Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/46d903-afda-421b-8a61-07ee242e136d/1/KCSbQ0bAjU_LwDgeZMuk6jHVNGs.roa
File: KCSbQ0bAjU_LwDgeZMuk6jHVNGs.roa (raw, json)
Hash identifier: XKIZ4Q8iGmeFL/8jIcuMUbAeJr4x80GeBZ90M9awX3k=
Subject key identifier: 28:24:9B:43:46:C0:8D:4F:CB:C0:38:1E:64:CB:A4:EA:31:D5:34:6B
Certificate issuer: /CN=965135dd42519fdda3dd3fdaa9db3357815fad75
Certificate serial: 04167BF1
Authority key identifier: 96:51:35:DD:42:51:9F:DD:A3:DD:3F:DA:A9:DB:33:57:81:5F:AD:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/llE13UJRn92j3T_aqdszV4FfrXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/46d903-afda-421b-8a61-07ee242e136d/1/KCSbQ0bAjU_LwDgeZMuk6jHVNGs.roa
Signing time: Sat 01 Jan 2022 09:06:29 +0000
ROA not before: Sat 01 Jan 2022 09:06:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212549
IP address blocks: 185.203.89.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68582385 (0x4167bf1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=965135dd42519fdda3dd3fdaa9db3357815fad75
Validity
Not Before: Jan 1 09:06:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=28249b4346c08d4fcbc0381e64cba4ea31d5346b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:17:fd:85:c5:37:de:0c:31:6a:20:68:61:c0:
3d:49:d2:71:12:a2:4a:6d:fb:32:08:c6:20:4b:2f:
18:5e:49:d3:1d:fe:48:7a:2c:89:b4:ac:74:5a:b4:
32:ae:e9:46:52:e7:56:47:88:67:b5:93:d5:5f:16:
17:06:50:bb:31:6d:dc:01:84:04:18:0c:44:6d:f7:
6a:c1:a0:51:d4:ee:62:ed:60:cd:a1:76:ce:d1:13:
5b:3b:8b:50:eb:1d:93:93:af:9d:b8:ef:24:27:c4:
6f:e3:a8:ff:c6:5f:1e:a3:5b:08:eb:b7:97:c7:67:
ff:4a:cc:11:6c:89:30:1d:66:9f:23:54:4f:10:d7:
af:d6:36:88:a4:cb:ba:c9:0f:f6:f6:71:53:f6:bf:
97:d1:a5:3f:d0:b7:30:21:91:a7:c3:bf:cd:b4:65:
63:b8:7e:e4:43:69:c9:f4:8b:04:67:2d:5b:7b:3e:
8b:88:2a:57:1b:ff:81:0f:ab:18:bb:8d:8f:2b:12:
9f:04:b7:9f:36:ea:da:51:82:85:f9:b1:d8:4a:ef:
49:44:66:3d:1b:34:be:46:64:b7:fa:a5:4f:a9:d8:
9b:84:8f:03:ca:80:8c:6c:bf:f8:81:c3:22:26:7c:
22:38:0b:a9:16:bc:9c:ce:ef:36:6d:b6:20:ec:cb:
8b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:24:9B:43:46:C0:8D:4F:CB:C0:38:1E:64:CB:A4:EA:31:D5:34:6B
X509v3 Authority Key Identifier:
keyid:96:51:35:DD:42:51:9F:DD:A3:DD:3F:DA:A9:DB:33:57:81:5F:AD:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/llE13UJRn92j3T_aqdszV4FfrXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/46d903-afda-421b-8a61-07ee242e136d/1/KCSbQ0bAjU_LwDgeZMuk6jHVNGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/46d903-afda-421b-8a61-07ee242e136d/1/llE13UJRn92j3T_aqdszV4FfrXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.203.89.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:ca:2f:b9:f7:4d:26:13:e4:3e:18:6c:f4:79:1d:43:3e:11:
e1:03:be:22:66:fd:80:73:5c:bc:ed:08:0b:3f:73:fe:14:44:
8b:46:fd:0d:fd:6d:85:09:db:30:ff:73:88:de:c7:87:d8:f8:
08:cb:8a:99:6d:ad:d2:69:f9:eb:33:d3:9c:37:ff:bb:19:24:
5a:b8:66:14:fc:74:cd:21:02:83:d8:f2:3c:5c:8f:f9:b5:d3:
df:87:e7:72:d2:35:89:9f:bc:77:06:a3:b2:e6:d5:d3:e4:2b:
0e:6b:23:31:e6:af:e3:d9:40:2b:16:b6:89:da:a1:79:04:a6:
dd:de:aa:22:68:94:89:34:82:1c:61:88:33:58:4a:da:ee:df:
56:22:2e:a5:d4:14:ea:a2:7d:5b:8b:60:09:cd:20:14:05:ff:
c7:ac:a4:68:17:56:c6:31:d6:7f:d1:a0:26:8f:3f:09:8e:75:
78:35:f3:cc:b8:be:29:b5:59:fc:4a:06:bc:af:b0:5d:d3:b2:
d1:8f:82:09:d3:8d:9d:64:6c:21:47:0f:86:56:3c:c9:3d:d1:
93:cf:28:56:4a:b8:b9:8d:70:e9:90:ae:18:fd:09:18:fa:09:
fa:b9:bc:5d:2b:dd:ae:18:9e:90:46:a8:0c:e4:95:62:79:94:
41:81:01:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:28 2024 by rpki-client on console-fra.rpki-client.org