:2b:67:68:28:6c:0a:04:83:69:5f:ff:d1:05:0e:
e9:d4:da:06:83:74:36:23:b6:68:b7:ec:28:34:15:7b:6d:53:
df:09:88:49:ce:57:9e:cb:26:9d:51:df:1b:06:cc:cc:01:d9:
16:53:55:58:57:f4:e1:3e:bb:2a:6b:08:76:1c:67:c6:72:4e:
06:9b:4f:49:06:79:cf:cb:43:39:4c:64:ac:6b:de:91:1e:43:
0e:0b:e2:bc:94:3d:a7:06:b4:d9:28:73:6f:3f:9e:72:f8:39:
4f:34:bf:17:83:ee:dd:a6:52:00:fc:89:fd:b0:ec:96:58:25:
6e:91:0c:e4:be:73:1c:2c:51:57:16:da:6f:b4:81:94:10:e2:
33:e9:ba:2a:6b:02:43:cd:54:2e:97:9a:66:04:70:f9:92:32:
eb:4b:eb:80:62:06:64:06:57:aa:66:00:09:c4:c1:13:a7:d4:
1a:d3:7c:da:36:33:9a:fe:ed:08:62:7f:c1:9e:4b:85:5d:2e:
a5:5f:f5:29:3a:60:9f:8d:05:be:ed:85:10:be:05:b7:e3:79:
31:9a:fc:81:f8:81:1b:cc:7c:67:ff:28:dc:02:80:6c:f1:58:
0d:28:8c:67:54:0c:e9:97:ad:ea:0f:32:29:97:b1:32:b1:3f:
32:bd:39:8e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEOMx3VzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
NzczZGIxNzc5NWQyYmYxYjRiNTM0NWM1YjI5MzkwZGJhZjQ1MjNlMB4XDTIyMDEw
MTA3NTUxMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmEzYzEyODlmY2Jk
NDE3Zjg4MWU1NmI4NzMwNDU3NWJhMmU3NGFjYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALHHyJ3ZZvr5A0/duKP1ajcpn43Ji11Z63M0gbikY9TVDQ5j
136o1+p3g5mJyVEegwF6XEgOkUFxJRcqxGE6F+6dcXKLawyz891a/WES6cNR0xbV
tIIlp8zXBmvYqwZVGFC1xNXHD8VyZWScil7RFrf9nYd2I9cfvcdEbBjLVPvh6iKC
JSJ13yum+aNdQEsr731c5/t8dQQLvhHlIYPBs0WS0Nn7TB+qR9JuprT1aC5MQtAx
zgjNIJ7HdF54naSKHMhKgwRybCR4+pWkJUiRYOMFAUei5JWezxBTNoqkylYYd3fp
WJ2IX4Ka/UNC1of7HS6yqDW7gqOrM3MQ6fs7IBkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQqPBKJ/L1Bf4geVrhzBFdboudKyzAfBgNVHSMEGDAWgBQXc9sXeV0r8bS1
NFxbKTkNuvRSPjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0YzUGJGM2xkS19HMHRUUmNXeWs1RGJyMFVqNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmQvZjc3Y2JkLTg5M2ItNDYxNi05ZDc2LTU0ODYxZjIzMjQ5ZC8x
L0tqd1NpZnk5UVgtSUhsYTRjd1JYVzZMblNzcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmQv
Zjc3Y2JkLTg5M2ItNDYxNi05ZDc2LTU0ODYxZjIzMjQ5ZC8xL0YzUGJGM2xkS19H
MHRUUmNXeWs1RGJyMFVqNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB5F/gDANBgkqhkiG9w0BAQsFAAOC
AQEAFEh6qitnaChsCgSDaV//0QUO6dTaBoN0NiO2aLfsKDQVe21T3wmISc5Xnssm
nVHfGwbMzAHZFlNVWFf04T67KmsIdhxnxnJOBptPSQZ5z8tDOUxkrGvekR5DDgvi
vJQ9pwa02Shzbz+ecvg5TzS/F4Pu3aZSAPyJ/bDsllglbpEM5L5zHCxRVxbab7SB
lBDiM+m6KmsCQ81ULpeaZgRw+ZIy60vrgGIGZAZXqmYACcTBE6fUGtN82jYzmv7t
CGJ/wZ5LhV0upV/1KTpgn40Fvu2FEL4Ft+N5MZr8gfiBG8x8Z/8o3AKAbPFYDSiM
Z1QM6Zet6g8yKZexMrE/Mr05jg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:09 2024 by rpki-client on console-fra.rpki-client.org