Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/kcLZJOY70d8zbimXvN0NGuEUyxM.roa
File: kcLZJOY70d8zbimXvN0NGuEUyxM.roa (raw, json)
Hash identifier: EJos+cbI/QfU6WpBDsxLIHRIYOxQYiGa5+2aLyo51uI=
Subject key identifier: 91:C2:D9:24:E6:3B:D1:DF:33:6E:29:97:BC:DD:0D:1A:E1:14:CB:13
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 1895CF8F
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/kcLZJOY70d8zbimXvN0NGuEUyxM.roa
Signing time: Tue 14 Jun 2022 08:02:45 +0000
ROA not before: Tue 14 Jun 2022 08:02:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207676
IP address blocks: 178.170.251.0/24 maxlen: 24
141.101.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 412471183 (0x1895cf8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jun 14 08:02:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91c2d924e63bd1df336e2997bcdd0d1ae114cb13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:f8:98:14:5c:26:57:d7:9f:05:c3:e2:fd:60:
f2:d5:70:df:55:18:72:aa:db:32:2f:f1:fa:86:b2:
3b:c8:ce:53:22:90:a6:3a:95:de:c8:79:54:4f:f9:
c1:b8:61:7c:ab:9a:5f:50:8c:62:3e:1d:fd:68:7e:
05:43:91:2a:22:bc:7d:01:86:e1:7d:f1:46:3b:3d:
37:54:a0:e5:92:28:51:cf:22:65:1b:fa:a1:40:14:
dc:a6:c3:d8:ef:22:1c:a6:cb:4d:3a:75:4e:51:fc:
60:66:1a:c1:2e:d5:7b:24:90:d8:09:1f:c0:de:63:
b9:e4:63:9e:f0:31:1e:99:68:ac:34:de:8e:4f:e8:
0c:28:47:d8:6a:bf:28:9d:87:c0:db:e7:53:e3:e1:
6a:ce:51:56:ee:bd:b0:34:92:55:35:df:b5:9a:f3:
6b:15:b1:91:ec:54:23:f9:e7:12:bb:78:8c:fa:5c:
f2:c2:b2:67:b7:e6:fe:5c:a1:01:2f:64:71:9d:aa:
1f:1d:18:8e:78:50:e9:c2:47:cf:0f:3c:97:70:81:
ab:85:0c:b6:7a:b9:01:a1:e0:0f:12:94:1f:31:6c:
6a:16:72:c0:32:e8:30:64:c5:4c:41:43:07:72:1f:
30:a2:f7:97:15:80:20:51:c9:60:9b:71:10:7c:3f:
d8:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:C2:D9:24:E6:3B:D1:DF:33:6E:29:97:BC:DD:0D:1A:E1:14:CB:13
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/kcLZJOY70d8zbimXvN0NGuEUyxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.249.0/24
178.170.251.0/24
Signature Algorithm: sha256WithRSAEncryption
43:5c:35:64:41:1f:22:4d:9e:51:5e:d3:fa:bf:36:81:49:1d:
c7:34:cc:a4:0b:f8:e3:d7:44:9b:e2:af:f6:a5:08:9d:c8:15:
ca:e2:78:1e:f3:e1:1f:31:79:fd:cf:40:9a:36:6f:fc:08:11:
03:cb:47:16:ab:73:7d:f9:cd:fe:87:4d:ec:0c:af:1e:33:33:
cc:55:1b:57:90:99:83:22:be:c7:98:6a:9d:03:35:8a:93:41:
ea:b5:a2:1b:2e:c3:35:f5:58:d7:95:72:0d:13:ff:45:fc:5a:
aa:0e:39:cb:de:2b:0b:ea:8b:3c:a9:c1:4d:fe:e1:45:c8:ac:
dd:b6:2d:0f:c7:fb:e9:83:ae:3e:af:4b:d1:df:2d:d5:66:a2:
b7:8c:f1:aa:68:9c:dd:6d:ad:8c:9f:ae:fa:03:7d:ff:b0:29:
4b:c8:a4:f8:df:7c:07:22:cf:c8:77:c8:95:62:8f:4c:b0:be:
56:35:eb:6e:4d:63:3c:b4:92:7e:a1:16:95:eb:48:cd:84:c4:
f1:77:dd:b2:30:c6:a7:46:30:42:f1:ba:e4:15:25:f6:0c:c7:
74:8d:aa:a9:28:b6:49:74:67:b5:92:ae:50:c9:81:bd:1d:5f:
55:73:f4:85:da:91:5c:52:20:7f:71:7c:1b:a5:f0:17:07:5c:
8a:ef:2a:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:33 2024 by rpki-client on console-ams.rpki-client.org