Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/c1b1f0-234f-45d5-8595-f7c2c2a91bc2/1/KB6mB5YFwVV6sBS660onJCLEKI8.roa
File: KB6mB5YFwVV6sBS660onJCLEKI8.roa (raw, json)
Hash identifier: P5TXpOuTRfvVQit8fE7rOq7q66oLAQasukPlQ6ajLSg=
Subject key identifier: 28:1E:A6:07:96:05:C1:55:7A:B0:14:BA:EB:4A:27:24:22:C4:28:8F
Certificate issuer: /CN=ec3a633ef2c08251a58603562e56aa6efa93ec25
Certificate serial: 0184291EBE8BD4D9933BE33110E19A7B695B
Authority key identifier: EC:3A:63:3E:F2:C0:82:51:A5:86:03:56:2E:56:AA:6E:FA:93:EC:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7DpjPvLAglGlhgNWLlaqbvqT7CU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/c1b1f0-234f-45d5-8595-f7c2c2a91bc2/1/KB6mB5YFwVV6sBS660onJCLEKI8.roa
Signing time: Sun 30 Oct 2022 13:39:51 +0000
ROA not before: Sun 30 Oct 2022 13:39:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 217.66.224.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:29:1e:be:8b:d4:d9:93:3b:e3:31:10:e1:9a:7b:69:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec3a633ef2c08251a58603562e56aa6efa93ec25
Validity
Not Before: Oct 30 13:39:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=281ea6079605c1557ab014baeb4a272422c4288f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:0b:4d:35:30:2b:fc:ff:65:45:b0:9e:64:13:
d6:79:fa:9a:7e:ae:c3:48:77:e7:0d:62:c6:c2:46:
67:12:bd:8d:db:ad:66:9a:6b:6d:64:89:13:4c:9b:
2d:55:3c:4d:3b:cd:78:cc:a9:1f:96:1b:e1:5f:80:
55:bf:53:9d:dd:dd:f9:d8:ce:ad:ef:68:76:63:58:
46:f5:e3:88:26:5b:55:bc:37:64:95:79:8c:1c:a2:
50:11:88:7d:ea:a7:b1:4f:c1:4e:84:a3:7f:d2:9c:
12:5c:ff:ef:af:4f:b5:3a:ef:cd:94:2d:87:8f:c4:
2c:63:c1:f0:52:95:bc:d1:91:02:11:b4:f2:01:a7:
4d:a3:a1:64:b7:e8:4f:a0:2c:94:03:30:ed:24:6c:
dd:2c:99:36:81:c3:4b:9d:87:8a:59:97:cb:72:b2:
22:28:69:6e:cb:ce:94:ef:36:ee:09:c2:54:de:a6:
fd:db:63:98:b6:28:e2:72:30:d8:b2:32:82:e5:03:
0d:25:70:a4:ef:61:fd:f7:2a:a5:bb:fa:4a:74:f7:
f9:6b:cb:55:3f:43:b1:c7:7a:58:ce:c2:35:22:87:
18:a7:f7:91:fa:2f:02:16:e2:f8:9d:63:80:06:ec:
0c:98:32:fa:7f:a1:79:13:e6:7c:25:0b:46:f1:72:
4a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:1E:A6:07:96:05:C1:55:7A:B0:14:BA:EB:4A:27:24:22:C4:28:8F
X509v3 Authority Key Identifier:
keyid:EC:3A:63:3E:F2:C0:82:51:A5:86:03:56:2E:56:AA:6E:FA:93:EC:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7DpjPvLAglGlhgNWLlaqbvqT7CU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c1b1f0-234f-45d5-8595-f7c2c2a91bc2/1/KB6mB5YFwVV6sBS660onJCLEKI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c1b1f0-234f-45d5-8595-f7c2c2a91bc2/1/7DpjPvLAglGlhgNWLlaqbvqT7CU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.66.224.0/19
Signature Algorithm: sha256WithRSAEncryption
65:41:5f:e3:e9:e2:23:3b:4f:04:70:bd:c3:1a:c7:8c:4e:75:
ed:74:4c:6c:34:ef:e3:ad:23:46:7e:8e:88:46:a8:da:fb:2f:
13:fd:90:a9:ec:ec:0d:29:4b:04:12:20:ae:89:28:13:25:49:
71:9a:56:50:8f:7b:84:20:44:81:d9:e0:94:a7:f2:78:02:02:
1d:e0:f0:68:e1:c2:01:bf:ef:2c:56:56:e4:bb:61:ad:26:1f:
3c:48:f4:08:20:a4:85:33:86:d5:cb:66:2f:fe:0d:a4:07:14:
39:b6:d2:e5:7a:17:8a:37:71:66:74:54:08:6a:72:e9:8e:07:
e7:d9:3c:ac:d5:34:b8:f8:4b:70:65:76:95:2f:3c:e2:d7:f3:
cd:be:57:dd:ee:b7:1c:b9:e6:54:30:0d:4d:94:b0:57:33:ef:
c5:a0:cf:62:8c:d0:76:11:bf:7a:b5:db:fa:44:df:8d:2e:06:
a2:fa:1f:0c:25:b6:bb:6c:1e:5b:ac:b6:c9:bb:5a:88:e2:1b:
9a:af:02:f0:8e:96:14:81:e4:7f:7b:6b:39:7b:83:f7:96:b1:
a2:73:bd:a6:90:5b:99:f8:f1:90:9d:72:db:f3:a1:16:44:2f:
75:f5:b3:a4:27:ee:eb:f0:31:7d:ef:6a:dd:22:d3:d6:a7:fe:
e1:06:29:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:32 2023 by rpki-client on console-fra.rpki-client.org