Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/K4_YDe3mEhFmzabqtCrmHUkBuJg.roa
File: K4_YDe3mEhFmzabqtCrmHUkBuJg.roa (raw, json)
Hash identifier: kjnHvO0rNljoqewiU3uRgHFJ8ts2rX++AqkMR4vF0ZY=
Subject key identifier: 2B:8F:D8:0D:ED:E6:12:11:66:CD:A6:EA:B4:2A:E6:1D:49:01:B8:98
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 1461C986
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/K4_YDe3mEhFmzabqtCrmHUkBuJg.roa
Signing time: Wed 30 Mar 2022 00:11:25 +0000
ROA not before: Wed 30 Mar 2022 00:11:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 82.115.12.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 341952902 (0x1461c986)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Mar 30 00:11:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b8fd80dede6121166cda6eab42ae61d4901b898
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:cd:de:0c:db:0a:49:d6:b3:72:8c:54:0f:f4:
01:e7:12:bd:ec:50:63:ce:16:2f:af:cf:12:43:68:
dd:78:ba:30:08:53:5b:bc:9c:f2:0b:9e:ab:34:c1:
fe:e8:c8:ed:72:fa:7c:3b:6a:7a:0a:98:a5:35:68:
c3:cd:32:f4:15:a8:f0:1e:e7:d5:02:22:20:ff:a8:
d0:57:57:6f:a3:85:90:99:61:87:c5:f5:a1:fc:ad:
d7:07:f7:74:89:e2:73:f2:38:55:21:4a:44:3d:45:
6e:db:e9:ad:b9:6e:b7:89:c3:be:7f:2a:d3:19:fc:
fe:94:45:3f:32:9b:82:35:f3:6b:32:73:2f:03:2b:
71:88:00:b7:80:7d:f1:8c:2f:f9:5f:12:63:e0:96:
9f:1d:ca:1a:df:95:d1:da:55:86:0e:f1:c2:57:1b:
00:bd:09:e4:15:7b:b8:d9:46:8d:16:86:02:c9:aa:
01:c7:f7:66:63:70:7c:69:cf:55:55:b2:bd:53:c3:
14:43:7e:ed:32:fd:ef:7e:28:8a:e3:52:53:3c:d3:
c7:95:15:9f:1b:9f:31:c9:5e:ca:f4:18:b8:f7:0f:
f8:6b:72:68:28:17:7d:00:c6:e7:1c:7d:b6:f1:70:
a4:f6:6d:91:8b:1c:3a:3a:dc:f8:5d:0a:d6:09:99:
d7:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:8F:D8:0D:ED:E6:12:11:66:CD:A6:EA:B4:2A:E6:1D:49:01:B8:98
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/K4_YDe3mEhFmzabqtCrmHUkBuJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.12.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:28:2d:0c:79:19:03:3e:f3:3b:94:da:e1:c5:0d:1c:46:ec:
f3:fd:d4:91:00:7a:b4:e5:3c:e8:f3:63:f7:6d:ce:83:2d:cb:
d5:5e:61:bc:64:94:e9:7e:b6:55:db:90:13:51:8f:ee:ad:f6:
59:53:a8:a4:b3:05:14:57:f4:d1:d2:48:07:f8:7f:73:67:d0:
1e:4a:d5:65:df:97:c6:37:9d:79:b0:6c:2f:3d:ae:a9:26:f3:
3d:35:a4:cf:1c:0c:e8:ce:91:d8:20:6f:e1:db:53:3d:78:43:
58:33:61:3d:2c:7c:72:b1:a9:6a:9a:03:3d:09:15:1f:51:11:
2e:2e:b3:10:5e:19:77:61:16:ed:98:6d:dd:a9:a6:ff:9c:d0:
b4:d5:b3:37:f9:8f:4d:a2:56:43:58:f9:7c:9b:08:14:4a:9c:
39:64:2f:09:51:0b:fe:97:fe:bb:c0:8f:89:28:b3:d2:96:56:
03:f6:a6:2a:46:98:36:52:80:af:37:90:8d:45:42:b9:cf:bc:
96:24:3e:43:d7:b3:3b:ee:d0:30:82:5e:53:aa:be:e3:ac:7f:
ca:d3:cb:72:8e:3b:a9:04:ab:48:5d:b1:cb:55:85:88:17:cc:
17:82:9f:b2:59:49:94:1c:49:5d:33:73:f8:e0:5b:af:0e:de:
57:78:42:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:42 2023 by rpki-client on console-fra.rpki-client.org