Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/6b547f-cebd-48b5-bdcb-83ae2f214121/1/Kp9BeJNAA5MfY8Zq_l0KkGzbBNg.roa
File: Kp9BeJNAA5MfY8Zq_l0KkGzbBNg.roa (raw, json)
Hash identifier: YHPwjJfjMMKQAg8AeF6kdvnpC7OiYCrrl/L6ZB9fjmE=
Subject key identifier: 2A:9F:41:78:93:40:03:93:1F:63:C6:6A:FE:5D:0A:90:6C:DB:04:D8
Certificate issuer: /CN=5690efa23c778ef7470f3ac0a905619bc7c277e4
Certificate serial: 0927C3A7
Authority key identifier: 56:90:EF:A2:3C:77:8E:F7:47:0F:3A:C0:A9:05:61:9B:C7:C2:77:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VpDvojx3jvdHDzrAqQVhm8fCd-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/6b547f-cebd-48b5-bdcb-83ae2f214121/1/Kp9BeJNAA5MfY8Zq_l0KkGzbBNg.roa
Signing time: Sat 01 Jan 2022 12:06:09 +0000
ROA not before: Sat 01 Jan 2022 12:06:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137
IP address blocks: 141.250.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153600935 (0x927c3a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5690efa23c778ef7470f3ac0a905619bc7c277e4
Validity
Not Before: Jan 1 12:06:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a9f4178934003931f63c66afe5d0a906cdb04d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:09:49:00:de:13:72:b4:fa:48:93:e6:8e:8f:
5c:49:df:03:1c:a9:e5:ec:39:9c:73:57:49:28:f6:
c2:6a:f5:4d:cb:c9:b5:d3:7d:6d:30:2e:22:20:05:
d0:e1:c8:22:5b:24:f9:5e:32:0a:6b:fc:8d:19:2b:
93:d5:a9:02:98:d1:9f:4f:2c:de:4e:c1:f9:7d:6d:
42:cf:a9:d2:09:46:2b:1b:83:ff:ed:11:67:f6:38:
34:dd:c2:f8:e9:3a:9d:58:49:d3:3d:87:7a:fa:0f:
76:2f:00:c3:b3:3c:63:06:4d:17:c7:b6:04:77:0b:
a8:13:eb:84:75:18:5f:7f:31:47:7b:0c:6d:3a:13:
9f:7d:92:a0:fe:47:e7:9f:a3:11:ea:7b:78:be:2e:
43:98:3d:6b:88:7b:33:d6:e7:a3:ea:68:3a:66:8b:
b3:3e:eb:79:48:85:02:b2:8c:4b:d6:e5:0a:3e:eb:
05:d5:00:fe:52:c6:24:75:8d:bd:d1:c4:81:50:49:
ed:3d:db:2a:4f:dc:c9:43:50:66:61:08:c3:ba:93:
2d:86:07:ec:1c:3e:fb:a1:ba:e9:39:f1:b8:3b:c7:
66:0f:a8:d4:dc:ea:6e:34:dd:10:60:57:42:ed:01:
c0:32:dd:f4:27:ea:f7:f7:92:bd:01:e3:30:3f:b3:
28:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:9F:41:78:93:40:03:93:1F:63:C6:6A:FE:5D:0A:90:6C:DB:04:D8
X509v3 Authority Key Identifier:
keyid:56:90:EF:A2:3C:77:8E:F7:47:0F:3A:C0:A9:05:61:9B:C7:C2:77:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VpDvojx3jvdHDzrAqQVhm8fCd-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/6b547f-cebd-48b5-bdcb-83ae2f214121/1/Kp9BeJNAA5MfY8Zq_l0KkGzbBNg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/6b547f-cebd-48b5-bdcb-83ae2f214121/1/VpDvojx3jvdHDzrAqQVhm8fCd-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.250.0.0/16
Signature Algorithm: sha256WithRSAEncryption
44:cf:d8:6c:ac:ab:47:43:ce:f6:d0:72:35:9d:6a:72:81:93:
bb:d7:e1:6b:a0:56:89:d4:0f:ab:09:cf:c8:10:57:36:43:84:
ed:7b:88:3f:18:d7:a7:d0:0a:ee:66:34:b8:b3:b1:de:a5:03:
62:23:f4:46:9b:9f:5e:ff:16:a7:57:18:c4:5e:f5:18:31:ba:
6f:97:f5:2e:8f:a1:25:d2:d2:bd:0e:a1:96:33:b7:45:4c:48:
69:8d:fa:13:ae:fb:7b:72:56:cf:0c:01:85:fc:61:5d:d2:cf:
2b:73:9b:36:07:c7:6b:8d:ec:7d:fc:68:da:ac:c6:dc:1d:9a:
cb:6a:3c:09:ea:32:f2:e8:09:35:bd:c1:4d:e0:24:22:a3:70:
19:30:68:4a:d4:ab:a1:ac:c8:db:9d:2c:f5:6b:3d:16:6b:3e:
3d:0c:18:40:8a:5c:62:74:9b:d1:11:48:8f:bf:d1:70:f9:5c:
1f:5b:a2:0b:22:61:d7:fa:1b:9f:a3:dc:25:07:f1:27:36:b5:
32:cc:20:dc:bb:d5:5e:2b:b2:ca:35:8e:fa:d9:ae:9a:a0:cc:
c0:81:7f:5f:3c:4f:03:3b:01:e6:15:dc:ea:6d:9e:ab:21:30:
41:6a:a2:d8:aa:87:6a:da:1d:2a:5b:7e:6e:a5:09:d7:66:ee:
36:37:a8:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:49 2024 by rpki-client on console-fra.rpki-client.org