Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/KeZIkVo8uu-5Zep80ULfv1StiLw.roa
File: KeZIkVo8uu-5Zep80ULfv1StiLw.roa (raw, json)
Hash identifier: GPHZDA49/0k5dW5s4NLmqLEwa4D+ZlJSr8C7AkXR3+0=
Subject key identifier: 29:E6:48:91:5A:3C:BA:EF:B9:65:EA:7C:D1:42:DF:BF:54:AD:88:BC
Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial: 01835F507103833F89E80D25D312B0074469
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/KeZIkVo8uu-5Zep80ULfv1StiLw.roa
Signing time: Wed 21 Sep 2022 09:10:50 +0000
ROA not before: Wed 21 Sep 2022 09:10:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 2.59.183.0/24 maxlen: 24
2.59.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:5f:50:71:03:83:3f:89:e8:0d:25:d3:12:b0:07:44:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Validity
Not Before: Sep 21 09:10:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29e648915a3cbaefb965ea7cd142dfbf54ad88bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b5:1f:7d:2e:29:f2:db:bd:12:dd:89:ad:2b:
54:b7:c0:8e:1d:49:22:bf:52:88:9b:5a:e6:45:6c:
30:12:76:55:74:5f:f3:e8:63:99:cc:5d:7c:4d:c3:
ec:39:22:b7:b6:1a:90:9b:0d:07:1a:61:c0:d5:d4:
2a:17:ce:9b:56:b3:b4:a2:49:b8:04:59:b4:5e:1a:
61:e5:69:70:e3:ab:5c:ab:6b:4a:2a:36:98:1d:bb:
6c:72:f4:ec:1a:66:5f:16:7f:b5:64:c2:46:f6:f3:
59:eb:37:9b:25:e2:67:4b:18:9d:a7:66:66:2e:40:
c8:82:12:ff:86:aa:74:27:e1:04:6f:83:85:58:0b:
d1:2d:c1:e9:9f:74:5b:ac:8f:d8:e1:00:3d:82:b2:
8c:37:4e:37:ea:d1:9f:e2:c8:5d:5a:18:3b:4a:3a:
3f:0d:cd:fd:f8:ff:36:21:d6:80:e3:01:89:d1:f3:
df:9c:d5:56:c1:55:fb:2a:05:48:c4:20:31:a5:c8:
47:36:52:a7:22:01:a8:e7:49:5d:fa:b3:cd:2e:9d:
9a:48:ba:20:ad:26:4f:3e:02:43:8c:eb:91:7d:8b:
9d:af:bc:04:69:33:dc:89:d6:d3:40:01:85:2b:dd:
fc:ae:79:31:b0:b3:86:75:a1:aa:85:e9:5c:c4:34:
33:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:E6:48:91:5A:3C:BA:EF:B9:65:EA:7C:D1:42:DF:BF:54:AD:88:BC
X509v3 Authority Key Identifier:
keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/KeZIkVo8uu-5Zep80ULfv1StiLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.182.0/23
Signature Algorithm: sha256WithRSAEncryption
50:f5:0f:b3:22:14:b5:5d:e8:5b:dc:fc:b2:cd:bb:27:34:4e:
d9:ff:fa:16:98:1e:8e:2b:f1:ac:4b:54:1c:dd:ec:a6:1b:98:
ec:f4:e0:76:10:bc:53:c5:28:e6:65:4e:58:97:fa:e5:a3:40:
74:30:50:60:22:9e:fa:65:3c:1b:d5:33:5b:3a:e3:74:f9:e1:
cd:75:9c:be:c3:39:cd:63:b7:80:17:09:da:c2:3c:c3:d6:7c:
4c:47:5a:a6:c9:04:7e:7a:3c:68:a2:bf:a2:54:a9:99:3f:6d:
63:30:7c:fe:08:6f:5c:f6:e6:12:07:c0:93:56:18:65:06:fa:
97:e5:5f:16:5e:93:08:10:24:2b:7a:cc:68:61:ab:de:4a:a0:
74:05:bb:2f:b3:8b:72:8d:f8:e4:4b:8c:00:7b:a5:73:4a:a8:
eb:5c:b5:55:6b:97:ca:d4:8f:55:2b:5e:2e:fd:9d:96:48:97:
04:15:af:fc:4d:00:21:e9:5a:e9:50:83:0c:74:be:93:b5:a0:
d7:c9:34:18:75:83:76:b8:2e:ca:99:68:da:74:d6:8e:c6:34:
fd:a9:aa:8c:3a:66:ff:29:cd:c1:e7:9e:ab:50:59:2a:7f:a8:
0f:14:c6:48:d6:32:ab:55:38:cf:5b:e7:34:05:78:d6:50:70:
60:2c:60:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:53 2023 by rpki-client on console-ams.rpki-client.org