Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/kn7UQHkWxKXzkYI3jH9M8x_1hbA.roa
File: kn7UQHkWxKXzkYI3jH9M8x_1hbA.roa (raw, json)
Hash identifier: a+EImYvgxZdvwgCZZuwkzu2j6tmro5TsF0+LpxvoynY=
Subject key identifier: 92:7E:D4:40:79:16:C4:A5:F3:91:82:37:8C:7F:4C:F3:1F:F5:85:B0
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 196F16AB
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/kn7UQHkWxKXzkYI3jH9M8x_1hbA.roa
Signing time: Sun 03 Apr 2022 18:24:43 +0000
ROA not before: Sun 03 Apr 2022 18:24:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12859
IP address blocks: 195.85.49.0/24 maxlen: 32
185.226.74.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 426710699 (0x196f16ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Apr 3 18:24:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=927ed4407916c4a5f39182378c7f4cf31ff585b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8e:ba:5d:8c:b9:d4:dc:c9:b9:f2:32:b4:49:
91:33:c1:4e:6b:f6:7d:5a:1b:95:6c:54:1f:9e:f4:
21:ad:ca:55:7e:8b:25:b6:e4:6d:81:94:84:8f:79:
ef:31:cf:5f:1a:b5:29:a6:22:25:5b:28:5f:27:cf:
67:b3:15:7b:89:75:b7:97:a0:86:ad:00:f4:10:3d:
a7:4b:3f:e5:e5:62:df:7c:7f:8c:9d:31:df:72:a2:
e7:e2:0e:84:e0:28:d7:18:6a:83:07:ee:d1:63:83:
da:b0:53:89:6f:e8:b6:d5:a1:0c:ee:97:49:ac:52:
f6:c2:1c:b9:12:76:28:fe:08:30:d8:c2:ff:7f:d8:
c4:8e:e8:7c:fd:d7:18:c5:9c:a1:70:5f:ab:4b:3a:
6c:bf:93:1e:45:dc:e0:f9:7d:1d:bd:6e:84:54:6f:
88:bb:d6:1f:16:98:f9:bb:b1:ad:b1:6b:07:64:86:
ba:6a:7a:8a:89:ae:14:46:32:4c:57:42:6a:d6:59:
42:59:02:a2:a5:94:4d:3c:9a:65:a3:ba:cf:87:13:
7d:86:23:81:55:bc:20:8c:7f:54:20:a8:d1:2b:11:
9d:20:8b:ce:94:ed:a9:72:b0:42:40:8c:82:e4:3e:
70:a9:06:35:fa:fa:b3:5d:1b:6c:83:a4:fd:9c:46:
59:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:7E:D4:40:79:16:C4:A5:F3:91:82:37:8C:7F:4C:F3:1F:F5:85:B0
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/kn7UQHkWxKXzkYI3jH9M8x_1hbA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.74.0/24
195.85.49.0/24
Signature Algorithm: sha256WithRSAEncryption
92:12:ea:94:16:d0:69:4b:63:49:1b:22:fb:1f:a0:3e:28:30:
18:d7:35:a1:06:15:89:91:d5:a7:51:d9:11:e6:16:9d:68:cd:
9f:e8:47:a0:2c:bc:a1:1b:d6:26:87:59:03:53:38:ee:81:fc:
32:61:12:92:35:46:ba:b5:46:30:7b:36:e0:73:11:e1:1a:e4:
2b:e9:c1:b2:2a:e3:d9:e9:27:31:15:a6:de:0c:60:5f:5b:59:
cf:d2:7f:c9:d5:be:d9:1d:99:6a:9d:77:e6:65:62:a3:96:8d:
55:c3:19:f0:1f:3a:8e:8d:12:67:25:73:e0:e3:7f:3c:ad:f8:
60:b9:67:ff:79:72:7e:ea:72:b4:18:29:ae:8d:62:5d:73:83:
bd:24:c6:2a:d6:5d:47:49:c8:82:33:e7:14:13:72:a5:7a:01:
5f:8e:4f:67:86:98:e2:18:d5:9a:94:99:e5:e4:c8:43:89:f7:
79:43:2d:54:70:2c:fe:f5:1b:1f:4b:8c:22:e6:24:c6:da:f8:
18:ec:2d:9b:fb:48:62:1b:04:9d:cf:24:12:e0:ad:dc:0a:8d:
04:06:98:53:04:74:bd:cb:80:ea:97:f3:c6:25:de:d4:eb:ee:
a2:30:bf:5b:f6:34:1a:6f:45:e6:9d:5a:8d:a2:5b:e2:e4:1e:
78:d9:cf:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org