Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/263f28-e029-46c8-815b-ea26c5644640/1/KAY0y3BXOQ_W7pkK6ExsSu-CyBE.roa
File: KAY0y3BXOQ_W7pkK6ExsSu-CyBE.roa (raw, json)
Hash identifier: izEvMU30NQHjE+k3Bj4ouBRJOMFlzwPlgw5GQR++R/M=
Subject key identifier: 28:06:34:CB:70:57:39:0F:D6:EE:99:0A:E8:4C:6C:4A:EF:82:C8:11
Certificate issuer: /CN=9c9e216ed970adb59e9bd4a29db35c223d62bc96
Certificate serial: 0184B1CE7F9BDBCBD11FDA32E19807CE952A
Authority key identifier: 9C:9E:21:6E:D9:70:AD:B5:9E:9B:D4:A2:9D:B3:5C:22:3D:62:BC:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nJ4hbtlwrbWem9SinbNcIj1ivJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/263f28-e029-46c8-815b-ea26c5644640/1/KAY0y3BXOQ_W7pkK6ExsSu-CyBE.roa
Signing time: Sat 26 Nov 2022 02:40:11 +0000
ROA not before: Sat 26 Nov 2022 02:40:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34444
IP address blocks: 185.10.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:b1:ce:7f:9b:db:cb:d1:1f:da:32:e1:98:07:ce:95:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c9e216ed970adb59e9bd4a29db35c223d62bc96
Validity
Not Before: Nov 26 02:40:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=280634cb7057390fd6ee990ae84c6c4aef82c811
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2b:39:b3:23:2a:c3:50:60:4f:a3:51:f3:46:
6e:14:6f:38:fc:e5:83:07:03:ee:30:0a:d3:c3:e2:
3d:0b:38:6e:cd:e8:03:5b:3f:3d:78:95:69:be:11:
ef:0f:16:ac:db:a0:7b:24:0f:c0:93:4d:f5:f2:85:
08:71:33:1e:06:c6:c0:20:31:6a:8f:53:00:f8:ec:
46:ff:f2:e0:08:c6:70:0d:5a:22:b7:ff:2b:77:a2:
b3:18:25:91:a1:3a:2c:e0:93:75:07:a1:a8:54:ab:
0c:b7:bd:18:76:80:81:3f:d0:71:61:c1:8f:2e:5b:
02:2c:7f:2b:13:fb:d5:e1:f2:f4:95:91:f5:76:fe:
cc:15:7a:b5:f7:8f:04:c1:1c:3f:e6:5f:d6:68:fa:
4c:ee:66:66:f0:ec:a1:9e:f8:b1:6e:43:d6:94:9a:
4e:98:ef:b7:1f:ae:2f:2c:aa:ad:c8:4f:48:91:69:
5f:69:8d:3d:4c:ed:f5:bc:fc:31:3e:6f:70:a9:47:
b5:5a:2a:16:94:79:ff:cb:4c:23:60:ec:d8:de:7f:
51:02:e1:7e:bf:bd:fa:ed:6c:2b:62:a4:e5:b8:0b:
97:62:a6:d3:20:4b:11:6a:d6:1b:2e:1d:c3:ff:54:
0e:ca:57:4b:6b:0b:33:3f:89:a0:04:69:1c:f4:a0:
e8:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:06:34:CB:70:57:39:0F:D6:EE:99:0A:E8:4C:6C:4A:EF:82:C8:11
X509v3 Authority Key Identifier:
keyid:9C:9E:21:6E:D9:70:AD:B5:9E:9B:D4:A2:9D:B3:5C:22:3D:62:BC:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nJ4hbtlwrbWem9SinbNcIj1ivJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/263f28-e029-46c8-815b-ea26c5644640/1/KAY0y3BXOQ_W7pkK6ExsSu-CyBE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/263f28-e029-46c8-815b-ea26c5644640/1/nJ4hbtlwrbWem9SinbNcIj1ivJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.10.241.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:29:0a:ee:28:1f:07:af:9e:7a:1a:34:d8:c8:44:a3:41:0e:
0b:0c:5a:c3:39:e7:0d:d0:0b:74:5d:2e:e3:89:42:9e:a8:8d:
d0:5b:51:20:f5:a3:c5:69:e8:79:b0:01:07:59:7d:0e:a1:da:
47:7d:0f:c3:ee:76:90:86:c1:5d:18:99:0d:c3:78:ca:37:e0:
bb:bc:db:1b:19:0d:15:76:5e:44:32:38:50:c1:c6:94:17:25:
18:45:e2:df:16:20:8b:55:7a:55:89:fc:a6:02:60:e1:bb:df:
2e:ab:6d:67:6a:52:8e:01:05:d2:c6:fa:d4:7d:19:8f:97:4e:
8b:b8:72:a6:ff:35:db:0c:19:30:83:a5:29:c6:a3:c0:9c:2b:
47:ed:e4:53:2f:09:40:9d:30:55:d2:e9:5a:71:d5:dc:3c:c8:
ff:e8:ab:f4:b9:8b:a4:a4:f7:4e:d0:bf:d8:5e:8a:81:10:85:
d0:11:51:4c:66:e4:cd:cc:ae:cf:56:b3:58:f2:59:b0:24:2c:
61:07:89:d4:63:01:a9:33:84:5f:1c:c4:9c:b1:63:be:4b:06:
01:8c:30:d5:cd:25:02:16:9f:7d:e3:db:4c:21:de:8a:e1:fc:
b1:0c:67:11:c3:11:41:08:7e:b5:ca:65:74:2e:a3:a8:dc:0f:
a7:24:f7:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:40 2024 by rpki-client on console-fra.rpki-client.org