Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/12e9a0-9c58-47a2-baf1-38d33e6697fb/1/knpMukvjh3oxGTlMB0j12E5IZog.roa
File: knpMukvjh3oxGTlMB0j12E5IZog.roa (raw, json)
Hash identifier: FQCC1Ggpnfg6DUzEpTFLM7qvyEg7gxtrFBXHqLJTE7M=
Subject key identifier: 92:7A:4C:BA:4B:E3:87:7A:31:19:39:4C:07:48:F5:D8:4E:48:66:88
Certificate issuer: /CN=a8cee2f1ad419f7270a353840d0a4b83525cab5e
Certificate serial: 0826CD90
Authority key identifier: A8:CE:E2:F1:AD:41:9F:72:70:A3:53:84:0D:0A:4B:83:52:5C:AB:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qM7i8a1Bn3Jwo1OEDQpLg1Jcq14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/12e9a0-9c58-47a2-baf1-38d33e6697fb/1/knpMukvjh3oxGTlMB0j12E5IZog.roa
Signing time: Sat 01 Jan 2022 06:59:56 +0000
ROA not before: Sat 01 Jan 2022 06:59:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24904
IP address blocks: 2.59.236.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136760720 (0x826cd90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8cee2f1ad419f7270a353840d0a4b83525cab5e
Validity
Not Before: Jan 1 06:59:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=927a4cba4be3877a3119394c0748f5d84e486688
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b0:ad:b9:c7:b2:3c:12:4d:43:ce:cf:4f:00:
2a:b9:1b:3c:37:62:c3:a6:78:02:05:3d:91:f2:98:
3d:a1:2e:28:be:47:89:b7:07:43:d3:f5:86:0a:2b:
92:00:7f:49:c9:f9:4a:6a:28:a8:87:fb:27:0e:c8:
8c:60:b6:9d:f4:68:66:43:f5:78:33:7d:8f:69:a6:
ca:ce:b7:4b:cd:8a:63:90:ef:86:45:42:6e:90:e2:
57:79:f0:01:10:d7:a5:47:c5:57:f8:87:45:24:ee:
49:51:c7:a8:64:39:37:7d:36:fa:0d:c2:12:4e:3c:
39:2f:46:57:be:4f:d2:e4:6e:d0:8f:3f:1b:ec:de:
b1:e7:63:a9:51:c1:13:36:bf:08:18:a8:c1:b7:ba:
2c:2e:d6:93:dd:be:08:8a:e0:af:33:66:a1:69:8b:
a9:9f:a4:09:54:db:92:e0:19:3c:42:79:f1:d1:99:
e4:92:3d:1a:6b:12:de:cc:1a:2b:5f:6e:c8:ad:ff:
af:0b:82:d7:02:04:45:59:3c:20:98:d6:8b:40:42:
73:5c:33:c4:84:39:08:2a:85:62:64:91:4b:b5:d7:
4b:db:f0:f8:40:b3:e6:f6:5c:8d:a0:f8:02:9c:f0:
27:8f:5c:7e:a2:e4:a2:c9:f6:9e:4c:93:b5:ee:1d:
be:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:7A:4C:BA:4B:E3:87:7A:31:19:39:4C:07:48:F5:D8:4E:48:66:88
X509v3 Authority Key Identifier:
keyid:A8:CE:E2:F1:AD:41:9F:72:70:A3:53:84:0D:0A:4B:83:52:5C:AB:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qM7i8a1Bn3Jwo1OEDQpLg1Jcq14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/12e9a0-9c58-47a2-baf1-38d33e6697fb/1/knpMukvjh3oxGTlMB0j12E5IZog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/12e9a0-9c58-47a2-baf1-38d33e6697fb/1/qM7i8a1Bn3Jwo1OEDQpLg1Jcq14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.236.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:fd:b6:f9:09:9c:b1:52:c3:e9:e0:51:6c:6a:cc:aa:de:73:
8c:16:89:28:32:70:b3:72:2b:cd:44:c0:3c:7e:c8:36:5b:df:
09:4d:dd:f7:ab:c7:a6:8b:20:d7:b0:f3:3d:8d:7a:90:b5:f0:
ef:6b:9d:7b:d2:de:e4:e4:05:67:66:e4:e7:76:fa:8b:49:e1:
ac:6e:af:e7:66:45:d8:38:f7:08:77:ea:21:05:49:9e:7a:32:
74:11:0d:f0:9e:50:97:98:3a:53:27:19:ab:3f:56:27:15:8e:
84:d3:a6:9e:e7:b9:c9:5c:79:81:a6:2e:4e:cf:54:41:b8:d7:
f4:0f:0b:ed:6b:a0:9f:db:70:90:72:df:29:92:ba:eb:1f:5b:
16:d8:d3:1e:6f:3e:bc:41:f9:4d:52:50:74:80:aa:76:33:10:
64:6f:0f:eb:4c:d0:01:ca:15:e5:61:9e:a4:35:e1:f6:94:ea:
a2:f9:1c:8b:f1:53:17:c3:d1:c1:f7:30:d3:8b:20:59:ff:75:
b9:8b:65:0c:25:19:85:c4:26:8a:52:34:9a:03:e5:05:b0:e0:
5d:75:e3:d9:85:26:ec:b8:80:0d:cf:0f:4c:a0:6c:7e:60:eb:
27:39:8b:95:5d:79:95:70:f9:91:e4:57:f2:f5:9e:4e:80:f5:
6c:b7:bb:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:51 2024 by rpki-client on console-ams.rpki-client.org