Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/6db46d-bc2d-45d7-a279-820325f53ccb/1/KZ7drLkhlbhH_0tI-bh3vNgVa2A.roa
File: KZ7drLkhlbhH_0tI-bh3vNgVa2A.roa (raw, json)
Hash identifier: rA2pznqEMOLUGjtUoU381pkhUzGCvPUr33XbP+Rwuvw=
Subject key identifier: 29:9E:DD:AC:B9:21:95:B8:47:FF:4B:48:F9:B8:77:BC:D8:15:6B:60
Certificate issuer: /CN=656cc25012e3a4c8b1626dd757c7b0510e457341
Certificate serial: 06C20EA6
Authority key identifier: 65:6C:C2:50:12:E3:A4:C8:B1:62:6D:D7:57:C7:B0:51:0E:45:73:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZWzCUBLjpMixYm3XV8ewUQ5Fc0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/6db46d-bc2d-45d7-a279-820325f53ccb/1/KZ7drLkhlbhH_0tI-bh3vNgVa2A.roa
Signing time: Sat 01 Jan 2022 12:03:49 +0000
ROA not before: Sat 01 Jan 2022 12:03:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.170.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113381030 (0x6c20ea6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=656cc25012e3a4c8b1626dd757c7b0510e457341
Validity
Not Before: Jan 1 12:03:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=299eddacb92195b847ff4b48f9b877bcd8156b60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fe:f3:36:7b:2d:d6:3b:24:c6:1f:d9:92:9a:5b:
8d:1d:48:88:0f:d9:87:33:a9:10:5d:db:23:10:28:
02:47:9a:0e:a7:a5:74:b9:2c:c9:ae:38:6c:7f:7f:
ec:5d:c1:ab:56:dd:f5:da:17:2c:70:4f:dd:40:eb:
1a:d5:a4:dd:18:b9:90:13:97:2a:78:25:8c:b2:18:
b7:c6:98:b0:2f:d9:76:00:31:89:09:29:45:59:c0:
7b:69:42:e3:d6:33:52:7d:e3:52:42:9e:ae:56:17:
80:6f:1e:cf:1b:06:9a:4f:c5:f5:23:f0:71:01:84:
7f:42:90:29:bd:37:1a:d5:0d:9b:b1:01:17:1f:f5:
44:3b:63:33:e2:07:97:3c:34:ca:0f:7f:c1:54:0a:
5a:60:e6:60:24:d6:04:da:f0:fc:15:0b:b7:87:c0:
c4:3d:40:f0:35:f5:38:84:da:f3:d0:a3:e1:66:c6:
a8:13:85:33:ec:85:65:87:3d:dd:d8:3b:35:e7:b2:
00:5e:e0:87:6f:4c:99:7c:4a:3a:ab:81:d5:be:3d:
cc:c8:99:43:c9:2d:17:c6:08:7d:fb:d3:a4:f1:7c:
3c:f2:ed:74:79:36:04:61:d3:39:de:01:93:00:13:
79:8a:f8:ea:b9:2d:dd:5e:ff:e5:9f:15:25:13:bf:
1e:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:9E:DD:AC:B9:21:95:B8:47:FF:4B:48:F9:B8:77:BC:D8:15:6B:60
X509v3 Authority Key Identifier:
keyid:65:6C:C2:50:12:E3:A4:C8:B1:62:6D:D7:57:C7:B0:51:0E:45:73:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZWzCUBLjpMixYm3XV8ewUQ5Fc0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6db46d-bc2d-45d7-a279-820325f53ccb/1/KZ7drLkhlbhH_0tI-bh3vNgVa2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6db46d-bc2d-45d7-a279-820325f53ccb/1/ZWzCUBLjpMixYm3XV8ewUQ5Fc0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.170.188.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:c2:30:a7:ca:4e:b6:4d:ff:25:46:ba:a1:f5:e4:50:8b:d7:
44:45:3b:94:ac:66:7b:29:d4:51:a3:e6:b4:e1:5b:ee:81:5b:
f6:50:11:dc:c4:81:d5:79:19:8f:34:29:c4:e2:94:56:83:1f:
75:bd:0a:41:c3:d3:d5:fe:09:4d:ca:45:98:2b:8f:77:33:05:
30:aa:5b:a2:0d:47:ba:24:c8:b7:25:3a:7f:55:1b:b1:f0:58:
7e:58:2f:a6:de:93:f6:09:46:18:5d:38:15:a8:0d:46:05:8e:
ff:dc:33:bd:c6:eb:ee:3a:53:fc:30:6c:10:37:06:64:06:e7:
5c:7c:cd:0f:91:05:31:e5:d5:5c:fb:a5:6a:cc:60:e7:ff:a2:
d2:f5:b6:a6:5b:33:37:f5:61:d4:2e:de:a2:01:ba:cb:fb:07:
d4:57:62:38:b2:cd:a4:21:48:ab:82:7a:19:30:c0:f2:47:9e:
8a:66:af:96:f3:fe:d6:b2:78:3c:a1:2c:76:ac:4b:5b:0a:da:
ba:33:38:83:c3:29:fb:68:0c:c1:ab:1c:cf:19:7d:7f:fb:6c:
82:8f:c5:6c:00:de:d9:8d:f2:49:e1:89:9f:0f:6a:a5:63:ed:
c6:74:09:28:19:00:68:b2:4c:6e:06:b6:71:4c:f3:1e:50:75:
61:f9:ed:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:47 2024 by rpki-client on console-ams.rpki-client.org