Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/KPib7fBR7FZLnCDvJEQ9mSNB_Zw.roa
File: KPib7fBR7FZLnCDvJEQ9mSNB_Zw.roa (raw, json)
Hash identifier: //ojCHwO2oabqzYtzbWr9cLZ3AHE2QdZc4ZLDdYwHnU=
Subject key identifier: 28:F8:9B:ED:F0:51:EC:56:4B:9C:20:EF:24:44:3D:99:23:41:FD:9C
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01855EF8CF294027704AC7D6092BF23AB12A
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/KPib7fBR7FZLnCDvJEQ9mSNB_Zw.roa
Signing time: Thu 29 Dec 2022 17:40:42 +0000
ROA not before: Thu 29 Dec 2022 17:40:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140947
IP address blocks: 185.251.228.0/24 maxlen: 24
45.147.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:5e:f8:cf:29:40:27:70:4a:c7:d6:09:2b:f2:3a:b1:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Dec 29 17:40:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=28f89bedf051ec564b9c20ef24443d992341fd9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:3b:04:9d:55:11:b1:9d:e6:59:70:8c:9e:0f:
e1:72:2a:6b:63:8d:33:c9:36:4a:4f:f8:4d:d3:da:
21:16:12:ab:19:b1:59:19:74:a8:3c:4b:8d:91:e6:
7e:a5:86:52:20:74:77:f1:9f:cb:54:a1:ab:19:ed:
64:6f:f1:3a:54:d4:c9:d6:5c:f4:99:84:85:dc:38:
54:ae:df:ed:46:5e:2e:06:35:50:a7:f2:0b:58:59:
49:9f:80:02:43:72:0c:0f:da:9b:d8:6e:a0:ce:e8:
89:36:e5:5a:28:43:e5:1f:fb:f8:bb:62:f2:59:e0:
b3:c4:7a:6f:83:84:de:01:68:ec:19:5b:e8:e6:36:
ba:ff:ae:77:ba:e7:c2:7d:f6:71:16:77:13:1b:1b:
36:2b:16:22:d9:e4:04:30:75:bc:79:fa:80:84:59:
9f:13:88:a9:2c:b3:fb:7a:6e:64:c3:d0:be:5f:32:
8c:2e:49:5f:28:9c:e7:9b:82:68:9f:4a:3e:44:d0:
b3:20:36:cc:d3:8f:46:1a:de:e2:ed:a4:b2:9d:06:
78:ca:99:08:77:a4:7c:a0:13:6d:1f:85:3a:56:7f:
7c:2d:dd:06:c0:f6:36:b5:a2:d7:50:4c:62:67:4c:
dc:93:36:0c:7b:9a:50:a4:9d:9c:11:fe:1a:36:16:
f5:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:F8:9B:ED:F0:51:EC:56:4B:9C:20:EF:24:44:3D:99:23:41:FD:9C
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/KPib7fBR7FZLnCDvJEQ9mSNB_Zw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.227.0/24
185.251.228.0/24
Signature Algorithm: sha256WithRSAEncryption
48:10:d9:19:ca:29:9e:ca:d1:d1:90:b0:c6:98:68:a3:52:52:
09:fa:1f:b1:9a:59:57:16:f7:69:14:15:78:07:a4:d1:44:39:
d3:8b:c2:ae:c7:66:34:a0:c6:3d:41:4d:56:bd:db:fd:bc:48:
9f:69:53:53:8b:d1:32:e0:d5:58:1a:40:1b:d8:17:5c:fe:fe:
41:02:c2:d1:54:10:4a:8c:df:7b:26:2e:65:e8:66:23:7a:ea:
b4:6f:1a:8f:81:2c:ff:0f:46:fe:30:1b:69:65:ac:70:2b:81:
2f:f5:58:45:66:0e:f6:fa:a6:98:93:c0:9c:d0:b5:d6:82:4b:
1e:22:ea:c6:6c:ab:ec:9e:10:b6:b9:47:03:b0:fd:a7:8c:75:
22:12:a5:08:a3:75:d0:9f:41:0e:fd:c5:18:b2:77:2b:68:9e:
85:d4:14:a0:f6:9f:63:66:17:c4:aa:94:db:1c:f8:5a:26:82:
61:82:0d:a4:69:be:81:21:a5:8b:29:98:fa:74:b8:bf:13:af:
99:13:1e:38:19:b6:77:bd:ff:31:05:51:da:f5:55:62:85:74:
4e:53:d2:09:3e:7d:e1:71:9d:06:e4:a1:e1:de:a7:a0:82:24:
62:15:a5:3d:76:11:df:43:46:b3:cb:d9:c1:9e:cf:fa:3c:30:
6c:b3:2b:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:21 2024 by rpki-client on console-ams.rpki-client.org