Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/KpPM3Nf2yF_YDAKFsiKRtWf5Jb4.roa
File: KpPM3Nf2yF_YDAKFsiKRtWf5Jb4.roa (raw, json)
Hash identifier: kkF5/0+89LfsLrhwOhLSSSlTBm/JNV7iu8EDahA0LaU=
Subject key identifier: 2A:93:CC:DC:D7:F6:C8:5F:D8:0C:02:85:B2:22:91:B5:67:F9:25:BE
Certificate issuer: /CN=d673d849b7d5047376d57e6f796f0018b70b4506
Certificate serial: 0897ABD6
Authority key identifier: D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/KpPM3Nf2yF_YDAKFsiKRtWf5Jb4.roa
Signing time: Sat 01 Jan 2022 02:51:46 +0000
ROA not before: Sat 01 Jan 2022 02:51:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13008
IP address blocks: 185.86.27.0/24 maxlen: 24
217.175.205.0/24 maxlen: 24
185.86.26.0/24 maxlen: 24
217.175.204.0/24 maxlen: 24
185.86.25.0/24 maxlen: 24
185.86.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144157654 (0x897abd6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d673d849b7d5047376d57e6f796f0018b70b4506
Validity
Not Before: Jan 1 02:51:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a93ccdcd7f6c85fd80c0285b22291b567f925be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:3a:6a:a0:9a:2c:b0:08:c8:a4:63:8e:d8:ba:
1c:ec:10:fb:e7:ee:de:7d:6b:02:83:91:6f:99:c0:
3b:d9:f8:29:5d:5a:24:c8:5c:06:33:70:3e:ee:ae:
8b:7f:d4:7a:b9:f2:09:a7:54:26:77:4c:cb:54:4e:
51:07:88:27:85:ec:f4:b0:44:12:0c:eb:0e:69:6c:
c7:03:ea:75:7e:98:e0:ea:f9:6f:42:43:da:d4:2c:
77:88:16:8d:79:cc:0c:1a:f0:c8:79:37:bc:c6:a0:
89:3a:c2:1a:60:80:e9:55:f8:49:37:67:5d:62:08:
5f:ef:fe:09:90:31:87:cb:1b:84:76:21:bf:0c:eb:
e5:4b:a1:21:19:9b:e0:83:23:be:d6:48:88:38:eb:
74:f2:a3:2d:54:7a:f3:18:30:11:a1:b6:2f:0a:66:
7d:9f:ca:e2:e5:b3:6d:b1:c0:4c:34:a8:61:dd:5e:
e9:3b:a2:b7:4a:e7:15:6d:9f:fe:46:bb:31:da:38:
b1:2c:31:bb:42:3d:0b:bf:9b:81:13:4d:33:8c:66:
a0:be:f2:5b:d9:f8:1b:fb:77:ae:c4:34:f3:ad:83:
0d:48:ed:d1:0d:59:3c:32:6e:48:ce:db:83:49:9b:
44:03:69:8c:b9:59:f4:6a:cd:ec:b5:5b:94:a2:20:
d2:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:93:CC:DC:D7:F6:C8:5F:D8:0C:02:85:B2:22:91:B5:67:F9:25:BE
X509v3 Authority Key Identifier:
keyid:D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/KpPM3Nf2yF_YDAKFsiKRtWf5Jb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/1nPYSbfVBHN21X5veW8AGLcLRQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.24.0/22
217.175.204.0/23
Signature Algorithm: sha256WithRSAEncryption
ad:b3:91:10:e6:8d:34:0a:01:6e:23:17:f7:ee:28:c3:73:ab:
90:d6:8b:22:e6:1a:0a:8f:e5:82:c8:01:39:77:d6:a7:09:52:
ea:dd:28:34:39:18:4c:ba:73:50:f1:74:3e:99:9b:5b:61:2c:
4f:d6:aa:82:4d:0b:e6:d5:cd:b6:b6:70:37:44:51:0a:ff:af:
f6:4f:e3:29:c0:7e:20:bd:6c:25:3c:b5:11:d3:ea:cd:ec:bd:
47:77:6c:f0:ab:ed:8b:c1:ba:aa:62:92:10:ce:8d:dc:22:7f:
ae:cb:53:c5:30:29:f1:7a:25:a5:9d:cb:33:a5:db:4d:91:de:
78:4c:06:af:32:9b:23:61:f4:ce:cf:12:b9:d5:f6:e3:76:74:
b0:78:50:33:fe:9a:1b:97:f5:62:1a:dc:6f:92:a4:6b:66:62:
bc:03:61:f9:38:aa:ba:65:c0:69:97:81:4b:35:1b:93:04:b3:
f9:6a:e1:32:9e:bc:9e:08:05:eb:f6:19:59:92:4d:84:0b:27:
86:78:e6:d9:01:8c:87:de:12:5a:1a:14:53:5e:8d:84:94:21:
42:fd:07:b0:b1:4b:ff:01:17:e4:ff:4a:14:c8:d9:ea:72:b4:
da:25:54:67:e8:b8:cd:85:4a:5f:d1:ed:03:5d:35:ad:68:ef:
46:b0:5f:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:35 2023 by rpki-client on console-ams.rpki-client.org