Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/686cfd-a02c-4073-99dd-d7f45e0a7736/1/KF2i7pz_JxBftqbXtcqI2MsexI0.roa
File: KF2i7pz_JxBftqbXtcqI2MsexI0.roa (raw, json)
Hash identifier: qpkvTvzZ/uLMN2sziRJ+iVunei6gBog62E7lYYkmkEM=
Subject key identifier: 28:5D:A2:EE:9C:FF:27:10:5F:B6:A6:D7:B5:CA:88:D8:CB:1E:C4:8D
Certificate issuer: /CN=0ca4bb69b3f56805140efae243e4dd4b36c0dd1b
Certificate serial: 15FBA851
Authority key identifier: 0C:A4:BB:69:B3:F5:68:05:14:0E:FA:E2:43:E4:DD:4B:36:C0:DD:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DKS7abP1aAUUDvriQ-TdSzbA3Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/686cfd-a02c-4073-99dd-d7f45e0a7736/1/KF2i7pz_JxBftqbXtcqI2MsexI0.roa
Signing time: Sat 01 Jan 2022 12:58:15 +0000
ROA not before: Sat 01 Jan 2022 12:58:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201634
IP address blocks: 185.69.32.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 368814161 (0x15fba851)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ca4bb69b3f56805140efae243e4dd4b36c0dd1b
Validity
Not Before: Jan 1 12:58:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=285da2ee9cff27105fb6a6d7b5ca88d8cb1ec48d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5f:93:5a:01:a4:2e:c5:52:a3:1f:5d:ce:60:
38:5c:f8:b8:9e:cf:0e:eb:89:ab:7f:91:1d:57:0a:
78:d5:95:ee:08:2f:31:07:b8:6e:e5:13:f8:70:40:
57:b5:6c:38:89:6a:d2:e3:7b:7a:d2:14:42:43:a4:
14:3b:20:a2:51:04:e5:ae:30:04:3d:66:44:f3:e1:
1d:a6:bf:bb:78:15:e9:a1:7d:1f:ec:3e:8a:9c:cc:
d2:db:a4:6b:90:71:3e:ca:60:3e:42:7f:0e:3d:a9:
ad:2b:b1:2a:2e:0f:91:42:d9:e5:4d:3c:c9:11:64:
84:e8:49:d5:eb:5f:32:4f:72:92:d5:d1:8e:d9:dd:
6e:b4:fb:9b:dc:65:b2:98:2b:ac:c0:cd:67:a7:25:
17:6e:62:98:6b:53:78:eb:f7:d4:db:eb:ec:ee:73:
df:f9:93:fb:99:87:8d:d2:4f:21:ce:44:78:63:25:
bd:4f:a6:ad:23:45:58:b3:32:8d:e3:ad:b1:6a:4a:
15:fc:cf:13:3c:bf:a9:eb:29:94:29:30:ec:9a:67:
9c:e3:2e:e6:79:6f:6e:31:e9:55:c8:5f:26:4e:c5:
1c:d1:7f:20:80:60:aa:67:0d:83:51:03:ec:b0:f1:
04:bf:7b:01:5a:b2:9f:ed:d8:ba:bd:5e:fe:9d:ff:
32:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:5D:A2:EE:9C:FF:27:10:5F:B6:A6:D7:B5:CA:88:D8:CB:1E:C4:8D
X509v3 Authority Key Identifier:
keyid:0C:A4:BB:69:B3:F5:68:05:14:0E:FA:E2:43:E4:DD:4B:36:C0:DD:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DKS7abP1aAUUDvriQ-TdSzbA3Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/686cfd-a02c-4073-99dd-d7f45e0a7736/1/KF2i7pz_JxBftqbXtcqI2MsexI0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/686cfd-a02c-4073-99dd-d7f45e0a7736/1/DKS7abP1aAUUDvriQ-TdSzbA3Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.69.32.0/22
Signature Algorithm: sha256WithRSAEncryption
97:b6:b0:8b:06:20:1a:1d:25:59:41:d0:c0:4d:66:68:75:12:
15:97:52:65:27:9c:0c:34:63:ba:85:80:bd:da:24:79:68:7b:
f3:80:da:30:99:c8:c5:47:33:91:09:c2:e5:73:76:38:9a:0c:
a1:ed:c7:5a:88:be:56:37:4d:04:6f:b3:12:cd:fb:81:2d:c6:
ca:08:c7:d6:cd:89:66:8e:2b:96:c5:da:e8:e3:89:a8:38:f0:
e6:a6:98:dd:09:d6:98:2e:43:b2:7a:82:c0:62:23:df:d9:64:
21:94:a9:7d:23:5c:c3:5f:a0:e1:41:7d:03:d0:bf:73:05:cd:
4e:ce:02:75:e6:4c:4d:ee:43:b5:77:bf:69:78:6d:19:7a:3e:
9d:ed:49:d1:40:01:cb:9e:f5:4f:c8:ad:c3:9e:61:a3:95:7d:
dd:eb:ea:5c:96:b4:2b:e5:ad:cf:04:f6:d7:2f:d0:b6:71:86:
c4:d8:ba:be:a3:f3:05:31:08:89:59:f2:bb:6f:58:b3:27:0b:
7e:37:3c:55:94:19:89:0a:17:47:7f:23:92:93:86:fa:47:96:
58:31:5e:f5:88:3b:b3:0e:7b:15:5e:33:54:98:d5:8e:57:8e:
9a:fd:bb:0b:67:bc:b2:72:ac:90:2e:cc:05:88:ea:4d:84:1b:
d5:f6:0b:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:37 2024 by rpki-client on console-fra.rpki-client.org