Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/96dbcd-6a39-4c20-9128-d8c351d93ec6/1/kRLMNZTTgd1o-IW_a9Fdv4sUdt4.roa
File: kRLMNZTTgd1o-IW_a9Fdv4sUdt4.roa (raw, json)
Hash identifier: 3hteYfqndl0y/PwVf7MUQK3THf16RGgLIUMGJYY7nvQ=
Subject key identifier: 91:12:CC:35:94:D3:81:DD:68:F8:85:BF:6B:D1:5D:BF:8B:14:76:DE
Certificate issuer: /CN=845d042f65e1b1303a44e43e0e02748a75837b44
Certificate serial: 05B64ACC
Authority key identifier: 84:5D:04:2F:65:E1:B1:30:3A:44:E4:3E:0E:02:74:8A:75:83:7B:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hF0EL2XhsTA6ROQ-DgJ0inWDe0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/96dbcd-6a39-4c20-9128-d8c351d93ec6/1/kRLMNZTTgd1o-IW_a9Fdv4sUdt4.roa
Signing time: Sat 01 Jan 2022 15:07:29 +0000
ROA not before: Sat 01 Jan 2022 15:07:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12459
IP address blocks: 185.241.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95832780 (0x5b64acc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=845d042f65e1b1303a44e43e0e02748a75837b44
Validity
Not Before: Jan 1 15:07:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9112cc3594d381dd68f885bf6bd15dbf8b1476de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a9:a2:45:c4:7e:24:b0:1e:6b:7a:9d:6c:16:
71:74:f7:03:48:0c:56:05:71:c8:31:42:d1:b8:a5:
76:61:52:86:dc:f6:4d:6f:4d:0b:28:2b:00:48:b8:
ec:51:9b:f3:79:1d:4c:da:8a:28:0d:cd:39:fc:b7:
11:e7:2d:f0:ab:cf:f6:f7:e7:2c:4d:3c:2b:a6:e7:
9d:ba:f6:ed:1d:03:a4:80:4f:67:28:f7:55:85:33:
6c:13:13:0d:43:cb:ba:b2:1d:02:a7:65:bb:a8:de:
b7:43:6d:db:c8:63:b9:73:9d:22:e9:13:a0:19:94:
2f:23:12:4f:93:73:14:26:16:42:44:93:47:e4:60:
58:08:ed:16:12:3a:da:2f:84:97:92:0b:27:a9:67:
f0:c0:d0:fc:1f:08:f6:b4:2d:a4:d7:e5:30:55:a2:
f7:40:ec:d5:b9:28:09:26:a2:d6:a3:fb:d2:37:b5:
1c:4e:a0:b0:8b:7c:c3:1b:4c:a4:04:5f:e9:46:58:
be:7c:06:17:6d:21:5a:65:fb:1b:e3:28:1a:08:2e:
0a:27:05:de:99:63:b5:44:df:f9:9d:59:8c:dc:3e:
94:bf:59:99:0a:30:19:51:f9:89:1e:51:04:82:a9:
4d:8f:8f:e6:fe:69:80:46:19:4a:aa:eb:12:8f:40:
dc:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:12:CC:35:94:D3:81:DD:68:F8:85:BF:6B:D1:5D:BF:8B:14:76:DE
X509v3 Authority Key Identifier:
keyid:84:5D:04:2F:65:E1:B1:30:3A:44:E4:3E:0E:02:74:8A:75:83:7B:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hF0EL2XhsTA6ROQ-DgJ0inWDe0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/96dbcd-6a39-4c20-9128-d8c351d93ec6/1/kRLMNZTTgd1o-IW_a9Fdv4sUdt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/96dbcd-6a39-4c20-9128-d8c351d93ec6/1/hF0EL2XhsTA6ROQ-DgJ0inWDe0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.212.0/24
Signature Algorithm: sha256WithRSAEncryption
f1:57:f8:f6:9a:e2:9f:ca:07:ec:3e:fe:a2:f2:38:ca:a0:45:
07:e8:3a:5d:a8:0d:8c:26:3c:14:e6:bb:93:3f:b0:0c:22:0e:
d5:a6:8c:ff:b1:80:3f:5a:c0:37:7d:41:07:a3:a9:92:e8:06:
7f:32:99:aa:e5:3a:3a:d2:29:e4:9d:fe:5c:7f:80:3e:5e:52:
07:b2:ac:6e:6e:78:9d:3e:54:0c:21:ee:da:7a:86:41:46:db:
eb:99:52:10:1e:ad:ff:72:ac:e8:bd:ca:d9:c4:2f:f6:7c:ab:
e8:6a:78:48:64:a2:ee:41:44:27:c6:51:e2:b3:39:7d:2a:f7:
94:92:32:38:1a:3f:2a:4e:39:be:f6:d9:28:d5:a9:e6:08:c7:
08:63:f8:95:11:61:56:24:97:2a:be:50:6a:99:85:cd:6a:98:
e4:7f:ba:cb:b3:a6:b9:bc:5c:3f:01:16:db:45:e9:21:d1:56:
e7:c1:b4:d4:8f:7e:ea:25:cc:8a:f0:17:7b:2d:4e:be:fe:81:
24:39:cf:2a:71:c2:fa:c4:44:ab:33:8e:08:bd:eb:33:69:f5:
c0:3b:0c:a2:e5:32:47:88:5a:0c:3c:48:31:b6:0f:86:2c:2a:
cf:f1:d4:83:a9:bc:f4:c2:52:54:fe:4f:c9:8c:fa:f5:2f:a7:
4d:3d:e7:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:07 2023 by rpki-client on console-ams.rpki-client.org