Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/905c88-9d3b-49de-89e8-4dbefd1f2bf0/1/rKKEJCtGn4jKtlLaui4iUP_SViI.roa
File: rKKEJCtGn4jKtlLaui4iUP_SViI.roa (raw, json)
Hash identifier: GoIqdTKXLqM1ieO28CgZADvXZ/m0BzfiqF/bM6iDkL4=
Subject key identifier: AC:A2:84:24:2B:46:9F:88:CA:B6:52:DA:BA:2E:22:50:FF:D2:56:22
Certificate issuer: /CN=f86fe427cff6d85a695ec86528a4830cb408a818
Certificate serial: 027B94D4
Authority key identifier: F8:6F:E4:27:CF:F6:D8:5A:69:5E:C8:65:28:A4:83:0C:B4:08:A8:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-G_kJ8_22FppXshlKKSDDLQIqBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/905c88-9d3b-49de-89e8-4dbefd1f2bf0/1/rKKEJCtGn4jKtlLaui4iUP_SViI.roa
Signing time: Sat 01 Jan 2022 15:58:54 +0000
ROA not before: Sat 01 Jan 2022 15:58:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25193
IP address blocks: 193.41.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41653460 (0x27b94d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f86fe427cff6d85a695ec86528a4830cb408a818
Validity
Not Before: Jan 1 15:58:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aca284242b469f88cab652daba2e2250ffd25622
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:35:3e:69:32:f6:88:a0:eb:cf:a7:23:14:60:
f9:2c:20:67:a9:ac:73:49:01:56:9e:5a:9c:32:85:
c3:e5:ba:82:9f:42:d4:3e:53:96:f8:95:0d:fc:eb:
04:56:c0:f0:f9:f8:8a:cd:67:3e:02:31:b9:d2:a8:
12:b1:43:02:ec:57:c2:54:ab:10:44:df:36:3a:dc:
7d:e9:6d:54:92:53:f9:19:c8:2a:66:f7:45:5c:94:
3e:0f:b5:bd:f8:00:55:41:f4:1e:dc:b4:7b:cd:d6:
3b:32:bf:47:2b:40:fe:04:1a:fa:0d:d2:e5:c3:f6:
0a:64:0f:bd:c8:f2:2e:3b:1b:f3:d5:3b:1e:13:d3:
1a:6f:13:7f:a8:d8:72:e4:46:35:0a:b5:b4:ae:e9:
d9:83:1d:5d:05:98:65:ca:6f:3b:4f:cc:b1:f0:31:
e9:88:8e:a9:57:cd:9d:a4:90:ee:c8:e4:6f:b3:b5:
79:87:aa:fd:d1:37:23:2b:19:d1:fb:56:e2:1d:0d:
a1:3a:7e:28:fc:42:f9:cc:58:4b:97:16:29:87:21:
b5:0e:b1:a5:d8:ac:3f:8e:3b:95:c7:96:5f:20:fc:
2c:ed:d9:1a:b1:49:c9:40:8e:aa:3e:f0:a2:84:cd:
ed:95:00:ee:62:07:5e:5d:82:fc:28:9c:4b:2a:09:
b6:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:A2:84:24:2B:46:9F:88:CA:B6:52:DA:BA:2E:22:50:FF:D2:56:22
X509v3 Authority Key Identifier:
keyid:F8:6F:E4:27:CF:F6:D8:5A:69:5E:C8:65:28:A4:83:0C:B4:08:A8:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-G_kJ8_22FppXshlKKSDDLQIqBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/905c88-9d3b-49de-89e8-4dbefd1f2bf0/1/rKKEJCtGn4jKtlLaui4iUP_SViI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/905c88-9d3b-49de-89e8-4dbefd1f2bf0/1/1-G_kJ8_22FppXshlKKSDDLQIqBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.129.0/24
Signature Algorithm: sha256WithRSAEncryption
11:34:6f:ef:a5:62:14:ab:45:87:85:1d:44:30:d6:a3:64:06:
c4:97:55:6c:fd:e1:6f:cc:4c:a7:87:91:09:c1:8a:a6:cf:42:
98:d7:b3:74:e8:9f:ad:b0:a6:ad:91:51:7c:1f:9b:c6:7e:db:
fc:8e:ec:42:39:a6:93:e4:1d:66:c1:07:74:59:53:b0:0c:32:
ad:e3:73:61:54:ce:6c:46:f6:5d:40:6c:99:c8:8b:45:34:21:
78:6e:20:e9:df:90:88:bf:85:2d:0c:af:03:6f:69:61:b2:7f:
c2:88:17:81:54:43:80:cf:58:91:2a:88:d2:78:59:d0:8d:dd:
a9:57:e8:b6:d7:08:60:ac:6f:e2:90:9a:68:fc:1b:3c:6a:49:
57:2a:94:46:16:f8:cd:1c:e3:62:31:d8:3e:dd:fc:e5:ce:d6:
06:37:da:4b:45:bf:e0:97:35:2c:e2:1f:30:03:5f:a7:79:87:
03:e1:ba:86:bc:0c:02:bd:2d:93:4a:88:e7:53:fa:e8:e4:70:
79:77:6f:cc:ff:8b:8f:68:42:38:e6:89:29:37:4e:df:1c:0e:
38:c2:0b:f1:62:ca:56:65:7b:0c:30:1d:58:e3:aa:fa:f9:5f:
33:39:9b:c7:07:eb:b8:a6:5c:e1:21:f6:30:6a:4f:2c:31:6a:
cd:66:c8:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:17 2024 by rpki-client on console-ams.rpki-client.org