Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/da25c9-4fe1-45da-8e74-2bea34b8938b/1/KFwRmM6rqEPP8Xw8ysd6uc_xGKs.roa
File: KFwRmM6rqEPP8Xw8ysd6uc_xGKs.roa (raw, json)
Hash identifier: oVci5omSi4U3atkBKQ2tQQHoemhuPNao1jYtFn1psgs=
Subject key identifier: 28:5C:11:98:CE:AB:A8:43:CF:F1:7C:3C:CA:C7:7A:B9:CF:F1:18:AB
Certificate issuer: /CN=b418677abf3aaee036cd4add77d66196fcde4c6d
Certificate serial: 7487CD
Authority key identifier: B4:18:67:7A:BF:3A:AE:E0:36:CD:4A:DD:77:D6:61:96:FC:DE:4C:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tBhner86ruA2zUrdd9ZhlvzeTG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/da25c9-4fe1-45da-8e74-2bea34b8938b/1/KFwRmM6rqEPP8Xw8ysd6uc_xGKs.roa
Signing time: Sat 01 Jan 2022 02:56:13 +0000
ROA not before: Sat 01 Jan 2022 02:56:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6453
IP address blocks: 91.223.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7636941 (0x7487cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b418677abf3aaee036cd4add77d66196fcde4c6d
Validity
Not Before: Jan 1 02:56:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=285c1198ceaba843cff17c3ccac77ab9cff118ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:d0:6b:c1:ca:db:da:30:a5:ee:68:4d:37:51:
eb:66:ee:84:f0:8d:fa:35:0b:96:bc:df:c0:d5:44:
8e:f2:ad:80:fd:b2:09:3d:4b:03:08:f9:b8:c9:48:
0d:a4:0f:7e:27:c3:eb:82:5d:36:a4:a1:22:99:0a:
eb:ae:7a:0c:14:be:0f:bb:f1:75:34:b2:34:d0:8f:
76:26:7a:e8:7c:06:04:5d:8b:5e:66:ac:27:f5:ed:
01:46:28:8a:01:e4:41:f2:f1:46:47:8a:87:6b:c5:
70:cb:05:9d:28:ce:31:73:44:15:74:70:a1:c6:47:
00:70:c5:36:40:a6:44:6d:df:97:8a:31:65:be:ba:
92:1e:25:be:75:f6:96:c2:d0:83:72:e7:5c:bd:e0:
06:3b:34:3e:b5:13:0d:ee:cb:5f:a3:92:f8:6c:6a:
2e:1b:f3:be:a3:31:06:17:c8:e3:b6:60:65:06:0f:
09:ed:ec:ee:32:fc:5a:bc:94:05:a8:9f:60:bd:cf:
d4:ca:8b:b8:3b:1b:3c:48:cc:41:33:c1:a3:10:43:
f9:f3:a9:59:2d:4c:2b:10:0f:11:bd:9e:ee:d7:da:
e0:22:4e:c0:d7:d4:0c:c8:93:74:84:0e:ed:96:02:
47:3e:26:1d:a8:3b:ee:78:2c:3d:53:2c:8d:f8:88:
82:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:5C:11:98:CE:AB:A8:43:CF:F1:7C:3C:CA:C7:7A:B9:CF:F1:18:AB
X509v3 Authority Key Identifier:
keyid:B4:18:67:7A:BF:3A:AE:E0:36:CD:4A:DD:77:D6:61:96:FC:DE:4C:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tBhner86ruA2zUrdd9ZhlvzeTG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/da25c9-4fe1-45da-8e74-2bea34b8938b/1/KFwRmM6rqEPP8Xw8ysd6uc_xGKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/da25c9-4fe1-45da-8e74-2bea34b8938b/1/tBhner86ruA2zUrdd9ZhlvzeTG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.85.0/24
Signature Algorithm: sha256WithRSAEncryption
11:4f:de:3b:ff:d6:29:d1:5c:2d:9d:57:ce:35:36:c6:f8:40:
75:8a:ae:a3:68:2a:64:11:f9:9a:6e:4d:7f:7f:58:13:65:12:
38:c9:52:c9:7c:bc:e2:88:03:20:db:a0:47:97:26:60:59:03:
d0:fb:a2:28:66:60:3e:b7:1e:50:17:b5:31:de:71:ad:2b:63:
14:94:8b:c9:5d:90:d6:8a:c4:e2:64:95:69:51:76:ee:4d:86:
8b:13:ce:bd:7d:4d:3c:00:af:d8:be:38:51:e1:ca:28:2b:76:
7b:88:c4:b3:e5:2e:0c:1e:fe:75:7d:1e:7f:f5:55:c2:e9:95:
6f:2b:2f:3c:a8:12:a8:cb:6a:06:52:11:d8:14:42:f5:41:58:
7e:cc:a3:26:fc:69:cd:90:f0:49:0e:27:f4:b6:e1:04:30:ec:
48:01:07:8c:e2:33:17:44:fd:a7:e3:a1:61:9f:6c:0b:29:61:
40:f2:41:95:56:e3:77:64:6d:be:29:fd:d9:f9:9e:26:ba:62:
29:33:5c:ac:9c:35:64:a4:4a:e2:bb:f1:91:f1:ec:23:88:07:
86:22:a7:a1:ff:46:a6:22:75:c6:07:fa:4e:3a:1c:6c:b7:0d:
90:d6:b4:6e:4c:54:8b:82:f8:4b:3d:dd:5f:22:aa:cf:ba:2b:
a2:3f:f5:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:29 2024 by rpki-client on console-ams.rpki-client.org