Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/ebd49f-f569-4152-b0b8-5e53c23b55b0/1/Ko9EnJlBIMN88pEmXOiMIYrRNVE.roa
File: Ko9EnJlBIMN88pEmXOiMIYrRNVE.roa (raw, json)
Hash identifier: BfgubXb5pX5DWnuQLKPnZ7SouLaevr+a3EBtkOECiUA=
Subject key identifier: 2A:8F:44:9C:99:41:20:C3:7C:F2:91:26:5C:E8:8C:21:8A:D1:35:51
Certificate issuer: /CN=ecf42776be532bd0575332855d8c42c4952ed931
Certificate serial: 01828CCDA15B89563D6ACFA02E1C4DD4A9A8
Authority key identifier: EC:F4:27:76:BE:53:2B:D0:57:53:32:85:5D:8C:42:C4:95:2E:D9:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7PQndr5TK9BXUzKFXYxCxJUu2TE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/ebd49f-f569-4152-b0b8-5e53c23b55b0/1/Ko9EnJlBIMN88pEmXOiMIYrRNVE.roa
Signing time: Thu 11 Aug 2022 12:07:42 +0000
ROA not before: Thu 11 Aug 2022 12:07:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 146.109.0.0/16 maxlen: 24
185.210.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8c:cd:a1:5b:89:56:3d:6a:cf:a0:2e:1c:4d:d4:a9:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecf42776be532bd0575332855d8c42c4952ed931
Validity
Not Before: Aug 11 12:07:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a8f449c994120c37cf291265ce88c218ad13551
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:69:e3:be:56:e6:28:b5:06:30:51:23:73:d2:
31:cd:5a:a2:ba:cb:37:47:13:4d:11:03:38:b4:d1:
18:ae:2a:a9:b5:85:29:7c:d6:4d:d7:bf:5d:ea:76:
32:e2:ea:d5:a6:3b:8c:8a:b4:7a:e8:24:6c:66:99:
5e:27:e7:39:b3:fa:5f:65:1a:26:9d:8f:e2:ea:61:
ab:8a:73:41:5f:45:57:ff:e2:d5:87:56:ce:ab:3f:
9b:d5:45:b7:54:e8:7b:8a:2c:69:8e:74:e9:01:c6:
18:1c:78:4b:59:7c:aa:09:4f:8c:a6:29:a9:ea:01:
07:7c:30:fe:de:cb:49:f4:5f:27:bb:65:54:9e:9e:
8e:8a:b7:a2:41:f5:01:37:26:84:4f:98:42:b5:7b:
19:6d:1c:49:b8:a9:6f:9f:05:38:b7:5c:14:4b:2d:
94:07:30:76:f1:aa:4a:dd:71:a5:61:41:1c:ae:f6:
3f:03:60:cd:d8:73:08:10:4a:e2:04:dc:a6:51:6a:
83:1a:01:9e:1a:8c:4e:2e:ba:5d:bb:a5:0f:12:00:
b3:ae:14:f5:54:7f:60:f3:04:1a:89:65:b5:23:d1:
d5:48:09:6b:44:d8:86:dd:e8:f0:8d:a0:d1:d4:d7:
66:25:d8:21:4e:85:ad:ff:b2:db:64:6c:01:e5:9a:
8b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:8F:44:9C:99:41:20:C3:7C:F2:91:26:5C:E8:8C:21:8A:D1:35:51
X509v3 Authority Key Identifier:
keyid:EC:F4:27:76:BE:53:2B:D0:57:53:32:85:5D:8C:42:C4:95:2E:D9:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7PQndr5TK9BXUzKFXYxCxJUu2TE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ebd49f-f569-4152-b0b8-5e53c23b55b0/1/Ko9EnJlBIMN88pEmXOiMIYrRNVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ebd49f-f569-4152-b0b8-5e53c23b55b0/1/7PQndr5TK9BXUzKFXYxCxJUu2TE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.109.0.0/16
185.210.32.0/22
Signature Algorithm: sha256WithRSAEncryption
69:a3:b1:f1:74:5b:3f:20:84:1c:b2:97:0a:63:22:b6:49:41:
05:53:66:2e:ed:64:4c:26:0c:2e:69:11:9c:5c:bf:4b:1b:b7:
78:67:c8:5c:cd:8b:2e:ff:ad:ca:87:66:58:5d:63:e3:7f:59:
c8:77:8c:8a:12:60:4c:b5:35:da:f4:0e:1b:31:f1:ef:63:e9:
f1:20:86:40:e0:37:f4:c9:20:4d:38:2a:35:29:09:32:d8:f4:
ed:26:6d:a8:f5:5f:3e:cb:c3:fa:fb:29:dd:1c:9e:70:6e:81:
5f:30:9d:78:23:e7:1e:e5:32:6e:d8:13:68:8a:7c:98:e9:25:
88:ab:59:12:e1:f5:22:db:3f:d0:00:25:03:e6:ff:f6:2d:85:
04:7e:77:f2:f9:f4:29:dc:7c:d7:2a:e1:f4:e5:2b:0a:50:b1:
58:ca:91:6a:47:b4:d5:44:e9:1c:9b:31:c2:59:e2:2c:1d:e5:
4d:6c:4b:57:df:6b:95:4f:8c:52:2b:e2:fa:83:7c:c5:33:21:
b2:6d:30:41:f2:95:b5:c8:e3:49:6d:d6:75:98:6f:e6:7f:65:
c5:40:0b:b5:1b:59:14:29:cc:1b:12:f5:3c:fc:31:07:7f:61:
73:96:90:01:d5:02:d4:1f:09:9f:a1:f6:22:79:8e:04:83:97:
81:28:79:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:57 2023 by rpki-client on console-fra.rpki-client.org