Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/de284b-b83b-46d3-bbc8-d25680b4df1f/1/KTLMJlHdp97KimSXGFsziCEjlP8.roa
File: KTLMJlHdp97KimSXGFsziCEjlP8.roa (raw, json)
Hash identifier: kSEJurDp751Rz/4yLm3klMNXVIv4Te9dHmjSVlT94R4=
Subject key identifier: 29:32:CC:26:51:DD:A7:DE:CA:8A:64:97:18:5B:33:88:21:23:94:FF
Certificate issuer: /CN=8ebed6dc9e97ff18ee982721d8f9257756266121
Certificate serial: 02B3D416
Authority key identifier: 8E:BE:D6:DC:9E:97:FF:18:EE:98:27:21:D8:F9:25:77:56:26:61:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jr7W3J6X_xjumCch2Pkld1YmYSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/de284b-b83b-46d3-bbc8-d25680b4df1f/1/KTLMJlHdp97KimSXGFsziCEjlP8.roa
Signing time: Sat 01 Jan 2022 12:05:56 +0000
ROA not before: Sat 01 Jan 2022 12:05:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207915
IP address blocks: 195.28.178.0/23 maxlen: 23
195.34.66.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45339670 (0x2b3d416)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ebed6dc9e97ff18ee982721d8f9257756266121
Validity
Not Before: Jan 1 12:05:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2932cc2651dda7deca8a6497185b3388212394ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:c8:46:5c:25:29:a9:6f:37:5c:29:f9:88:d2:
9f:76:55:13:4a:d4:b6:b3:ba:4b:d5:ab:b4:a0:2c:
da:73:e2:1f:c2:fc:77:5d:fd:eb:83:29:f6:95:a4:
2d:f4:9c:53:3d:4d:4f:51:92:7e:b0:bd:e5:50:c8:
b9:a5:d7:5f:c2:1e:00:c9:73:e5:69:5e:21:23:1e:
20:d5:d1:28:0f:19:62:49:0c:04:79:ed:3f:a7:00:
da:16:ca:03:7a:8e:1a:a6:56:0d:82:e3:59:06:60:
c3:ea:52:a9:07:0e:97:02:6b:3c:a9:43:fa:ee:38:
54:a8:14:54:7b:f3:ef:ee:eb:2c:7c:90:c6:13:d6:
c8:8d:85:72:ab:b5:8f:d2:51:41:72:31:eb:9d:d1:
a0:29:32:cf:a4:4e:08:08:87:ba:f0:10:92:11:73:
13:68:f4:2d:32:a0:00:8b:2c:1a:8f:99:15:97:01:
27:29:17:63:30:98:3c:3f:20:d1:8d:d2:01:01:e0:
24:cf:6a:84:b5:e3:3f:63:30:ae:35:2a:e1:b9:62:
b3:c0:7f:0d:40:be:1f:36:24:ba:d1:5f:16:79:5b:
fe:b6:ef:31:51:ce:18:34:0c:46:cd:94:77:9a:76:
9d:63:c5:09:bb:80:74:6c:4e:3f:6b:63:ef:04:47:
4f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:32:CC:26:51:DD:A7:DE:CA:8A:64:97:18:5B:33:88:21:23:94:FF
X509v3 Authority Key Identifier:
keyid:8E:BE:D6:DC:9E:97:FF:18:EE:98:27:21:D8:F9:25:77:56:26:61:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jr7W3J6X_xjumCch2Pkld1YmYSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/de284b-b83b-46d3-bbc8-d25680b4df1f/1/KTLMJlHdp97KimSXGFsziCEjlP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/de284b-b83b-46d3-bbc8-d25680b4df1f/1/jr7W3J6X_xjumCch2Pkld1YmYSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.28.178.0/23
195.34.66.0/23
Signature Algorithm: sha256WithRSAEncryption
43:bf:01:f9:7d:8a:54:f0:80:d0:6b:20:0f:3f:87:13:26:5e:
b2:46:2c:19:cd:d7:e6:b3:cc:29:2f:32:3b:fb:b4:74:11:c7:
35:80:00:a0:bd:fa:1b:89:f2:79:8a:70:50:5f:64:84:49:2b:
4e:01:91:b1:98:ff:75:24:1e:61:a8:17:d3:79:3d:b0:a9:36:
de:4c:ff:10:e9:55:8e:2b:08:7b:89:c2:c1:2e:dc:c8:0d:c9:
32:e8:f4:31:81:35:29:3b:c9:94:3b:d1:90:ed:3d:31:97:57:
11:cb:bb:05:c0:cd:d4:c6:13:ed:a4:dc:e4:7f:6b:15:b6:3d:
14:e9:9b:d0:b6:0e:4b:bc:16:f0:9a:40:17:07:98:e0:07:66:
5d:a2:79:c7:38:66:a0:27:65:54:1d:5c:d1:12:3e:54:38:e5:
86:9b:b9:c4:26:f1:ce:6f:10:16:8c:2f:b1:90:e9:4e:5c:8d:
f1:a4:47:02:84:a0:d2:cf:db:2d:bc:61:fe:d6:1f:44:1c:ac:
7a:ad:5c:86:44:6a:6e:e5:79:57:9a:c0:59:e9:d0:18:f1:2f:
27:5a:c5:17:f9:f9:90:2c:0a:67:0a:2d:18:4b:1a:1d:7e:e2:
5b:cb:7a:4a:78:7d:6a:39:97:1d:18:fa:95:c9:19:4b:a3:f5:
33:2c:f9:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:22 2024 by rpki-client on console-fra.rpki-client.org