Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/khO_4SXUJxScXmqhH8wE-3iSt2Y.roa
File: khO_4SXUJxScXmqhH8wE-3iSt2Y.roa (raw, json)
Hash identifier: NN+dfMe/l2NSWaubo5OhD3Nols6724VZGY3/wzpJKxw=
Subject key identifier: 92:13:BF:E1:25:D4:27:14:9C:5E:6A:A1:1F:CC:04:FB:78:92:B7:66
Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Certificate serial: 11CCE6C9
Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/khO_4SXUJxScXmqhH8wE-3iSt2Y.roa
Signing time: Sat 01 Jan 2022 15:05:44 +0000
ROA not before: Sat 01 Jan 2022 15:05:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208046
IP address blocks: 82.118.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 298641097 (0x11cce6c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Validity
Not Before: Jan 1 15:05:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9213bfe125d427149c5e6aa11fcc04fb7892b766
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:62:4b:eb:ea:63:4a:db:3e:0e:ac:0b:7d:fb:
ef:98:e4:3e:d1:bb:d5:fe:67:56:5e:03:d8:08:32:
65:d6:1f:8a:00:8a:1a:df:5e:42:70:02:1e:7d:e7:
de:21:17:0b:80:4b:29:ca:9a:37:90:7e:e3:dc:a3:
fc:06:77:ce:5c:30:ce:01:49:cc:8e:8b:76:1f:63:
91:01:02:27:64:4d:83:80:e9:c7:62:bb:0c:52:a8:
da:6c:6f:0a:a9:5f:ac:88:b5:85:85:5c:eb:4a:c7:
76:88:e8:4c:a2:f7:e9:07:a4:1e:a1:a3:45:3e:19:
28:e0:2c:67:31:67:75:8a:a9:bf:ac:8f:ad:d3:65:
a9:59:e1:f9:95:6b:5a:c3:93:c4:f0:1e:de:29:de:
08:49:f4:be:af:5f:1a:3e:97:27:9f:0a:56:5d:a6:
78:c7:af:a6:5f:3b:61:18:17:10:e9:3b:db:c6:92:
b5:b9:df:f0:4b:8a:4d:71:c9:ba:e1:8c:c6:c7:7d:
1d:93:80:c1:39:7a:05:57:b1:a0:f2:48:a4:7f:0f:
7e:27:15:1e:62:00:3d:16:65:35:f4:e8:58:4a:e7:
cd:b1:8a:91:89:2b:79:e3:f1:e9:03:5e:f5:0d:24:
67:5a:f3:00:e4:29:9f:db:46:26:d7:27:6c:13:95:
52:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:13:BF:E1:25:D4:27:14:9C:5E:6A:A1:1F:CC:04:FB:78:92:B7:66
X509v3 Authority Key Identifier:
keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/khO_4SXUJxScXmqhH8wE-3iSt2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.118.230.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:e8:78:6d:67:97:a8:ac:23:1b:c1:67:1e:36:52:35:6d:f6:
d0:91:34:5f:45:df:cf:d1:79:9c:c4:67:c3:1a:f6:2a:3c:e3:
50:75:5b:5a:53:39:81:6d:31:15:e2:cd:7f:11:f2:6b:2b:18:
89:6d:b0:14:1e:d7:1b:7f:ce:51:03:a5:8f:ff:e8:b1:26:f6:
db:4b:6b:c3:73:b9:70:04:70:58:bf:2d:5e:75:01:59:f2:87:
43:0d:d5:c5:87:ea:2d:1b:c3:66:68:68:6f:07:35:b4:02:1a:
ad:f0:2d:36:9d:19:e1:41:28:cf:f7:6f:98:6e:6f:0d:1b:52:
49:45:27:a2:bc:be:85:53:e2:4c:68:c1:29:24:42:78:6d:4a:
87:a6:73:d8:25:6b:93:2a:b1:a8:23:3c:6d:45:b1:a6:e6:e5:
5c:d9:b2:e0:ad:15:a7:a9:9d:c7:f1:59:7a:97:bc:d5:17:24:
e6:ee:6d:82:17:48:91:dc:44:b9:89:3d:22:4a:0a:9c:b5:33:
e2:e9:9b:76:a8:70:71:f7:9a:e1:1f:55:c4:6b:32:39:54:46:
a7:c8:7c:1b:90:6c:19:65:8d:53:c2:af:c0:98:88:13:d4:21:
13:43:ad:99:42:9e:c5:3f:ee:c8:22:29:a5:c7:f5:22:13:fd:
ae:eb:09:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:12 2024 by rpki-client on console-ams.rpki-client.org