Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/kEks1FCt83P6df-mQRqO9UCvIkw.roa
File: kEks1FCt83P6df-mQRqO9UCvIkw.roa (raw, json)
Hash identifier: gAFgyXNMjJkH89svKaHjkUy6iKawdFMKD31/+dX1OMg=
Subject key identifier: 90:49:2C:D4:50:AD:F3:73:FA:75:FF:A6:41:1A:8E:F5:40:AF:22:4C
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 06F16537
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/kEks1FCt83P6df-mQRqO9UCvIkw.roa
Signing time: Thu 19 May 2022 12:06:30 +0000
ROA not before: Thu 19 May 2022 12:06:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398465
IP address blocks: 78.159.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116483383 (0x6f16537)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: May 19 12:06:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90492cd450adf373fa75ffa6411a8ef540af224c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:73:58:c2:6a:73:bf:3e:49:67:58:3b:28:ab:
f3:7b:9c:82:22:7a:c9:79:da:65:78:c6:5a:53:ca:
91:4a:9f:61:fc:8a:d1:81:df:18:df:53:e9:68:5c:
ca:ce:0e:33:3f:8f:25:81:ff:41:f7:a6:1c:5f:5b:
d9:62:94:f4:a3:bc:a8:ae:1c:99:a1:0b:b9:bf:ad:
28:11:8e:74:5c:19:68:90:1c:c6:fd:79:28:a5:3d:
8d:39:5c:b9:49:e5:a3:ee:6f:d9:bb:73:17:3c:fb:
78:d7:d7:c6:15:81:07:ae:af:1b:90:c0:51:b4:1c:
c1:e8:6a:44:50:b7:25:8b:23:d2:0e:b2:ad:1b:f7:
5b:42:cf:93:c4:4f:b4:a8:87:77:1c:3f:fa:9b:71:
77:cd:0d:ad:d7:bc:40:14:ef:bc:9c:83:1f:29:35:
d6:ab:be:83:cb:f9:c6:aa:34:1e:9c:60:d3:c4:fc:
d8:40:fa:c1:1e:e3:df:0b:db:0f:35:5d:6c:4d:31:
56:5e:a2:3f:28:88:f2:e7:2f:ad:79:c9:cb:e9:f1:
de:8c:b1:26:cb:16:c0:6f:25:0a:b9:a5:ca:f2:7f:
e9:ee:8d:44:44:e7:b7:63:d5:f3:db:60:aa:e5:d0:
88:e5:b4:4c:66:86:82:21:21:b9:37:95:ad:53:4c:
a9:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:49:2C:D4:50:AD:F3:73:FA:75:FF:A6:41:1A:8E:F5:40:AF:22:4C
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/kEks1FCt83P6df-mQRqO9UCvIkw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.159.131.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:7c:dc:65:fb:89:98:77:ad:77:5d:f1:c1:59:d2:ac:78:2b:
be:1e:14:1c:fd:13:fb:fe:82:31:70:3a:58:d2:0a:f2:62:67:
cf:28:b8:54:2d:dc:10:1a:74:a4:e1:af:9b:b5:48:bb:14:bc:
3b:06:44:a9:a8:9c:1f:14:e2:31:b5:90:fd:1d:fc:3c:b0:a6:
5d:1e:f5:2c:27:24:c6:a3:fe:c0:44:c8:78:a4:99:64:3d:2d:
8f:a5:a9:8a:05:44:e4:35:31:3e:b7:1a:c8:87:1d:0f:59:5c:
c0:be:47:0b:4e:94:7e:84:ce:62:4a:8c:fc:8e:68:04:97:61:
05:65:45:21:97:69:14:36:15:e5:f7:16:02:48:36:0a:6c:89:
e5:ff:18:63:e9:c8:5d:cb:7e:0e:8b:80:70:4c:d6:81:8e:c6:
07:24:8d:e1:26:03:4e:90:4c:9a:87:79:9f:c0:94:98:68:ca:
d2:78:65:cd:a0:78:3a:a1:db:3f:7f:a1:98:72:c4:98:7f:01:
06:be:69:ff:e5:d8:d0:99:fe:ed:6b:fb:3d:c5:ee:4b:dc:a2:
2e:b1:7e:1f:eb:ab:b3:a0:5b:68:9b:e4:78:90:df:e6:c0:70:
5d:b5:34:a2:04:97:09:c0:34:76:85:c7:2e:85:7c:d7:3a:e1:
0b:b5:c1:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:07 2023 by rpki-client on console-fra.rpki-client.org