Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/b681e4-fcf8-40af-aba3-cf3bdb32fd64/1/KQRsxYaTRLk0LGRSY3k53Ek4mko.roa
File: KQRsxYaTRLk0LGRSY3k53Ek4mko.roa (raw, json)
Hash identifier: bh79nmbfbqxOHDPXIdB8byXvrB//rSyOhp0Hfo0nk5o=
Subject key identifier: 29:04:6C:C5:86:93:44:B9:34:2C:64:52:63:79:39:DC:49:38:9A:4A
Certificate issuer: /CN=f7f4cb8c5202cc535edafd20acb6a80502e4fd29
Certificate serial: 039C7755
Authority key identifier: F7:F4:CB:8C:52:02:CC:53:5E:DA:FD:20:AC:B6:A8:05:02:E4:FD:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9_TLjFICzFNe2v0grLaoBQLk_Sk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/b681e4-fcf8-40af-aba3-cf3bdb32fd64/1/KQRsxYaTRLk0LGRSY3k53Ek4mko.roa
Signing time: Sat 01 Jan 2022 01:56:50 +0000
ROA not before: Sat 01 Jan 2022 01:56:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213402
IP address blocks: 195.216.230.0/24 maxlen: 24
2a02:e3c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60585813 (0x39c7755)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7f4cb8c5202cc535edafd20acb6a80502e4fd29
Validity
Not Before: Jan 1 01:56:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29046cc5869344b9342c6452637939dc49389a4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:d7:2b:ed:02:0c:05:bd:cf:2a:bc:35:4b:b5:
1a:77:69:1e:56:97:b8:38:92:39:d6:65:ea:70:47:
2d:bf:e9:5b:9a:b2:46:0a:90:97:7f:a0:80:cb:37:
a6:c8:c4:59:9d:f8:a8:c9:79:a1:13:9c:67:9a:3e:
55:4b:a4:ba:40:8c:c6:5c:97:9a:cd:d3:a9:f8:b5:
06:db:e2:4f:7d:ae:a0:26:15:fa:33:e0:fa:f2:8a:
eb:79:64:9f:03:d0:d6:10:89:81:f6:b7:1b:74:f8:
e2:38:e9:bb:ea:f5:14:5d:8a:8f:5b:f9:85:ae:28:
83:eb:3e:87:7b:36:62:63:03:6d:27:4c:bd:44:c5:
12:89:92:c4:d3:7f:39:df:8a:48:91:96:66:e0:08:
da:94:65:2b:8b:5e:77:a8:41:13:ac:cd:10:f7:e7:
ea:f5:0e:77:5d:57:62:1f:45:53:53:4f:8d:d3:f5:
df:29:64:a6:6a:0a:b8:b7:d7:d6:54:8c:69:b6:42:
06:b9:c5:7d:96:77:29:52:c3:e6:48:dd:af:d6:6e:
e2:78:eb:48:60:e5:f7:5a:5a:e3:cc:d4:e9:80:82:
6c:d2:bc:60:6b:92:01:a8:26:c7:89:39:6d:41:be:
6a:e1:c7:21:4b:8c:5a:1f:0f:3b:42:76:77:53:b3:
54:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:04:6C:C5:86:93:44:B9:34:2C:64:52:63:79:39:DC:49:38:9A:4A
X509v3 Authority Key Identifier:
keyid:F7:F4:CB:8C:52:02:CC:53:5E:DA:FD:20:AC:B6:A8:05:02:E4:FD:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9_TLjFICzFNe2v0grLaoBQLk_Sk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b681e4-fcf8-40af-aba3-cf3bdb32fd64/1/KQRsxYaTRLk0LGRSY3k53Ek4mko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b681e4-fcf8-40af-aba3-cf3bdb32fd64/1/9_TLjFICzFNe2v0grLaoBQLk_Sk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.216.230.0/24
IPv6:
2a02:e3c0::/29
Signature Algorithm: sha256WithRSAEncryption
0b:36:8e:2c:3d:42:13:b0:58:40:d0:d2:72:7e:bb:94:c0:dc:
d5:77:e6:c7:aa:04:f0:de:ed:c9:6b:fc:45:d9:f1:97:68:8f:
92:3e:c8:08:ab:94:fa:7d:c7:3f:18:14:b5:43:60:f4:06:bf:
15:f5:62:2a:05:12:bb:c7:d4:ca:69:d8:ab:3d:35:0c:4c:5e:
2a:9d:cf:06:d2:a2:48:70:96:7c:98:e0:d6:ea:0f:42:71:88:
c9:34:b6:15:63:2a:07:ce:83:6e:b9:bd:e7:ee:fe:8c:b7:35:
ac:67:7e:f4:23:c2:d2:29:5f:de:a8:89:94:a9:9f:34:61:c7:
e8:2a:c5:3d:9d:c3:d5:97:d4:4d:58:09:6f:64:73:13:26:5e:
f8:ca:c6:ae:98:0d:f5:46:4a:32:67:60:9a:c5:01:bc:b2:78:
09:5f:ec:55:b4:ed:0e:6c:9d:f6:b2:ab:8e:c2:3f:d2:65:5d:
80:34:c7:72:48:c3:c0:b5:ce:07:1f:50:6f:f1:16:2e:28:58:
22:dc:a6:4f:27:d9:0b:91:05:2c:dc:c3:c8:67:9a:a3:b8:ec:
37:1f:d6:19:30:07:4b:7d:86:f1:07:34:70:6c:f7:ee:6c:b0:
7e:c2:96:b8:43:f0:7a:17:da:61:01:e5:a7:ae:12:f3:0c:6d:
01:b6:30:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:22 2023 by rpki-client on console-ams.rpki-client.org