Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/KHOtNHY4_WUyuHdrcVcPrbqjO6Q.roa
File: KHOtNHY4_WUyuHdrcVcPrbqjO6Q.roa (raw, json)
Hash identifier: FS9kDbGhKRMHm8V+3eNAqbmGgxPwKl1h+jIACNN4FJ0=
Subject key identifier: 28:73:AD:34:76:38:FD:65:32:B8:77:6B:71:57:0F:AD:BA:A3:3B:A4
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 0385067D
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/KHOtNHY4_WUyuHdrcVcPrbqjO6Q.roa
Signing time: Fri 18 Mar 2022 05:55:18 +0000
ROA not before: Fri 18 Mar 2022 05:55:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 185.255.4.0/23 maxlen: 24
185.255.6.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59049597 (0x385067d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Mar 18 05:55:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2873ad347638fd6532b8776b71570fadbaa33ba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:16:b5:54:35:89:b8:ae:8f:e1:16:68:58:60:
e2:fa:d5:68:3e:58:ad:3d:84:d3:35:e2:22:2f:9b:
3b:4d:85:15:9c:12:01:0d:ae:78:21:58:c4:de:1b:
2f:77:5d:c6:89:86:21:bd:bf:77:ca:00:bf:4f:3b:
41:4e:ae:51:7d:3f:8e:3f:9d:df:a1:ad:06:60:6a:
72:70:5e:6d:ed:3c:38:ce:c8:b2:33:65:d3:b1:cb:
6c:e0:51:58:15:14:bd:b7:79:32:81:24:e5:2e:8e:
b8:09:0f:ad:7f:a0:55:65:3b:cc:ac:38:ca:3a:d6:
95:ef:9d:62:ea:6f:0b:44:e3:ef:5e:df:df:58:3a:
92:41:fe:71:8a:6c:31:6a:83:35:1f:97:8c:d1:21:
34:cc:4e:75:2c:24:5a:56:70:b2:46:b6:6a:0c:35:
c8:1d:af:78:0a:f4:39:82:90:41:a2:2b:44:9f:08:
90:d4:87:98:b0:4c:47:6b:1e:bb:4a:50:4f:72:63:
f7:c8:12:0c:0f:75:02:cf:81:a5:ed:2f:a9:a6:35:
79:4a:53:08:24:be:d1:33:ea:f2:8b:09:03:41:ba:
36:02:36:05:5d:0b:1f:db:65:4a:ca:d4:b3:61:cd:
1d:0e:f1:4c:29:46:c8:63:e7:39:63:12:d9:b4:df:
11:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:73:AD:34:76:38:FD:65:32:B8:77:6B:71:57:0F:AD:BA:A3:3B:A4
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/KHOtNHY4_WUyuHdrcVcPrbqjO6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.4.0/22
Signature Algorithm: sha256WithRSAEncryption
98:c3:04:ca:cc:b8:2d:10:75:90:13:41:11:6d:0a:9d:94:7d:
a7:dc:7c:29:b7:06:09:6b:b5:83:4d:10:1f:1e:29:67:74:3c:
a2:86:72:9b:d5:db:77:d8:d1:98:89:e3:8d:9c:27:db:a0:6a:
d7:a6:1f:c9:ba:85:bc:6d:3b:61:47:bc:f4:e9:d1:d6:f3:f0:
3c:f4:46:8c:51:92:49:78:ce:49:17:97:47:d3:df:ca:93:9d:
b0:83:12:80:1f:04:c7:60:66:64:9e:b9:f4:02:f4:07:69:3c:
42:b4:72:9f:79:96:e8:fd:2e:5c:0f:d8:11:37:6f:e7:00:f2:
38:ac:9a:7b:f7:2a:c5:fe:60:40:6e:18:4f:8e:e2:2a:3d:d2:
2d:35:0a:76:f0:08:a7:fd:83:b6:cd:e0:e8:74:e0:b5:ac:d8:
93:4a:dc:a9:c0:c5:3b:18:4e:a8:04:88:4c:62:e6:68:3a:03:
82:0e:4c:73:e3:25:c2:ce:4f:48:28:65:16:f3:5a:aa:6a:91:
83:f7:19:a3:fd:cf:ef:ea:be:57:e1:2b:09:c1:20:0c:46:5b:
53:a7:5e:3f:bd:10:22:55:36:a7:22:f6:99:da:47:c1:60:3a:
f2:e8:ed:27:f0:20:c3:1b:84:c7:2f:56:d0:e9:2d:10:c5:ae:
e9:e1:85:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:53 2023 by rpki-client on console-fra.rpki-client.org