Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/K_kKuZpRY4dmS7S70M1xxBb8OFk.roa
File: K_kKuZpRY4dmS7S70M1xxBb8OFk.roa (raw, json)
Hash identifier: DCJVcOxIOAo6wD14w/zYHsEFzD9faLYMPrqsSFfdFUI=
Subject key identifier: 2B:F9:0A:B9:9A:51:63:87:66:4B:B4:BB:D0:CD:71:C4:16:FC:38:59
Certificate issuer: /CN=6f0b15193816fd15dcfd047db4eeca672912bb60
Certificate serial: 01822522F13FC4B137E55386EEBBEFD13DBE
Authority key identifier: 6F:0B:15:19:38:16:FD:15:DC:FD:04:7D:B4:EE:CA:67:29:12:BB:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bwsVGTgW_RXc_QR9tO7KZykSu2A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/K_kKuZpRY4dmS7S70M1xxBb8OFk.roa
Signing time: Fri 22 Jul 2022 09:00:23 +0000
ROA not before: Fri 22 Jul 2022 09:00:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398465
IP address blocks: 185.167.233.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:25:22:f1:3f:c4:b1:37:e5:53:86:ee:bb:ef:d1:3d:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f0b15193816fd15dcfd047db4eeca672912bb60
Validity
Not Before: Jul 22 09:00:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2bf90ab99a516387664bb4bbd0cd71c416fc3859
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:2a:75:02:46:31:63:33:7e:51:a8:e5:9a:12:
88:a7:02:ae:db:38:93:67:a2:e0:a5:9b:c7:52:b0:
83:a9:7e:0c:2f:71:7a:d9:f2:fa:c4:88:a0:a4:9d:
0d:17:fd:17:cd:36:a8:00:01:fb:6f:7a:56:a6:57:
bb:12:0e:8c:80:0e:04:b5:7c:1f:30:fe:cc:a2:86:
40:09:b7:fd:87:d1:c7:4f:0a:59:17:f1:fa:98:8b:
90:b3:b1:46:78:8d:59:9b:21:0b:98:5c:e4:7a:7d:
24:6b:91:da:71:49:14:6b:59:50:09:9b:1f:21:97:
f3:bd:25:94:ec:be:cc:1b:2f:16:74:76:41:0d:b4:
44:4d:8e:72:5f:bc:f3:6d:d0:e0:38:6d:2d:87:8f:
8a:04:19:54:c7:64:86:9e:92:1b:84:60:84:de:fe:
eb:e5:75:c1:30:d5:0a:22:5a:a8:96:18:79:fb:e6:
93:c1:c6:bb:e9:57:29:ab:03:89:4e:5a:6e:e4:8c:
40:df:17:8c:9b:45:72:81:70:5d:ef:08:52:9d:92:
86:24:9c:a5:75:83:39:f2:b3:8a:48:2e:ef:4f:78:
a8:b4:d8:01:fb:78:51:3a:12:45:7a:16:5f:6d:eb:
10:bd:02:d2:f8:a7:7a:4f:58:bb:e9:22:62:ff:96:
ed:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:F9:0A:B9:9A:51:63:87:66:4B:B4:BB:D0:CD:71:C4:16:FC:38:59
X509v3 Authority Key Identifier:
keyid:6F:0B:15:19:38:16:FD:15:DC:FD:04:7D:B4:EE:CA:67:29:12:BB:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bwsVGTgW_RXc_QR9tO7KZykSu2A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/K_kKuZpRY4dmS7S70M1xxBb8OFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/bwsVGTgW_RXc_QR9tO7KZykSu2A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.233.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:05:a7:0f:92:33:fb:ff:cb:76:80:44:e8:5b:1b:5b:69:21:
df:c9:60:2e:9d:9a:61:03:7d:7c:6b:3a:e0:9a:ab:2c:b6:69:
1b:4a:bf:d6:c0:11:4a:c0:25:b6:4e:55:fd:5f:47:d3:84:8a:
38:ca:2b:23:b8:9b:a3:c8:79:cd:ec:da:4b:03:ff:7b:4a:d6:
86:7a:b6:f8:84:4d:24:62:d2:ce:ba:d7:9e:32:4a:a1:8e:f7:
dc:e2:8f:f8:ec:d5:5b:9e:fb:de:79:0a:1d:74:e1:88:79:d7:
a8:78:cb:c1:db:5e:d7:84:14:2e:f1:94:87:b1:47:a2:b8:55:
87:e0:53:56:7d:bf:96:1d:24:0d:ee:68:5c:93:bf:54:42:8c:
38:48:25:fe:59:75:e2:74:e4:55:3e:80:a2:28:29:26:ca:d1:
8e:76:53:74:02:57:7e:62:ea:8a:f6:e9:b1:d6:b0:d4:6d:60:
a4:fd:45:86:95:82:55:3c:14:ed:46:2c:68:11:97:d3:e3:7b:
75:6e:2f:e2:a4:4d:e1:a0:77:76:66:34:54:38:cb:62:33:6c:
38:30:db:ae:c7:25:6d:35:15:b2:ca:c5:4a:3c:77:9a:ec:6e:
2a:bb:d9:4e:be:83:11:fd:88:4b:53:89:cf:ea:1c:73:1b:d5:
b6:af:da:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:45 2023 by rpki-client on console-fra.rpki-client.org