Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/554988-d1a9-4b54-93ee-2ceea5caf3a0/1/KgTr-F_8FjrZCymr00emeMvoMvY.roa
File: KgTr-F_8FjrZCymr00emeMvoMvY.roa (raw, json)
Hash identifier: qx7tzevtIEeqh1JkbMsmD90s00i1bCuxma4SiSfdrvo=
Subject key identifier: 2A:04:EB:F8:5F:FC:16:3A:D9:0B:29:AB:D3:47:A6:78:CB:E8:32:F6
Certificate issuer: /CN=10e8da8407f9f748e81fe9da9eb06b3b17d067dd
Certificate serial: 32762AB2
Authority key identifier: 10:E8:DA:84:07:F9:F7:48:E8:1F:E9:DA:9E:B0:6B:3B:17:D0:67:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EOjahAf590joH-nanrBrOxfQZ90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/554988-d1a9-4b54-93ee-2ceea5caf3a0/1/KgTr-F_8FjrZCymr00emeMvoMvY.roa
Signing time: Sat 01 Jan 2022 00:57:27 +0000
ROA not before: Sat 01 Jan 2022 00:57:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57468
IP address blocks: 194.60.240.0/23 maxlen: 23
185.6.208.0/22 maxlen: 22
2a03:1040::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 846604978 (0x32762ab2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10e8da8407f9f748e81fe9da9eb06b3b17d067dd
Validity
Not Before: Jan 1 00:57:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a04ebf85ffc163ad90b29abd347a678cbe832f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:33:b4:f7:af:93:2b:54:03:62:40:0c:ce:c2:
26:a5:aa:0f:56:7f:86:7a:4c:ed:02:b9:d4:cd:fb:
c8:0c:4d:02:32:fa:79:62:0d:aa:a2:c5:89:6d:75:
89:59:1c:cb:db:cd:f8:a4:95:07:0e:4a:f8:da:38:
5a:81:4a:69:56:e8:ef:c2:bf:9b:ce:ca:ca:ee:44:
a9:b9:5f:17:9b:1d:de:27:93:d4:d4:c2:16:2a:a7:
72:9e:b5:b8:da:89:fe:7d:c0:90:95:3e:bc:6c:9b:
21:a6:cc:bc:58:29:cf:94:ef:d4:b1:94:5a:22:55:
d9:48:9f:fa:4c:92:aa:ac:9a:84:84:53:72:9f:40:
ec:2a:e0:64:0c:eb:ee:4a:bc:94:68:ab:1b:75:37:
b0:fa:40:bf:5d:1e:ee:f3:48:dc:ed:da:c7:9e:c1:
7e:87:6a:4a:4a:ff:a9:00:a1:67:8e:1b:dd:21:a2:
b1:f5:ef:6b:42:db:ef:12:84:42:c9:54:74:1e:ea:
bd:13:b6:11:88:83:16:60:e8:81:7a:7c:e9:78:ad:
bf:3c:0a:82:5e:11:11:a3:1a:89:84:5f:34:32:2a:
11:d6:55:1b:96:dc:76:da:08:dc:1e:36:fa:dc:4c:
fd:0e:8d:69:49:97:38:72:38:c9:36:11:6c:3a:49:
e3:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:04:EB:F8:5F:FC:16:3A:D9:0B:29:AB:D3:47:A6:78:CB:E8:32:F6
X509v3 Authority Key Identifier:
keyid:10:E8:DA:84:07:F9:F7:48:E8:1F:E9:DA:9E:B0:6B:3B:17:D0:67:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EOjahAf590joH-nanrBrOxfQZ90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/554988-d1a9-4b54-93ee-2ceea5caf3a0/1/KgTr-F_8FjrZCymr00emeMvoMvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/554988-d1a9-4b54-93ee-2ceea5caf3a0/1/EOjahAf590joH-nanrBrOxfQZ90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.6.208.0/22
194.60.240.0/23
IPv6:
2a03:1040::/32
Signature Algorithm: sha256WithRSAEncryption
8e:34:2f:c4:2f:a6:e6:8d:8d:cf:a7:2c:27:40:e1:80:67:d2:
2e:cb:f8:ed:f5:6b:00:3c:9e:12:9e:7e:1e:e5:68:ab:fe:50:
51:4d:77:44:a8:37:81:8d:cf:5c:f9:9f:10:9d:68:1b:4b:ce:
8e:53:46:17:0e:f6:c8:90:7f:45:4f:0c:9d:ca:9a:be:1d:12:
ef:09:ab:d5:b9:66:a3:58:92:e3:af:4d:30:41:4a:0f:df:51:
11:bd:d1:98:92:c4:9f:17:87:de:b7:ab:bf:47:6c:ac:38:74:
c0:83:01:63:0d:e3:75:b7:02:c1:d8:b7:0f:0d:fc:b5:56:2d:
cf:0f:b3:28:ef:94:46:28:5f:2b:75:ee:1f:89:19:cb:dd:63:
a7:8f:56:5c:d1:b7:c5:c2:90:33:a1:54:4a:1d:ba:71:43:92:
dc:16:7d:ed:e1:28:62:3a:60:ca:bd:1d:e9:0f:35:4f:6e:ac:
43:59:a3:9d:bd:3c:a3:d1:a6:31:88:21:bb:f2:85:e6:4b:ec:
06:ad:f2:5a:2a:7a:a9:cf:05:97:16:a6:51:51:3e:f4:a8:56:
47:ef:76:97:01:5b:e7:ec:5d:0a:1c:72:cd:3f:26:11:ee:56:
e6:2b:38:97:c3:14:98:1c:c5:3c:f4:93:12:bc:d4:a3:83:d5:
52:8a:f2:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:51 2023 by rpki-client on console-fra.rpki-client.org