Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/30eaee-1ad7-4e73-a4dc-8ae51f62d218/1/k0wYlTN4WetBEgyd6NBTztgUmMI.roa
File: k0wYlTN4WetBEgyd6NBTztgUmMI.roa (raw, json)
Hash identifier: 388vepliVYNCiYvKQ/DgFEU/+35CnF/A8sBOp42WpjI=
Subject key identifier: 93:4C:18:95:33:78:59:EB:41:12:0C:9D:E8:D0:53:CE:D8:14:98:C2
Certificate issuer: /CN=75b345562d5718b6c4b206b1ae304fc68436adb2
Certificate serial: 096C186B
Authority key identifier: 75:B3:45:56:2D:57:18:B6:C4:B2:06:B1:AE:30:4F:C6:84:36:AD:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dbNFVi1XGLbEsgaxrjBPxoQ2rbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/30eaee-1ad7-4e73-a4dc-8ae51f62d218/1/k0wYlTN4WetBEgyd6NBTztgUmMI.roa
Signing time: Sat 01 Jan 2022 02:56:58 +0000
ROA not before: Sat 01 Jan 2022 02:56:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28795
IP address blocks: 144.127.3.0/24 maxlen: 24
144.127.0.0/16 maxlen: 16
144.127.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158079083 (0x96c186b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75b345562d5718b6c4b206b1ae304fc68436adb2
Validity
Not Before: Jan 1 02:56:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=934c1895337859eb41120c9de8d053ced81498c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:06:2d:0b:dd:9f:68:a7:2e:f0:5c:f6:b1:5e:
f2:c7:a8:31:2b:c8:53:5e:6a:44:b0:5c:84:e9:0e:
96:e5:02:49:95:a4:63:cf:51:2c:64:d1:a2:05:bb:
ce:58:19:be:b5:27:32:ca:3f:23:8e:db:fd:31:3a:
75:ee:e5:b6:fa:50:6b:8d:b9:eb:1b:56:39:ca:0e:
53:5f:98:00:65:24:9d:5f:69:57:dd:7b:16:d2:59:
a1:92:a1:e2:2b:99:c7:6b:e2:45:05:68:e7:99:25:
4a:9c:56:01:71:89:e8:4d:82:f1:b2:7c:4a:8e:6a:
01:72:f1:6a:7c:d9:9d:43:e8:7a:d5:26:d2:22:89:
48:84:e1:16:86:fd:69:11:f5:7a:8a:40:80:9d:87:
cc:70:f4:90:f5:11:4d:c6:3d:6a:5c:bd:e5:b1:3a:
17:81:8a:d8:04:88:cd:3d:1a:45:98:69:fd:a6:f3:
0a:01:a7:31:a1:4b:69:b7:e7:d3:d2:b2:78:52:06:
d8:57:06:54:0f:e8:ce:ad:9a:53:06:88:dd:4c:5e:
a0:63:05:dd:42:86:91:d4:20:88:c1:f2:a6:de:ee:
1c:ac:28:fe:17:dd:50:8b:ca:77:f9:5b:63:2f:b3:
36:4e:9a:0a:61:0f:66:86:16:6a:1e:e0:3d:98:6f:
f5:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:4C:18:95:33:78:59:EB:41:12:0C:9D:E8:D0:53:CE:D8:14:98:C2
X509v3 Authority Key Identifier:
keyid:75:B3:45:56:2D:57:18:B6:C4:B2:06:B1:AE:30:4F:C6:84:36:AD:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dbNFVi1XGLbEsgaxrjBPxoQ2rbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/30eaee-1ad7-4e73-a4dc-8ae51f62d218/1/k0wYlTN4WetBEgyd6NBTztgUmMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/30eaee-1ad7-4e73-a4dc-8ae51f62d218/1/dbNFVi1XGLbEsgaxrjBPxoQ2rbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.127.0.0/16
Signature Algorithm: sha256WithRSAEncryption
67:d3:57:35:e9:3f:83:8c:ee:eb:76:b0:dc:41:da:85:96:b1:
a6:ff:1d:00:15:66:34:97:73:7d:98:bb:fe:c1:4a:9a:06:cc:
75:35:ac:76:e8:b8:e3:4e:e8:41:47:f9:65:5a:05:d0:53:50:
cc:d8:a3:a5:2d:43:8d:c3:6d:3d:60:1b:eb:6f:b0:8d:a3:9a:
3e:35:42:41:5a:e3:f1:ad:4e:2c:bb:82:72:05:83:63:2d:7f:
0e:d0:a3:be:bb:f3:12:ec:4f:60:4f:17:db:53:c0:6e:d0:c9:
56:3b:be:04:06:1c:e1:29:13:93:ed:28:4e:10:5d:24:39:d9:
17:11:12:16:72:01:b9:96:df:ab:04:22:b4:83:b8:74:a2:cf:
60:66:ec:32:20:84:d2:01:a7:fe:fe:13:67:d4:41:b7:ee:8c:
ac:7f:54:bd:97:6a:46:3d:e0:d2:b2:62:fd:ca:b5:2e:4e:55:
e7:96:2e:ba:98:31:ad:0c:de:78:ee:ae:f7:1e:4c:1c:6e:6e:
36:c8:6a:64:e6:57:cb:fb:b6:ff:d5:4b:03:ce:2b:b7:88:1e:
57:d8:cf:ff:57:34:c2:6f:40:92:c2:dc:b3:59:53:5f:47:52:
a9:56:9f:5e:57:ba:41:d3:b0:81:ac:d4:1d:dc:a4:ca:c5:b6:
29:7f:28:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:57 2024 by rpki-client on console-fra.rpki-client.org