Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/A-9-W5sQG17H0F_krnSYeNLWXI0.roa
File: A-9-W5sQG17H0F_krnSYeNLWXI0.roa (raw, json)
Hash identifier: k0sXCkmOaq+sgteCNT2iIBLtrWbFkUJIfQ7PtJ78p9M=
Subject key identifier: 03:EF:7E:5B:9B:10:1B:5E:C7:D0:5F:E4:AE:74:98:78:D2:D6:5C:8D
Certificate issuer: /CN=ce43fe94da4aef7adfb1c162875af1cac7cba4b1
Certificate serial: 06E9AD54
Authority key identifier: CE:43:FE:94:DA:4A:EF:7A:DF:B1:C1:62:87:5A:F1:CA:C7:CB:A4:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zkP-lNpK73rfscFih1rxysfLpLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/A-9-W5sQG17H0F_krnSYeNLWXI0.roa
Signing time: Sat 01 Jan 2022 15:07:03 +0000
ROA not before: Sat 01 Jan 2022 15:07:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48544
IP address blocks: 185.86.200.0/23 maxlen: 24
185.86.203.0/24 maxlen: 24
185.86.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115977556 (0x6e9ad54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce43fe94da4aef7adfb1c162875af1cac7cba4b1
Validity
Not Before: Jan 1 15:07:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03ef7e5b9b101b5ec7d05fe4ae749878d2d65c8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ed:c4:da:ba:4e:0b:e3:f4:b4:31:0c:58:ec:
eb:18:63:c6:c3:06:5c:c4:aa:2b:e3:6e:59:bb:a1:
94:e6:e7:ce:19:01:fb:72:e0:95:0c:b1:97:e6:a5:
76:bf:bc:e9:80:c0:0e:40:26:e9:9c:58:26:d9:ce:
3c:01:42:4e:7c:2d:b2:30:70:e4:ee:eb:2e:1e:45:
96:ea:12:19:30:75:26:4b:e1:35:f3:f0:a5:33:f0:
a0:01:5a:57:ca:8e:dd:0d:db:82:c0:61:58:1e:5d:
2b:ef:7a:89:b7:64:10:1c:6d:e0:cc:73:94:9f:79:
d5:ce:2f:a3:4b:b1:7d:ba:5f:dc:99:49:73:0c:a3:
64:e6:5f:44:49:d7:8d:07:42:26:69:d0:0b:47:12:
52:2a:3e:0a:6e:a4:c0:78:40:d2:dd:82:b2:b0:b9:
60:b2:be:39:58:f6:db:eb:b6:11:6a:46:ea:a3:b2:
e7:dd:a7:d4:43:35:24:a3:39:d2:84:29:fb:40:76:
42:b6:18:b7:ed:be:af:9e:00:a7:0e:1a:c5:f1:e9:
cf:07:57:d5:1b:79:25:4d:bb:60:28:15:7d:3d:35:
60:1f:4e:aa:a2:e6:8c:60:b6:54:e0:a5:fa:2c:97:
24:3f:3e:71:c2:17:7c:9b:fc:bb:02:ab:f2:ac:2d:
3f:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:EF:7E:5B:9B:10:1B:5E:C7:D0:5F:E4:AE:74:98:78:D2:D6:5C:8D
X509v3 Authority Key Identifier:
keyid:CE:43:FE:94:DA:4A:EF:7A:DF:B1:C1:62:87:5A:F1:CA:C7:CB:A4:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zkP-lNpK73rfscFih1rxysfLpLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/A-9-W5sQG17H0F_krnSYeNLWXI0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.200.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:9f:28:f7:4e:dc:c7:a8:1e:92:b9:16:20:61:53:04:97:be:
67:7a:1b:13:cc:57:fa:99:cb:5b:78:5e:cf:a3:49:c1:1b:25:
44:27:11:c7:de:c2:06:25:eb:7f:b8:bf:86:82:ce:76:6d:bd:
92:93:d6:ce:8d:a3:73:bb:0f:6a:de:61:c0:c8:ed:ea:73:02:
de:63:74:db:e1:80:41:9c:07:bf:d9:4f:68:d4:ca:2f:55:d2:
63:3c:a7:15:1e:33:8d:54:3a:99:4c:39:14:26:48:23:46:9e:
73:35:a5:c2:f6:97:69:e3:5e:6e:6a:e8:00:27:b3:2b:47:ec:
83:c1:17:90:fd:c1:40:e0:04:95:5b:f5:29:71:c2:47:b0:6f:
e7:8d:7a:95:e0:8a:3f:2e:85:28:77:0b:e6:57:a4:65:fb:5e:
d5:e0:55:49:58:52:b8:e0:a9:47:01:e1:b0:90:68:15:53:44:
b1:2d:c2:9c:45:ac:fb:75:14:cc:7a:a5:ba:ad:38:9e:27:86:
1e:aa:ae:96:fd:21:e7:1f:d8:9d:c1:dd:75:33:76:50:11:d8:
b9:f4:b8:44:bf:26:ce:6f:75:67:b0:aa:d5:5b:76:c8:70:12:
81:f4:71:5b:05:86:64:be:24:c8:85:37:58:1e:df:74:6f:53:
7a:e1:83:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:35 2024 by rpki-client on console-ams.rpki-client.org