Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/c343e3-b963-450b-98e5-7ddab80396aa/1/K5YQ-R19hJvhlw-GNtTaPyfNZrk.roa
File: K5YQ-R19hJvhlw-GNtTaPyfNZrk.roa (raw, json)
Hash identifier: h342kszRId+cQfyhdd/1RX1WtGAoGR7DDiUOtdjzyBo=
Subject key identifier: 2B:96:10:F9:1D:7D:84:9B:E1:97:0F:86:36:D4:DA:3F:27:CD:66:B9
Certificate issuer: /CN=23ff02e63e8467f2119432f8dc8401334bc3528d
Certificate serial: 0181F4650C690D8BAD7C19A8C6EC23B6EF83
Authority key identifier: 23:FF:02:E6:3E:84:67:F2:11:94:32:F8:DC:84:01:33:4B:C3:52:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I_8C5j6EZ_IRlDL43IQBM0vDUo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/c343e3-b963-450b-98e5-7ddab80396aa/1/K5YQ-R19hJvhlw-GNtTaPyfNZrk.roa
Signing time: Tue 12 Jul 2022 21:51:11 +0000
ROA not before: Tue 12 Jul 2022 21:51:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 185.253.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f4:65:0c:69:0d:8b:ad:7c:19:a8:c6:ec:23:b6:ef:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23ff02e63e8467f2119432f8dc8401334bc3528d
Validity
Not Before: Jul 12 21:51:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b9610f91d7d849be1970f8636d4da3f27cd66b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:2e:90:d5:df:cd:3c:12:b6:51:27:71:49:b2:
8a:fc:98:0b:19:a9:49:5f:3e:34:c1:1c:e7:86:aa:
c8:ff:db:5c:62:17:59:76:ec:5d:68:45:37:21:09:
f7:3d:0f:b6:f6:68:12:79:6b:7d:e6:fe:e3:3b:c9:
48:b4:37:2b:5e:f7:90:32:35:ff:ca:2f:b5:91:af:
5f:ef:09:72:04:73:f3:6a:65:9c:88:ec:74:9e:a1:
65:60:11:a9:67:06:6c:f2:df:35:a0:59:08:d8:12:
47:50:4b:75:e8:a5:52:79:bb:30:3d:b2:07:5e:b8:
ec:f8:d3:d0:d2:c8:12:d5:6c:49:4e:44:d9:cf:ba:
97:25:6e:e1:03:91:b0:21:da:75:30:ee:b1:69:8d:
ba:3b:8c:ab:58:ff:1b:a0:31:6c:68:e3:fd:29:79:
c0:1a:40:3d:9d:c3:1a:db:e4:36:5e:26:64:d2:f0:
08:de:20:98:27:de:39:ef:63:6d:14:7b:cc:65:fc:
e2:16:8a:b3:6d:b5:54:0a:ff:b2:69:76:a5:ca:d6:
ab:b4:57:ff:e7:af:41:b4:e7:c5:f5:de:6c:7f:dd:
33:9c:86:11:29:ea:b4:06:fd:b8:8b:05:71:81:f9:
b8:23:11:06:72:21:8c:81:5f:66:af:1f:50:01:23:
19:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:96:10:F9:1D:7D:84:9B:E1:97:0F:86:36:D4:DA:3F:27:CD:66:B9
X509v3 Authority Key Identifier:
keyid:23:FF:02:E6:3E:84:67:F2:11:94:32:F8:DC:84:01:33:4B:C3:52:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_8C5j6EZ_IRlDL43IQBM0vDUo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/c343e3-b963-450b-98e5-7ddab80396aa/1/K5YQ-R19hJvhlw-GNtTaPyfNZrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/c343e3-b963-450b-98e5-7ddab80396aa/1/I_8C5j6EZ_IRlDL43IQBM0vDUo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.253.4.0/24
Signature Algorithm: sha256WithRSAEncryption
11:c5:4a:d6:d5:dc:e8:2b:28:aa:d9:d4:85:7b:36:19:32:e3:
af:53:18:19:de:c8:2c:31:38:21:d1:33:ed:f2:0d:19:05:63:
8b:f7:e1:86:a4:77:73:db:11:4a:dd:9f:e7:d0:85:83:ae:31:
98:e4:2f:55:2b:67:6f:62:88:75:ee:b7:0f:ee:a7:3e:5f:c5:
62:e7:55:a4:5f:0d:8c:bd:82:65:ff:f6:4b:84:3b:9f:69:a6:
18:fe:4e:ea:3a:07:d3:ea:49:e7:7a:3e:17:b9:3f:71:4b:f4:
7e:ae:83:07:de:2e:6d:c8:da:e0:cd:3d:e4:20:97:1c:5c:fd:
c7:3e:12:58:39:e6:4d:86:c8:15:f0:98:2f:4b:c9:b3:96:27:
ac:34:2a:e3:3a:06:7a:8d:3e:db:7b:4c:c7:21:ff:c0:3a:8f:
f8:b5:17:e3:d5:8a:23:7a:84:7a:dd:e7:29:6d:b0:27:29:fd:
ba:f4:99:21:97:9d:03:a4:2d:a1:3c:23:f3:e1:6b:c5:dd:37:
32:7c:3f:66:e6:37:3f:3a:32:65:60:ce:4d:b4:77:69:c2:74:
d7:e5:a4:d4:5d:87:e7:e0:8b:ef:29:8a:cd:33:c4:bd:85:d8:
e9:e5:7c:61:c0:df:6f:dd:b8:db:f7:11:b9:19:6b:29:2e:00:
7d:28:b3:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:11 2023 by rpki-client on console-fra.rpki-client.org