Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/KAIPzAS_lSJeu6HdwBzbqKEFEV0.roa
File: KAIPzAS_lSJeu6HdwBzbqKEFEV0.roa (raw, json)
Hash identifier: bBl72gelum9lQzaOSPB/zTzPcuKvc0+Czuuh4czUGrQ=
Subject key identifier: 28:02:0F:CC:04:BF:95:22:5E:BB:A1:DD:C0:1C:DB:A8:A1:05:11:5D
Certificate issuer: /CN=92bf6464ce6e19a4dcf8a32b27a2f1cbe1551055
Certificate serial: 35117169
Authority key identifier: 92:BF:64:64:CE:6E:19:A4:DC:F8:A3:2B:27:A2:F1:CB:E1:55:10:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kr9kZM5uGaTc-KMrJ6Lxy-FVEFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/KAIPzAS_lSJeu6HdwBzbqKEFEV0.roa
Signing time: Sat 01 Jan 2022 05:58:40 +0000
ROA not before: Sat 01 Jan 2022 05:58:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25369
IP address blocks: 79.143.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 890335593 (0x35117169)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92bf6464ce6e19a4dcf8a32b27a2f1cbe1551055
Validity
Not Before: Jan 1 05:58:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=28020fcc04bf95225ebba1ddc01cdba8a105115d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:82:d3:ce:72:96:37:4b:02:8e:25:a8:1d:da:
b3:e1:73:87:c6:1a:b0:a7:44:03:de:02:ee:07:29:
47:1a:46:69:8a:d4:fc:9d:9d:d6:ab:bf:dd:16:14:
52:bb:29:31:e5:b8:cb:29:fd:79:a8:dd:0d:3b:0b:
90:bf:55:34:e5:42:9a:ad:e1:b0:42:29:31:ea:b6:
bc:c6:92:af:12:6b:25:05:fa:1b:cd:6b:ff:e1:24:
0c:ad:9e:49:87:10:cc:c1:65:3c:82:52:50:bd:1b:
03:f7:f7:66:f1:76:9d:d3:24:e7:b0:44:98:86:24:
fa:77:82:27:d3:a5:51:0d:eb:16:3d:b4:57:ab:d5:
8b:61:07:68:02:eb:88:f6:39:18:06:ea:af:5a:6c:
c3:da:35:8c:e4:d6:ba:bb:83:2b:c8:cc:3b:fc:7e:
5d:fc:f1:af:a0:5b:94:ff:51:1b:77:c6:85:1f:7c:
ac:29:31:2e:3c:27:54:45:be:e9:2e:8b:f6:01:d0:
ce:61:49:16:69:58:85:36:ec:be:f7:d7:cc:8b:ed:
a1:53:96:ac:46:46:8c:a1:43:a8:b9:7a:27:49:34:
7b:4d:9f:6e:14:7e:61:d3:97:0d:8d:c7:3d:79:73:
c8:bb:09:e7:65:7f:4b:29:f8:5c:4c:68:3c:b7:b0:
18:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:02:0F:CC:04:BF:95:22:5E:BB:A1:DD:C0:1C:DB:A8:A1:05:11:5D
X509v3 Authority Key Identifier:
keyid:92:BF:64:64:CE:6E:19:A4:DC:F8:A3:2B:27:A2:F1:CB:E1:55:10:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kr9kZM5uGaTc-KMrJ6Lxy-FVEFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/KAIPzAS_lSJeu6HdwBzbqKEFEV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/kr9kZM5uGaTc-KMrJ6Lxy-FVEFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.143.87.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:cf:8d:6d:b2:7b:fa:98:64:f1:67:75:db:fb:00:30:d4:90:
15:63:af:21:bf:3c:16:8d:ce:64:67:3a:ae:30:79:96:a4:8d:
4d:0a:05:42:0f:b1:d8:bb:a6:f8:18:6d:56:01:da:c9:16:44:
29:28:22:68:da:1a:78:9d:e1:8a:7d:1c:df:a3:f2:74:86:71:
b6:18:57:70:14:c9:0a:71:66:7a:7a:17:eb:16:81:a8:85:f1:
12:eb:30:d3:24:9b:09:10:c6:4e:82:a1:b9:cf:bb:c3:e9:df:
a4:ab:fa:ed:6c:37:e9:78:46:66:e1:9e:d2:0f:c7:b4:6c:f9:
43:40:bc:70:ad:d6:a1:00:25:9e:13:ca:d4:e9:ab:fa:65:74:
ee:7a:ad:86:68:05:d2:61:c6:80:dc:d5:b8:dc:62:fc:0c:e6:
66:3a:59:48:b3:c9:9f:be:25:9b:32:4f:f1:b2:9c:69:64:e9:
76:fc:27:5f:7e:0b:86:c7:e2:bb:51:f6:3d:64:23:08:b2:62:
0f:91:2a:89:83:a2:92:6e:e6:3f:a2:32:9d:13:d7:db:99:e6:
6a:a0:6d:a6:86:2d:71:d9:c5:87:27:87:7f:82:48:11:e1:56:
3f:1c:6f:55:00:bc:c8:db:18:3b:28:2f:44:02:36:29:16:9e:
5e:2e:05:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:34 2023 by rpki-client on console-ams.rpki-client.org