Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/276bf7-7a15-4c56-ac56-7d4e68dd4cce/1/KgsQesL0h262YhjIhRK_kXKkPmY.roa
File: KgsQesL0h262YhjIhRK_kXKkPmY.roa (raw, json)
Hash identifier: SRLYLm5qEU0FBiZ3U7OzWVXz7rdSA86RQCdqbhReMvo=
Subject key identifier: 2A:0B:10:7A:C2:F4:87:6E:B6:62:18:C8:85:12:BF:91:72:A4:3E:66
Certificate issuer: /CN=28cb661a643968f3f81e7b119eeb96c50d2d39c7
Certificate serial: 0415C88B
Authority key identifier: 28:CB:66:1A:64:39:68:F3:F8:1E:7B:11:9E:EB:96:C5:0D:2D:39:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMtmGmQ5aPP4HnsRnuuWxQ0tOcc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/276bf7-7a15-4c56-ac56-7d4e68dd4cce/1/KgsQesL0h262YhjIhRK_kXKkPmY.roa
Signing time: Sat 01 Jan 2022 05:03:36 +0000
ROA not before: Sat 01 Jan 2022 05:03:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44545
IP address blocks: 185.212.92.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68536459 (0x415c88b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28cb661a643968f3f81e7b119eeb96c50d2d39c7
Validity
Not Before: Jan 1 05:03:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a0b107ac2f4876eb66218c88512bf9172a43e66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:dc:9a:0d:f9:5d:d2:95:18:6f:86:00:cb:30:
0d:0d:c6:1d:39:d8:09:58:a2:01:b4:d6:01:a8:e6:
36:86:ab:cd:40:28:c5:92:cd:0d:0d:ee:8b:16:a4:
bc:69:b4:ab:6f:91:a5:aa:45:e0:73:f2:67:d3:69:
d7:1e:09:23:82:76:78:34:ae:75:af:4f:61:2b:d2:
87:df:42:3e:9b:bc:8c:96:8f:ff:a6:73:1a:b3:10:
e4:5c:dd:83:0f:28:6a:fc:37:af:6e:25:9c:b0:2e:
a7:25:c3:48:2e:d9:1a:83:13:e4:2b:5f:d1:5f:b3:
91:af:52:75:4c:59:03:3b:85:9e:e1:5c:0a:cb:60:
31:c2:a9:ea:16:9f:a2:90:d6:6d:f8:28:23:ed:a3:
41:b4:01:9e:69:04:c3:38:fd:26:79:a5:4b:8e:d5:
91:c2:4f:eb:91:44:d4:8f:7d:56:80:a1:a8:85:5f:
d0:40:64:09:ba:fc:22:b2:2b:89:c1:9b:78:c7:5a:
91:6b:5f:9d:c4:58:58:17:47:b7:90:dd:85:0e:d5:
7d:2b:df:8c:a0:95:b4:d0:b8:67:cc:a7:23:52:85:
14:7e:43:30:1d:47:aa:aa:57:49:f9:6d:84:8d:a2:
ca:64:a6:1d:03:29:aa:c2:c2:6e:41:55:80:b1:08:
5a:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:0B:10:7A:C2:F4:87:6E:B6:62:18:C8:85:12:BF:91:72:A4:3E:66
X509v3 Authority Key Identifier:
keyid:28:CB:66:1A:64:39:68:F3:F8:1E:7B:11:9E:EB:96:C5:0D:2D:39:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMtmGmQ5aPP4HnsRnuuWxQ0tOcc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/276bf7-7a15-4c56-ac56-7d4e68dd4cce/1/KgsQesL0h262YhjIhRK_kXKkPmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/276bf7-7a15-4c56-ac56-7d4e68dd4cce/1/KMtmGmQ5aPP4HnsRnuuWxQ0tOcc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.92.0/22
Signature Algorithm: sha256WithRSAEncryption
d0:a2:dc:00:65:a3:18:f4:1f:1d:47:a8:f7:72:cb:3e:db:31:
b7:89:e3:9c:e8:b8:66:a5:72:0e:a5:9e:6d:47:66:ef:b5:7a:
a8:0f:5d:fc:e0:9e:b0:52:a3:58:08:e3:47:c9:74:f2:ba:1b:
9e:b9:f1:e7:53:c0:db:3f:58:3e:d2:7f:ef:14:ff:24:e4:cb:
f2:4e:fd:ff:27:58:5a:8f:dd:12:a6:04:4e:45:aa:94:0a:af:
02:c3:62:82:d0:9e:3b:44:7c:07:35:ff:2c:73:99:b4:c0:b8:
21:e3:2d:2e:0f:3a:d7:c1:e4:0b:1d:5b:2f:f1:d4:18:c4:45:
b9:7b:f4:b2:c6:77:bf:c2:68:a7:c1:ae:ce:09:a2:f9:f2:bd:
51:8e:6c:09:02:9e:b9:7d:a3:e9:75:a2:30:70:fc:af:bc:ff:
0e:1b:0a:47:89:3e:0f:53:a0:58:9e:e4:cc:95:84:c2:90:81:
5b:18:9e:8a:77:b1:93:fc:b3:58:f9:42:ec:a0:f6:d3:ed:17:
e0:2d:6a:6d:8d:c3:be:81:57:31:cb:f8:17:2f:b9:f0:2a:7b:
24:5c:59:9d:23:2e:4b:d2:4c:35:eb:dc:f5:69:e8:4d:5e:0f:
b5:87:91:e0:20:b1:33:09:21:aa:f7:cc:e3:72:cb:9d:b2:56:
7c:e9:82:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:44 2023 by rpki-client on console-ams.rpki-client.org