Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/46ca25-7595-4e7f-a4b1-23386749fbdf/1/KYZ4Tn9GwnK937TxWxKjhti-Zd0.roa
File: KYZ4Tn9GwnK937TxWxKjhti-Zd0.roa (raw, json)
Hash identifier: 5V9tDcuZ4FxAS0UCeHGhBjvmsJQV5KmdO5AhHhqYouk=
Subject key identifier: 29:86:78:4E:7F:46:C2:72:BD:DF:B4:F1:5B:12:A3:86:D8:BE:65:DD
Certificate issuer: /CN=0acf0a954639c83582974bd29c1992272b3683a3
Certificate serial: 0183E17905A9C2620F460A2698821816D71A
Authority key identifier: 0A:CF:0A:95:46:39:C8:35:82:97:4B:D2:9C:19:92:27:2B:36:83:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cs8KlUY5yDWCl0vSnBmSJys2g6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/46ca25-7595-4e7f-a4b1-23386749fbdf/1/KYZ4Tn9GwnK937TxWxKjhti-Zd0.roa
Signing time: Sun 16 Oct 2022 15:45:48 +0000
ROA not before: Sun 16 Oct 2022 15:45:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20472
IP address blocks: 185.202.110.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e1:79:05:a9:c2:62:0f:46:0a:26:98:82:18:16:d7:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0acf0a954639c83582974bd29c1992272b3683a3
Validity
Not Before: Oct 16 15:45:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2986784e7f46c272bddfb4f15b12a386d8be65dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:14:f0:ff:c9:2f:04:70:c5:0c:ac:c4:20:95:
d8:38:93:e9:47:3c:93:d0:62:d4:fa:ac:ff:77:16:
82:aa:0c:86:8b:1c:d2:6f:ff:cd:3f:f8:dd:e6:01:
5c:f1:df:8d:be:14:b4:9d:26:03:37:1a:f3:b5:e0:
65:b9:87:a0:2e:22:80:78:d5:98:76:70:9e:5c:59:
04:ce:05:95:11:38:e7:f9:39:17:e2:63:d5:77:7f:
45:de:0e:de:83:58:30:a6:89:e8:67:a9:65:0e:f0:
4d:3b:17:93:b3:19:88:c5:de:e5:9f:f8:3d:1a:2d:
04:a5:0e:3a:7b:c5:10:69:e3:ac:28:4d:d0:90:29:
cf:5a:19:03:2c:81:fa:0c:40:48:46:f9:34:3c:04:
ba:ba:02:9c:11:e5:4f:12:1b:12:64:9a:e4:18:12:
e3:12:f0:4f:f3:ca:30:0b:a9:80:e4:a1:05:ef:26:
ee:5e:77:f4:5a:79:a5:b9:2c:6c:2a:4a:47:d1:57:
8f:ca:d2:12:4d:32:fc:82:12:5c:d5:20:14:51:13:
9a:a8:76:73:3f:97:aa:f2:c0:66:07:c9:37:5d:d6:
4c:8d:1e:5a:32:b9:65:51:f1:5d:1f:65:37:fe:ee:
9b:6a:80:1e:8d:fe:c7:7d:3f:7d:6a:6d:55:07:c2:
29:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:86:78:4E:7F:46:C2:72:BD:DF:B4:F1:5B:12:A3:86:D8:BE:65:DD
X509v3 Authority Key Identifier:
keyid:0A:CF:0A:95:46:39:C8:35:82:97:4B:D2:9C:19:92:27:2B:36:83:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cs8KlUY5yDWCl0vSnBmSJys2g6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/46ca25-7595-4e7f-a4b1-23386749fbdf/1/KYZ4Tn9GwnK937TxWxKjhti-Zd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/46ca25-7595-4e7f-a4b1-23386749fbdf/1/Cs8KlUY5yDWCl0vSnBmSJys2g6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.110.0/24
Signature Algorithm: sha256WithRSAEncryption
35:63:1c:36:c0:d6:e1:bc:3b:84:1f:6c:c5:d1:99:82:91:62:
bf:1a:91:8f:c6:3e:63:73:10:33:9f:a9:1e:e8:4d:f4:de:0e:
fa:09:e4:6f:6a:b1:d7:96:5d:9c:06:d1:85:67:40:e6:28:8a:
29:23:c3:3c:bd:29:a6:50:1e:3d:7f:f0:e3:70:45:83:df:1f:
32:5b:d1:1d:32:40:de:d4:6b:87:e2:39:aa:12:de:77:a6:3d:
f1:2b:e5:a1:cc:50:a7:d4:6a:6d:7a:60:69:5a:04:3e:96:2d:
7f:40:0b:e4:4e:65:56:4c:40:79:45:27:5e:fe:02:a5:10:12:
22:0b:6f:dd:15:55:5f:75:ce:c0:72:b3:cf:36:10:38:bb:6f:
a1:d2:03:e4:33:aa:46:96:a6:dd:04:64:7c:01:a5:aa:6b:0d:
dd:f9:6a:88:0a:8a:ce:21:ea:76:d9:35:0d:60:2e:14:a7:d3:
8e:33:c0:3c:f0:22:fa:03:af:cd:e1:13:b6:d7:c6:bf:89:ec:
2c:08:fa:de:bc:91:a2:f0:71:09:db:4d:4f:d1:fa:3c:0f:c7:
f3:fc:52:80:69:cf:d6:00:aa:a6:6c:74:d2:13:a5:91:20:e2:
28:24:b1:51:ec:1e:fe:cd:22:eb:2f:b9:c0:0c:98:02:7c:b9:
72:33:5e:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:05 2023 by rpki-client on console-fra.rpki-client.org