Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/KpC-mlZN9edj2e6NuJol6ziwBJo.roa
File: KpC-mlZN9edj2e6NuJol6ziwBJo.roa (raw, json)
Hash identifier: L3/Z9la/IDxb2txC8IlZAeBfptKbq5Ys1zKQ2XxCqVc=
Subject key identifier: 2A:90:BE:9A:56:4D:F5:E7:63:D9:EE:8D:B8:9A:25:EB:38:B0:04:9A
Certificate issuer: /CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Certificate serial: 055557AC
Authority key identifier: 5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/KpC-mlZN9edj2e6NuJol6ziwBJo.roa
Signing time: Sat 01 Jan 2022 06:56:05 +0000
ROA not before: Sat 01 Jan 2022 06:56:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 139471
IP address blocks: 185.106.179.0/24 maxlen: 24
185.106.178.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89479084 (0x55557ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Validity
Not Before: Jan 1 06:56:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a90be9a564df5e763d9ee8db89a25eb38b0049a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:75:27:a6:84:3b:94:a9:94:e1:22:29:07:c3:
1d:27:18:c2:41:1e:03:c1:09:01:b6:a1:fb:69:73:
0e:79:30:88:a8:ba:e2:86:76:a5:48:6a:e0:91:b1:
1b:84:cc:b4:60:7d:c2:af:e0:55:e2:d1:b5:d2:43:
e0:72:99:a4:c3:97:26:25:ad:c0:53:ea:2a:d1:d3:
f9:6b:5f:8c:49:64:2b:75:d5:3e:1f:9d:6d:88:fe:
7b:75:ca:a0:b6:46:fd:30:6a:eb:72:3f:5f:a7:e0:
7b:73:22:95:72:56:02:06:46:7d:84:13:27:d5:34:
47:f2:ef:0f:ea:a8:26:09:e7:ad:f8:13:e2:40:43:
16:36:f1:b5:40:d0:38:0a:81:b4:86:f1:6c:9c:c5:
a4:04:5b:99:ab:f9:f2:59:e4:15:19:12:8e:6d:68:
93:e5:ce:87:ea:8e:fd:5d:bc:e2:4e:23:07:2f:43:
91:a6:29:ae:92:61:2b:c5:68:cd:28:a7:13:34:7e:
e0:54:cd:55:18:71:54:2c:6a:4d:e8:39:55:9b:b4:
89:a2:8c:aa:c9:c5:d6:96:c0:1c:a9:70:7e:0f:9a:
25:50:bb:28:b6:2e:6c:d3:c4:f5:e0:29:28:f3:2e:
51:81:e8:57:f8:1b:75:04:f0:2f:d4:61:55:d2:c7:
b5:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:90:BE:9A:56:4D:F5:E7:63:D9:EE:8D:B8:9A:25:EB:38:B0:04:9A
X509v3 Authority Key Identifier:
keyid:5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/KpC-mlZN9edj2e6NuJol6ziwBJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.106.178.0/23
Signature Algorithm: sha256WithRSAEncryption
86:15:3b:da:88:e3:35:b7:6b:55:a4:ce:84:af:61:47:ba:67:
f9:41:e0:aa:83:80:11:ec:f2:40:bc:d4:ed:41:81:1a:2c:fc:
65:87:15:ce:de:ec:46:a6:da:5a:e1:61:4d:df:ae:5b:e9:01:
93:bf:91:bd:ab:0a:32:8e:e2:57:5c:7a:d8:0e:a2:41:63:43:
ec:41:cc:7d:b1:ef:76:5b:01:38:77:26:32:ef:6e:6e:14:5b:
63:43:e7:e4:5d:ff:cd:fc:81:a6:a9:f3:e6:4f:6c:9d:67:0e:
c7:d5:53:79:8d:02:9d:a7:a3:2c:e0:3d:96:51:2b:60:a3:ef:
9f:a3:41:3b:76:f5:3c:02:72:c7:01:e0:d5:52:46:f1:4e:28:
ee:9d:47:80:11:04:93:51:76:c1:12:4e:a8:ff:3e:f1:6e:c9:
d9:99:4d:a5:76:0d:85:df:33:36:97:f1:e1:48:37:a0:90:25:
50:b2:4d:f3:aa:fa:49:29:d3:14:de:19:3e:e8:e4:a2:d1:98:
b9:f6:3e:de:c5:ad:0f:76:1d:8f:11:59:59:3d:85:45:c1:6c:
0a:bb:0a:57:2e:83:d8:bf:40:bc:a8:62:73:f6:6a:85:fa:de:
91:0a:9b:ff:f3:95:c1:4f:1f:8c:d1:08:1d:ba:b4:ab:99:b8:
b8:cd:2a:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:41 2024 by rpki-client on console-fra.rpki-client.org