Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/klsrKCH6GsD60L-fHry-zg0h9wc.roa
File: klsrKCH6GsD60L-fHry-zg0h9wc.roa (raw, json)
Hash identifier: FmjP9KSXx/QJ/BzuND1E10bWPcgZ4i9845PE6iFEPL0=
Subject key identifier: 92:5B:2B:28:21:FA:1A:C0:FA:D0:BF:9F:1E:BC:BE:CE:0D:21:F7:07
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0D5BCD73
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/klsrKCH6GsD60L-fHry-zg0h9wc.roa
Signing time: Thu 24 Feb 2022 06:27:57 +0000
ROA not before: Thu 24 Feb 2022 06:27:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 45929
IP address blocks: 185.245.112.0/22 maxlen: 22
195.38.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 224120179 (0xd5bcd73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Feb 24 06:27:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=925b2b2821fa1ac0fad0bf9f1ebcbece0d21f707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f0:d1:7a:aa:af:44:60:c3:10:46:82:ab:0d:
83:0f:64:7c:fc:f3:17:ca:ef:9f:2b:ec:df:fb:18:
45:eb:20:eb:fb:84:ac:10:e9:71:ba:2d:3b:c5:6d:
a6:16:78:32:b1:7d:ed:c8:a1:c4:f9:f6:89:a7:77:
a2:df:59:3d:bd:6a:d2:78:d0:1a:d6:58:2a:83:eb:
5c:e6:2c:56:ef:5d:1c:1d:b6:f8:60:09:a3:9f:92:
cd:25:88:d5:83:6e:0f:16:fe:4f:a1:fb:ac:84:9e:
4b:7a:75:6b:7a:f4:6b:84:51:79:0e:54:11:14:6b:
ce:5a:ea:3f:05:c1:ee:d6:90:ce:b9:34:8e:23:be:
8d:7c:d2:e3:74:d1:8e:f6:4d:aa:3a:10:5b:a6:dd:
c1:86:32:3b:01:b9:0f:29:f3:c9:d9:92:b0:20:43:
eb:38:0f:6f:af:98:61:d6:df:01:30:14:20:8f:73:
91:79:b2:6a:c1:03:0b:b1:c4:25:67:92:e5:18:d3:
76:f8:dc:1a:05:01:60:aa:45:a0:7a:6e:06:b0:72:
41:21:97:47:91:4d:a3:53:a3:e9:82:90:76:df:a7:
a3:72:a7:06:fe:0d:68:8c:15:02:d2:17:23:7a:54:
f8:a7:ce:97:3f:98:d0:ef:9e:83:9d:ce:87:9b:61:
55:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:5B:2B:28:21:FA:1A:C0:FA:D0:BF:9F:1E:BC:BE:CE:0D:21:F7:07
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/klsrKCH6GsD60L-fHry-zg0h9wc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.112.0/22
195.38.4.0/22
Signature Algorithm: sha256WithRSAEncryption
63:07:2f:bb:61:d8:6d:db:f5:53:02:e4:01:84:cb:b6:b4:78:
dc:b4:5e:51:93:9c:da:fb:39:8e:f5:ba:6a:de:52:00:1d:e7:
41:0d:2b:38:56:8a:e5:8f:9b:54:c2:bf:40:76:e6:3e:9c:ff:
81:4b:1f:f6:3f:5d:3b:a7:c5:fa:7c:d2:55:8c:a8:25:60:81:
4c:58:d3:35:b4:50:5a:18:8a:99:ec:78:52:b7:a3:e4:57:3e:
6e:75:71:d5:a4:a9:6d:c0:0c:39:ca:c8:55:43:88:2e:3d:45:
13:68:78:68:85:a6:a3:1d:43:f3:0c:aa:9c:f1:a8:35:df:30:
9e:18:e7:22:f1:b5:68:4e:11:cb:79:33:df:1f:ee:1f:c0:20:
0f:a6:4d:a2:27:08:c1:b5:03:3b:9b:6a:80:35:60:be:1f:e7:
4b:87:95:a9:2c:57:20:02:bf:fd:c7:ec:a3:b8:a8:2e:b3:99:
7b:ec:61:c4:29:40:27:fc:71:e7:df:6b:d0:2c:67:97:5a:e9:
9b:2a:86:9e:28:f7:4b:d8:9e:a6:2c:35:6b:b2:7a:3a:03:e0:
7b:42:5e:5f:3d:92:5e:6b:4d:50:13:1f:06:30:6a:c6:62:6f:
b9:70:b5:08:ac:9f:eb:a8:57:87:9a:9e:84:c7:8e:85:c2:47:
05:a5:b1:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:03 2023 by rpki-client on console-fra.rpki-client.org