Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/971558-ed66-4b83-8fa4-d4a4f34717f0/1/KysojKAhmqhS4yZ2fBRO8BdHhmw.roa
File: KysojKAhmqhS4yZ2fBRO8BdHhmw.roa (raw, json)
Hash identifier: GmwKl3UYlTTk/NbNjROOQVsCW+wnW+OEcjgrIcsYkOQ=
Subject key identifier: 2B:2B:28:8C:A0:21:9A:A8:52:E3:26:76:7C:14:4E:F0:17:47:86:6C
Certificate issuer: /CN=e3ea14d1343b992506bee6c3d90e19a69798b018
Certificate serial: BBBD7C
Authority key identifier: E3:EA:14:D1:34:3B:99:25:06:BE:E6:C3:D9:0E:19:A6:97:98:B0:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4-oU0TQ7mSUGvubD2Q4ZppeYsBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/971558-ed66-4b83-8fa4-d4a4f34717f0/1/KysojKAhmqhS4yZ2fBRO8BdHhmw.roa
Signing time: Sat 01 Jan 2022 02:58:43 +0000
ROA not before: Sat 01 Jan 2022 02:58:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12773
IP address blocks: 185.28.109.0/24 maxlen: 24
185.28.111.0/24 maxlen: 24
185.28.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12303740 (0xbbbd7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3ea14d1343b992506bee6c3d90e19a69798b018
Validity
Not Before: Jan 1 02:58:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b2b288ca0219aa852e326767c144ef01747866c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:9b:26:d7:fa:7c:86:32:14:39:38:61:65:78:
b3:04:f5:34:9f:83:a3:03:cc:24:62:41:3e:85:6f:
ac:27:fd:2d:16:a2:cf:02:fe:57:74:2b:24:c9:28:
f3:48:fe:7e:2a:26:0a:09:f2:19:c4:14:56:30:9f:
d5:fc:a1:25:74:87:fc:06:d8:bf:cf:33:f8:8e:b5:
c6:f5:94:71:11:6c:20:54:f7:54:df:84:88:aa:82:
13:24:22:55:bf:7a:af:60:c5:b2:ca:dc:a1:a6:e5:
7d:6a:3c:56:2c:ce:d6:f4:9a:72:d0:d5:03:c7:e6:
c9:b9:5d:76:5f:ec:9c:dc:c2:78:56:a2:25:78:ff:
61:a3:5e:0a:fb:21:e0:99:4d:c8:bb:8b:5a:e9:9c:
65:1e:e8:47:4a:44:65:1e:0f:82:e3:3a:60:d7:36:
2a:fe:99:df:7e:e1:9b:5f:56:90:6e:51:e5:3e:32:
38:aa:4c:ee:03:79:4e:95:b7:3d:d7:74:7a:ce:73:
c2:1a:dc:f0:d9:54:76:9b:27:3f:04:36:1e:b7:4a:
44:e4:26:2c:c9:e4:73:d1:5d:80:87:e6:ef:24:58:
2d:ff:47:0b:7d:be:6e:ed:9a:63:c8:1c:27:12:1e:
a8:76:22:ff:f6:9f:c7:ca:b5:0b:a2:d6:1f:a9:a1:
d2:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:2B:28:8C:A0:21:9A:A8:52:E3:26:76:7C:14:4E:F0:17:47:86:6C
X509v3 Authority Key Identifier:
keyid:E3:EA:14:D1:34:3B:99:25:06:BE:E6:C3:D9:0E:19:A6:97:98:B0:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4-oU0TQ7mSUGvubD2Q4ZppeYsBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/971558-ed66-4b83-8fa4-d4a4f34717f0/1/KysojKAhmqhS4yZ2fBRO8BdHhmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/971558-ed66-4b83-8fa4-d4a4f34717f0/1/4-oU0TQ7mSUGvubD2Q4ZppeYsBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.28.108.0/23
185.28.111.0/24
Signature Algorithm: sha256WithRSAEncryption
37:72:99:01:a4:10:1c:62:35:4f:8a:32:1d:32:8a:e0:fe:6c:
9b:16:37:03:29:80:d7:9d:13:65:02:51:51:22:67:c2:10:f9:
3e:6e:a5:2d:3b:64:31:87:6b:95:f9:c2:5f:cd:ba:23:5f:74:
26:c6:22:59:ac:75:9c:4e:31:32:eb:37:15:0c:b6:07:71:c1:
f9:4d:40:78:60:58:82:0f:83:11:dd:a1:ef:78:1f:12:7c:6f:
67:29:9f:ab:45:db:36:89:5d:54:d2:61:8f:84:3c:4c:6c:50:
81:0c:f4:5d:a3:2f:dd:ad:cb:ba:c6:a2:ef:cf:5e:7a:32:53:
29:75:66:b3:d6:7c:37:a9:50:5a:a7:8a:44:67:28:dc:cf:e5:
16:fb:3c:d2:f7:a9:88:b3:cb:51:8d:a7:6f:a5:bb:6b:61:16:
60:44:90:0d:b4:4b:be:81:2f:0b:6f:1c:9e:3b:dc:f3:a9:63:
51:2f:2d:f0:ad:13:d9:8b:f0:d8:04:dc:10:73:ab:64:27:88:
42:67:fc:34:c6:7b:ca:37:a2:d2:56:05:74:e8:5a:f6:b4:3f:
f9:c2:f2:3f:09:e0:26:93:8d:4f:d2:11:a6:cb:0b:3d:a8:ac:
23:97:3f:38:21:ee:96:7b:1c:19:4a:c6:77:57:0b:47:20:5b:
a4:78:9d:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:27 2024 by rpki-client on console-ams.rpki-client.org