Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/KLO5nxcMIv_U5DsnCrFFAdB1MCA.roa
File: KLO5nxcMIv_U5DsnCrFFAdB1MCA.roa (raw, json)
Hash identifier: eVnwc8N/BEmNI44duvOCzVnx4cCjyHIK8B2ny/azvlE=
Subject key identifier: 28:B3:B9:9F:17:0C:22:FF:D4:E4:3B:27:0A:B1:45:01:D0:75:30:20
Certificate issuer: /CN=89aed2cff8ce31b334f83a0b305feef01d71da75
Certificate serial: 05CF44F5
Authority key identifier: 89:AE:D2:CF:F8:CE:31:B3:34:F8:3A:0B:30:5F:EE:F0:1D:71:DA:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/KLO5nxcMIv_U5DsnCrFFAdB1MCA.roa
Signing time: Sat 01 Jan 2022 15:02:41 +0000
ROA not before: Sat 01 Jan 2022 15:02:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31655
IP address blocks: 92.207.0.0/16 maxlen: 24
151.2.128.0/17 maxlen: 24
2a04:4440::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97469685 (0x5cf44f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89aed2cff8ce31b334f83a0b305feef01d71da75
Validity
Not Before: Jan 1 15:02:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=28b3b99f170c22ffd4e43b270ab14501d0753020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:6d:7f:d8:b0:3f:f5:68:96:ef:5d:ca:3b:38:
f0:7f:08:0c:3d:24:a8:78:44:8a:6d:6c:30:35:a4:
e4:23:14:f4:37:72:73:c1:6f:c5:26:78:45:61:bf:
f5:69:8e:6d:c6:4a:b3:ab:8a:1c:57:61:6f:ee:5c:
8d:cf:21:bc:cd:ef:71:3c:3b:ba:ce:7e:93:ee:77:
61:55:d5:59:3c:58:50:35:ad:09:25:a2:e1:c7:ec:
48:76:bd:c3:5f:bf:b8:42:be:5d:d5:72:dd:a2:60:
fc:f2:c0:32:4c:dc:cd:af:c7:bc:c1:e5:ff:8a:dd:
b0:3e:f2:b8:31:6b:1a:2e:2d:3f:93:b7:c4:b8:94:
72:24:b5:c5:5d:dc:e6:3d:84:28:5e:6f:a7:50:ba:
91:80:89:1a:6e:06:f1:05:53:fd:99:3b:13:c6:bb:
f7:a8:8c:f8:e5:ca:2b:ce:ac:21:7d:b3:42:04:6e:
69:16:5a:e0:54:7a:d9:74:79:05:51:a9:87:1b:d7:
a0:1a:d9:5f:1b:b2:b0:35:3c:41:c8:cc:98:12:ae:
4a:06:80:06:2b:9c:c0:77:c3:1e:74:f3:49:be:f8:
82:d1:e3:15:d9:f3:53:e7:69:df:1f:2c:49:3b:a4:
06:c9:88:06:33:11:b4:a5:6c:b5:a9:48:98:cb:93:
ec:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:B3:B9:9F:17:0C:22:FF:D4:E4:3B:27:0A:B1:45:01:D0:75:30:20
X509v3 Authority Key Identifier:
keyid:89:AE:D2:CF:F8:CE:31:B3:34:F8:3A:0B:30:5F:EE:F0:1D:71:DA:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/KLO5nxcMIv_U5DsnCrFFAdB1MCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.207.0.0/16
151.2.128.0/17
IPv6:
2a04:4440::/29
Signature Algorithm: sha256WithRSAEncryption
a8:cb:f1:3f:bf:1b:d8:85:24:3f:2b:01:5b:1f:d4:4c:f9:a9:
b0:7c:98:8d:92:fb:bd:6c:37:b1:a3:48:99:b9:95:d1:ca:65:
76:03:75:62:25:67:cb:cf:bf:81:c9:9b:0f:75:fe:6f:3b:68:
4c:86:5b:55:4f:99:5c:1b:5a:bc:4e:48:d0:4f:65:b8:d8:6b:
cc:9a:a8:76:67:ab:27:34:1c:80:99:c9:f0:ea:87:36:fa:96:
33:b4:32:8b:6e:92:35:da:32:48:92:53:b0:1b:f3:de:22:5b:
4e:10:a2:80:06:52:4f:fa:ab:35:3e:1b:36:e6:29:ae:73:b6:
45:64:4a:cf:19:3c:d1:e4:f0:14:52:37:4f:ae:2d:c3:4f:e0:
78:46:29:17:cd:68:3e:80:13:b3:3d:25:a4:62:47:3a:3d:49:
dc:ab:c8:c5:f1:58:54:d9:25:f1:7a:01:5c:69:d1:46:49:ad:
cd:91:e0:73:04:dc:5c:8d:2a:ab:ab:50:a4:01:52:a9:c0:32:
b0:f8:9f:c6:8b:77:9f:40:46:77:df:57:22:13:73:41:b8:be:
70:6a:7d:19:ac:e2:65:15:40:37:e0:4a:17:aa:1a:7b:91:af:
ae:39:61:0a:db:d4:10:a9:53:d0:8a:ba:e6:d8:ac:0a:cc:3f:
a7:c8:5e:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:00 2024 by rpki-client on console-ams.rpki-client.org