Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/e1b84b-39a6-4ac8-be63-30fee27e84cb/1/KoBTr3e-5st5VmBTWJ9JmVdHMG8.roa
File: KoBTr3e-5st5VmBTWJ9JmVdHMG8.roa (raw, json)
Hash identifier: FfUyk1U6S2eSX+dm7rTMBQCuT7hKVmK3TMih4jMVfI4=
Subject key identifier: 2A:80:53:AF:77:BE:E6:CB:79:56:60:53:58:9F:49:99:57:47:30:6F
Certificate issuer: /CN=27f5180f9b93ae7573c08a894bd452bd77ce56cd
Certificate serial: 11517631
Authority key identifier: 27:F5:18:0F:9B:93:AE:75:73:C0:8A:89:4B:D4:52:BD:77:CE:56:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J_UYD5uTrnVzwIqJS9RSvXfOVs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/e1b84b-39a6-4ac8-be63-30fee27e84cb/1/KoBTr3e-5st5VmBTWJ9JmVdHMG8.roa
Signing time: Sat 01 Jan 2022 05:02:06 +0000
ROA not before: Sat 01 Jan 2022 05:02:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20546
IP address blocks: 213.189.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 290551345 (0x11517631)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27f5180f9b93ae7573c08a894bd452bd77ce56cd
Validity
Not Before: Jan 1 05:02:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a8053af77bee6cb79566053589f49995747306f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f7:10:c7:36:ae:c7:97:13:bb:f8:f9:f7:fb:
f0:a6:e8:8c:4f:44:42:87:07:63:56:83:55:40:83:
30:64:b4:0d:29:ea:bc:e1:23:12:96:13:42:9a:2e:
56:3e:89:10:2f:00:5a:67:24:d6:04:96:ed:68:4b:
ef:44:26:f3:0d:1e:1a:00:e6:0f:b9:0a:0c:4d:a9:
a5:ad:1f:c2:bd:9c:4a:2f:e0:04:07:cf:c3:a7:28:
a2:ec:ca:a1:45:7f:d9:22:59:42:a1:3a:d6:17:8c:
51:2e:b0:c2:2e:05:ac:18:c4:70:6a:83:f2:51:eb:
54:4e:9b:d2:d0:32:ca:fa:00:5f:91:65:d9:49:10:
d1:ad:5e:a3:25:0c:28:fe:a3:6b:47:42:e0:7a:c4:
ac:2f:f3:ec:81:81:51:1f:ef:10:37:74:29:5b:5f:
83:34:05:be:48:91:1e:97:e8:fc:3a:9e:95:38:20:
43:d9:14:01:22:19:d2:6d:d4:3c:4a:f8:9f:24:c9:
c5:7d:a4:ff:15:1c:b8:51:68:25:23:6c:b2:ef:31:
12:e6:b3:d9:f8:a7:0d:29:3e:e7:50:19:9d:5a:30:
83:be:c4:fd:a7:e6:92:11:94:6d:d7:93:e9:5b:31:
36:ff:f5:70:de:bc:db:aa:8b:f1:4b:2a:a1:a2:98:
40:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:80:53:AF:77:BE:E6:CB:79:56:60:53:58:9F:49:99:57:47:30:6F
X509v3 Authority Key Identifier:
keyid:27:F5:18:0F:9B:93:AE:75:73:C0:8A:89:4B:D4:52:BD:77:CE:56:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J_UYD5uTrnVzwIqJS9RSvXfOVs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e1b84b-39a6-4ac8-be63-30fee27e84cb/1/KoBTr3e-5st5VmBTWJ9JmVdHMG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e1b84b-39a6-4ac8-be63-30fee27e84cb/1/J_UYD5uTrnVzwIqJS9RSvXfOVs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.189.147.0/24
Signature Algorithm: sha256WithRSAEncryption
34:6e:95:5a:42:f8:31:83:c2:8e:fd:5e:d6:53:c6:ab:1c:e0:
6c:09:97:f5:ac:77:ae:a6:7a:ea:5f:c6:6a:f5:a1:4f:0b:2b:
b0:a7:64:22:1a:ae:92:23:59:a7:31:b7:d9:b5:be:3e:dd:b3:
7b:1f:56:36:96:7c:b2:5f:2d:dd:2d:eb:cd:ba:82:83:b2:e6:
ab:a8:ca:b4:ab:83:43:5f:c0:d8:b4:49:e9:ad:b6:54:4c:46:
61:51:f0:e1:17:37:54:5f:b8:5a:42:40:bc:e6:e1:13:ae:89:
dd:fb:9b:ed:c7:f3:67:90:15:aa:ca:e8:78:20:99:42:71:2a:
1b:20:2f:ec:90:23:ce:c6:76:6a:de:7e:c1:93:f6:c0:7b:f8:
d4:1f:56:6d:42:4d:98:b8:fa:cd:91:5b:55:b1:d1:ef:fe:13:
d5:71:48:ce:8d:78:bb:36:8d:31:60:3c:a3:e0:7d:ad:52:15:
59:60:83:14:a6:49:16:bd:c6:c0:1a:8b:51:8d:c8:9e:e4:39:
1a:67:e4:2c:23:16:94:a4:fc:43:8b:b5:a4:af:c7:28:74:a5:
42:5a:48:cf:80:b8:ad:47:09:1f:61:5f:d5:47:c8:fc:a7:5d:
64:85:9d:45:c1:d7:2d:f3:91:50:32:7e:0d:de:bb:a7:3b:84:
a1:83:e9:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:00 2024 by rpki-client on console-ams.rpki-client.org