Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/a442c5-d14f-429f-a515-bc54b1211b60/1/KbQrWWw4tgfNSAL6cPRULeVETqI.roa
File: KbQrWWw4tgfNSAL6cPRULeVETqI.roa (raw, json)
Hash identifier: 3wLvdVyGsuxk6unNyA0JLP7byDoMrzjRfWwQIn1kEp4=
Subject key identifier: 29:B4:2B:59:6C:38:B6:07:CD:48:02:FA:70:F4:54:2D:E5:44:4E:A2
Certificate issuer: /CN=345fb3feb15c03c4d34d9ff444d9ad7e30067208
Certificate serial: 0930069A
Authority key identifier: 34:5F:B3:FE:B1:5C:03:C4:D3:4D:9F:F4:44:D9:AD:7E:30:06:72:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NF-z_rFcA8TTTZ_0RNmtfjAGcgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/a442c5-d14f-429f-a515-bc54b1211b60/1/KbQrWWw4tgfNSAL6cPRULeVETqI.roa
Signing time: Mon 20 Jun 2022 07:47:44 +0000
ROA not before: Mon 20 Jun 2022 07:47:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198551
IP address blocks: 130.93.184.0/22 maxlen: 22
130.93.180.0/22 maxlen: 22
130.93.188.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154142362 (0x930069a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=345fb3feb15c03c4d34d9ff444d9ad7e30067208
Validity
Not Before: Jun 20 07:47:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29b42b596c38b607cd4802fa70f4542de5444ea2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:72:d4:e8:1a:36:f7:27:22:76:78:41:bd:ce:
14:7f:58:a3:9d:48:d0:5d:40:09:df:e5:e3:b9:d0:
d1:16:f5:88:6c:92:60:1d:a6:3e:44:87:7e:3a:c2:
7a:9c:96:84:4a:4f:fb:1b:c1:15:53:7a:2b:1c:cc:
1f:c2:6f:92:a4:23:30:06:bd:40:e1:3f:c4:eb:15:
ea:24:a4:28:f4:57:cc:52:5f:bf:69:6c:df:d9:8b:
d5:fe:2d:a3:22:a4:82:d7:d0:62:6a:19:fb:1a:9d:
b3:02:76:39:22:0f:bd:34:4b:62:07:fa:0e:8b:ad:
34:1e:69:7b:5c:99:42:3e:0d:f9:b3:31:87:be:46:
ff:3e:d9:ba:a9:6f:62:92:14:05:a5:6e:22:38:e2:
87:a8:a7:3a:e6:62:9b:37:70:b1:99:af:22:d0:08:
8a:fc:e0:d0:ac:39:15:b2:bb:1d:68:90:71:be:d7:
de:ca:f6:45:9b:b5:fe:57:0b:51:7b:2e:10:64:d4:
eb:0a:b6:b5:45:d8:e7:fd:c6:a0:e3:07:96:03:c8:
37:c9:4e:4f:6e:72:44:c3:f6:49:c7:e6:90:24:22:
ea:7e:4b:12:b4:99:08:53:af:2c:a2:2b:81:f8:cc:
e5:51:1d:f5:ca:72:ea:60:2f:48:45:08:44:e0:cd:
4d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:B4:2B:59:6C:38:B6:07:CD:48:02:FA:70:F4:54:2D:E5:44:4E:A2
X509v3 Authority Key Identifier:
keyid:34:5F:B3:FE:B1:5C:03:C4:D3:4D:9F:F4:44:D9:AD:7E:30:06:72:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NF-z_rFcA8TTTZ_0RNmtfjAGcgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a442c5-d14f-429f-a515-bc54b1211b60/1/KbQrWWw4tgfNSAL6cPRULeVETqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a442c5-d14f-429f-a515-bc54b1211b60/1/NF-z_rFcA8TTTZ_0RNmtfjAGcgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.93.180.0-130.93.191.255
Signature Algorithm: sha256WithRSAEncryption
6d:79:d4:09:db:c8:79:0d:e3:ee:d3:02:d0:bc:d1:f8:74:9e:
59:e4:3f:f2:58:f7:be:50:58:d3:ab:92:c1:4c:cb:25:90:89:
07:91:d2:dd:0c:5d:82:49:9c:26:ce:bd:29:0a:3e:97:b8:ab:
42:a6:e2:c2:dc:5f:62:f2:e1:20:e8:d3:3a:57:18:15:d7:93:
e5:b8:02:81:14:72:4d:99:fb:d0:70:9d:0b:83:89:ee:e0:b2:
f5:f0:01:e2:85:da:ec:cf:20:13:85:4d:10:91:ce:cd:3c:28:
95:d8:fd:8c:03:c0:ee:0b:f2:39:e2:35:f0:1a:8d:30:d0:29:
f5:5e:93:54:b7:50:af:31:92:2a:36:a8:ac:5e:11:5e:64:27:
45:be:6c:ee:93:57:0b:62:1e:86:d3:f6:52:a4:f8:19:15:d1:
36:06:6a:81:ea:26:4a:15:67:23:c5:50:7d:f9:02:10:a1:06:
e0:e2:68:e0:1f:e4:69:48:23:c6:e0:b5:80:84:99:9b:b3:b8:
c0:67:84:be:c0:07:0c:1b:a3:58:ae:42:8d:16:16:e8:95:9b:
f0:a4:7a:c5:1a:e7:85:ff:bd:94:d4:31:55:2c:07:84:f8:c2:
77:e7:31:a7:86:b3:23:1c:4b:fc:0d:4b:48:ec:2a:e8:f8:33:
be:88:4a:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:10 2024 by rpki-client on console-ams.rpki-client.org