Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/KPd5L4AFz4OhOddnc8e0QnhTARU.roa
File: KPd5L4AFz4OhOddnc8e0QnhTARU.roa (raw, json)
Hash identifier: Ymg8YJZDZCJIs9Si9U3xjQ8DrxmG0Nv+scSF0o36eXw=
Subject key identifier: 28:F7:79:2F:80:05:CF:83:A1:39:D7:67:73:C7:B4:42:78:53:01:15
Certificate issuer: /CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff
Certificate serial: 19A346E0
Authority key identifier: CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/KPd5L4AFz4OhOddnc8e0QnhTARU.roa
Signing time: Sat 01 Jan 2022 05:52:38 +0000
ROA not before: Sat 01 Jan 2022 05:52:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201190
IP address blocks: 185.47.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 430130912 (0x19a346e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff
Validity
Not Before: Jan 1 05:52:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=28f7792f8005cf83a139d76773c7b44278530115
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f0:a6:d7:cf:c4:e3:f7:d3:3a:35:a5:97:54:
05:e8:18:a3:38:c6:2c:fc:1d:83:d8:dd:73:8d:b6:
85:1e:e6:13:aa:08:f9:5f:cf:1b:ae:47:ef:4a:8a:
81:57:3b:32:ea:2e:3b:ca:1c:c8:4d:91:29:fc:53:
b4:ab:c7:b2:20:b1:e8:41:4e:62:73:1e:21:75:d7:
ce:f4:a5:cf:98:8b:09:62:53:bd:06:44:15:6c:16:
d9:98:fb:8e:b8:53:20:93:8c:a2:70:9b:87:d8:61:
46:ed:4f:e2:4d:09:35:66:78:a0:27:88:44:2d:9d:
3f:1f:83:be:f8:0c:c8:14:bc:75:97:08:26:0b:2a:
2f:3a:7d:39:0c:5e:a9:a8:6b:23:e8:67:80:3e:5c:
88:2b:ee:53:85:4a:26:c9:11:ac:2a:86:09:dc:57:
59:7b:f6:eb:10:6e:55:ec:8f:53:01:a4:ee:ea:ab:
01:db:37:b3:a7:30:3f:bd:26:7e:a3:7b:3a:18:fb:
07:d3:fe:16:19:b9:74:bb:06:7e:56:fc:c5:77:06:
66:70:c7:90:ae:31:29:3f:11:ef:51:e5:a7:05:a1:
d4:78:fc:6d:15:73:59:31:6c:bc:99:05:00:98:37:
50:49:cc:95:c3:7c:d8:b9:6a:cb:3e:b6:9e:4e:f0:
59:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:F7:79:2F:80:05:CF:83:A1:39:D7:67:73:C7:B4:42:78:53:01:15
X509v3 Authority Key Identifier:
keyid:CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/KPd5L4AFz4OhOddnc8e0QnhTARU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.47.54.0/24
Signature Algorithm: sha256WithRSAEncryption
45:da:2b:9c:14:5a:76:95:85:34:52:48:7a:f0:fe:a4:56:18:
08:6b:df:a6:e2:8e:48:6b:94:2c:7b:ec:85:11:bf:56:b5:d3:
97:96:36:4f:ca:eb:de:0d:32:bb:38:67:a1:31:8d:e0:09:00:
a7:e1:ac:53:7d:a6:e7:7f:88:c7:ba:2d:c4:54:bc:1f:d1:09:
07:6e:0d:38:d4:2c:56:4b:9f:a6:fb:2d:13:be:01:05:a9:1e:
fa:75:47:b0:1a:a7:c3:32:d2:02:c0:01:e1:26:ea:5b:4c:18:
c7:bc:c2:af:a1:f0:eb:da:fa:e1:d2:3a:86:d7:b4:8b:5a:0a:
52:ba:3d:3c:29:58:8e:4f:07:6d:89:95:8c:db:15:e0:d2:1b:
ce:9e:85:0d:86:ef:49:67:0e:fb:e5:8d:ff:ab:41:fe:89:60:
6c:f0:b0:f2:a4:36:c4:00:c0:31:da:92:9a:af:fd:43:7c:d9:
2a:98:6f:12:34:45:02:60:41:2f:d9:c9:5f:4a:79:c0:56:23:
9b:7b:f6:01:62:2e:12:a3:0e:63:fa:32:66:0d:e7:cc:e8:46:
df:a1:5a:4a:08:76:e0:2f:bb:c3:0d:86:dd:f9:16:fc:1b:ff:
12:ac:b6:f7:8d:dc:07:d6:b3:c8:3d:ff:5e:3b:3d:fa:14:03:
92:44:12:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:10 2023 by rpki-client on console-fra.rpki-client.org