Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/Ktaqr1r_735TacV7qVf5g-7f0cE.roa
File: Ktaqr1r_735TacV7qVf5g-7f0cE.roa (raw, json)
Hash identifier: SGRfEu5ngxD2V4fg0qs9W2xS1vJhgG3U0sZN9CgBgJw=
Subject key identifier: 2A:D6:AA:AF:5A:FF:EF:7E:53:69:C5:7B:A9:57:F9:83:EE:DF:D1:C1
Certificate issuer: /CN=57b80e60b5adf45aeba5c0c8abccc63997a0f1db
Certificate serial: 1A48164A
Authority key identifier: 57:B8:0E:60:B5:AD:F4:5A:EB:A5:C0:C8:AB:CC:C6:39:97:A0:F1:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V7gOYLWt9FrrpcDIq8zGOZeg8ds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/Ktaqr1r_735TacV7qVf5g-7f0cE.roa
Signing time: Mon 09 May 2022 13:59:40 +0000
ROA not before: Mon 09 May 2022 13:59:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49902
IP address blocks: 213.55.0.0/18 maxlen: 18
109.122.128.0/18 maxlen: 18
185.147.224.0/22 maxlen: 22
5.57.96.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 440931914 (0x1a48164a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57b80e60b5adf45aeba5c0c8abccc63997a0f1db
Validity
Not Before: May 9 13:59:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ad6aaaf5affef7e5369c57ba957f983eedfd1c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d2:ce:7e:7f:6b:aa:f5:4a:e4:5f:a0:63:27:
0c:d2:c6:35:10:00:60:06:82:05:b6:b7:6b:08:69:
6c:6e:b7:6f:84:0d:37:c6:9f:47:82:fd:c6:e8:7f:
f1:c2:a2:8d:7b:68:53:a1:7a:6d:5b:70:c9:d4:99:
2b:fe:e8:74:c0:22:8f:ed:31:68:ba:02:ec:04:9d:
38:e2:51:0a:96:7c:dc:cf:d9:b1:89:48:76:e0:b5:
d1:23:4e:45:60:7c:9d:34:5b:fc:d7:0f:72:b7:3f:
30:e8:10:0c:e5:8c:87:05:74:7b:c0:c6:b0:dd:1d:
2b:66:0e:6e:b0:48:f5:b6:66:6b:9d:a6:0a:e9:ed:
18:8b:eb:8a:8b:67:c2:88:a8:18:93:19:cd:bc:0a:
d8:af:d6:ec:25:7a:dd:af:39:f1:3e:8e:e6:c2:e3:
7b:04:52:1f:5d:ab:06:d5:53:51:02:8c:fe:97:c6:
4c:e0:f9:84:59:f5:1b:62:2f:f6:2f:fb:64:ce:71:
e6:20:f3:fa:ee:01:0c:b5:f7:8d:16:18:90:be:5b:
ac:7f:6e:0e:06:93:f7:3f:08:dd:34:ba:0b:e3:cc:
d8:e6:5f:a3:6b:d3:5c:db:27:9d:f0:3a:29:a7:f6:
ab:8f:d2:4c:1d:16:72:85:88:60:4d:93:5f:67:b4:
0c:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:D6:AA:AF:5A:FF:EF:7E:53:69:C5:7B:A9:57:F9:83:EE:DF:D1:C1
X509v3 Authority Key Identifier:
keyid:57:B8:0E:60:B5:AD:F4:5A:EB:A5:C0:C8:AB:CC:C6:39:97:A0:F1:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V7gOYLWt9FrrpcDIq8zGOZeg8ds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/Ktaqr1r_735TacV7qVf5g-7f0cE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/V7gOYLWt9FrrpcDIq8zGOZeg8ds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.96.0/19
109.122.128.0/18
185.147.224.0/22
213.55.0.0/18
Signature Algorithm: sha256WithRSAEncryption
83:8c:47:7a:9f:f5:5e:0a:16:df:f2:26:c9:b1:88:cb:f7:58:
77:c5:6b:c4:e1:9f:5b:f1:7f:d8:c2:46:70:47:14:45:01:39:
5e:ae:1e:59:7b:fa:23:e5:4a:7c:dd:b7:3a:78:27:07:64:4b:
a4:35:21:fd:80:e3:de:06:bc:04:ee:5f:9b:ca:3f:c9:67:99:
67:8b:28:cc:d3:38:a7:7a:23:d7:95:55:57:80:c9:e8:1d:eb:
ac:8a:c3:5b:c2:7a:5e:a5:9f:c4:cc:00:df:3d:b2:23:ec:4d:
06:0e:f9:68:64:58:83:ce:d8:5f:a2:d9:36:05:fb:36:19:02:
3d:97:24:83:95:aa:ef:fd:4f:e5:cd:10:bc:8c:b3:fb:1f:52:
ed:2a:0e:86:9f:bd:15:fc:f4:3d:30:67:4c:4e:a4:ea:6f:6c:
05:c0:d8:02:aa:8a:1a:b2:b0:e8:ef:aa:5a:f6:85:b8:60:e9:
ea:b8:f9:b0:51:ed:5c:de:87:e5:0b:ca:5b:21:47:e0:a8:89:
ff:57:84:bf:41:82:0c:d0:8e:aa:d8:58:45:5e:1b:25:8b:7b:
c6:05:4b:40:13:54:ac:b7:93:7a:92:1d:ff:a1:bc:d0:6a:ec:
2d:a7:e3:af:e7:3b:46:f9:00:83:c8:cf:f0:e1:4c:af:8d:23:
1f:91:91:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:50 2023 by rpki-client on console-ams.rpki-client.org