Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/449ae6-5943-46d0-b00c-927b86356fa7/1/KSfmJN3kpn93w106FctwgvV287g.roa
File: KSfmJN3kpn93w106FctwgvV287g.roa (raw, json)
Hash identifier: g2cjnUcu/YqDucZ/8jKdeNzRxUEURPjVnwJ7TcYB9Jo=
Subject key identifier: 29:27:E6:24:DD:E4:A6:7F:77:C3:5D:3A:15:CB:70:82:F5:76:F3:B8
Certificate issuer: /CN=1f1de936ff1784b78296b8bc4b4b0381b293ed10
Certificate serial: 0CEC73
Authority key identifier: 1F:1D:E9:36:FF:17:84:B7:82:96:B8:BC:4B:4B:03:81:B2:93:ED:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hx3pNv8XhLeClri8S0sDgbKT7RA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/449ae6-5943-46d0-b00c-927b86356fa7/1/KSfmJN3kpn93w106FctwgvV287g.roa
Signing time: Sat 01 Jan 2022 02:00:03 +0000
ROA not before: Sat 01 Jan 2022 02:00:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 91.199.186.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 846963 (0xcec73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f1de936ff1784b78296b8bc4b4b0381b293ed10
Validity
Not Before: Jan 1 02:00:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2927e624dde4a67f77c35d3a15cb7082f576f3b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:5d:00:05:7d:4c:06:3d:65:a8:90:4f:de:3c:
c3:1b:99:f3:ec:ee:55:a1:61:c0:45:86:66:06:55:
d5:01:bf:f6:1c:03:cc:c7:31:7c:4a:77:43:43:e9:
08:0d:44:e3:44:a9:9a:e7:4f:b6:5b:a7:9c:8e:cf:
7b:3a:fa:3d:52:9b:48:c1:60:3c:96:ec:6c:91:48:
82:aa:a2:45:8b:ab:7b:59:09:3f:95:4a:75:bd:21:
86:c9:78:aa:65:f5:97:ec:00:5f:8e:99:c8:66:35:
67:63:55:72:75:c5:01:86:f5:c8:b4:3b:3c:fe:87:
ae:cb:ee:d1:f0:03:56:a5:06:d4:af:21:96:78:83:
72:af:9c:4f:04:79:1e:1a:0b:7f:07:ac:2b:da:f4:
54:b7:d9:45:3f:b4:7d:8b:8b:54:f3:9b:37:a4:8f:
7e:3d:db:ff:d1:70:80:30:9c:59:90:17:d9:0e:21:
78:15:97:7f:f9:48:27:2e:0e:6c:86:c7:d8:7b:b0:
a4:e4:4b:00:05:fb:d7:d7:b1:e8:ae:bb:01:6f:f6:
0f:c5:f7:69:42:2c:0c:6f:1a:b1:dd:f4:31:d1:8b:
2a:16:16:be:e2:f8:2f:11:7d:c1:d4:15:43:6c:ad:
ac:db:71:cf:5e:10:28:bb:45:76:ba:de:d5:5c:d2:
c0:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:27:E6:24:DD:E4:A6:7F:77:C3:5D:3A:15:CB:70:82:F5:76:F3:B8
X509v3 Authority Key Identifier:
keyid:1F:1D:E9:36:FF:17:84:B7:82:96:B8:BC:4B:4B:03:81:B2:93:ED:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hx3pNv8XhLeClri8S0sDgbKT7RA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/449ae6-5943-46d0-b00c-927b86356fa7/1/KSfmJN3kpn93w106FctwgvV287g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/449ae6-5943-46d0-b00c-927b86356fa7/1/Hx3pNv8XhLeClri8S0sDgbKT7RA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.186.0/24
Signature Algorithm: sha256WithRSAEncryption
95:91:52:64:97:d5:98:c7:94:27:af:49:d1:6a:36:37:e3:a4:
3e:a0:6d:2b:f4:7c:be:26:75:e7:74:d4:0b:1b:7b:a8:53:f2:
08:d1:7a:3b:9c:7a:68:ba:59:17:01:72:e1:f4:ec:87:49:5b:
87:2c:32:a5:73:74:82:2e:4e:51:35:60:9c:14:2e:1f:b5:73:
b7:ac:42:79:c0:d5:a1:a4:bb:34:2b:41:dc:9b:0c:c0:bc:88:
43:fa:46:66:37:26:bc:05:92:ad:13:f9:10:3a:e0:b5:c1:f3:
d1:5a:b7:15:6a:2b:8d:40:04:9f:99:15:6d:d7:41:61:06:0f:
f6:ea:33:41:e8:31:b3:db:f5:cb:26:78:aa:08:f6:33:31:7e:
4e:a6:3b:a8:49:a6:7b:99:c3:cd:b1:0c:b5:5f:a6:9d:10:36:
4d:c8:85:75:af:e5:22:5d:91:28:1d:be:49:cf:7b:d7:78:15:
22:39:94:ad:8b:fc:6f:f5:41:d3:fb:89:86:2a:aa:d3:5b:bf:
f6:78:b9:d3:14:35:28:09:a9:c9:5c:4b:2b:1a:e7:4d:04:8a:
7f:ee:cc:8c:2d:dc:8d:ca:27:eb:11:fe:56:5e:d0:8c:9c:57:
60:1e:0a:90:c7:fb:ce:9f:7a:c4:9c:2e:ea:fc:4f:7e:4c:7f:
34:dd:f9:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:40 2023 by rpki-client on console-fra.rpki-client.org