Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/7b480b-b28d-419f-9d40-4306dd7a4a57/1/KUn1KeRJkP2Kq3sCw1zv_Wni5h8.roa
File: KUn1KeRJkP2Kq3sCw1zv_Wni5h8.roa (raw, json)
Hash identifier: A/C9vBXlf/h7SqWySCI8EA3ZlTyzlCX3roWLYm5l4fU=
Subject key identifier: 29:49:F5:29:E4:49:90:FD:8A:AB:7B:02:C3:5C:EF:FD:69:E2:E6:1F
Certificate issuer: /CN=b7ae676ffc66234f33db5238798ab979f986c82d
Certificate serial: 054892BE
Authority key identifier: B7:AE:67:6F:FC:66:23:4F:33:DB:52:38:79:8A:B9:79:F9:86:C8:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t65nb_xmI08z21I4eYq5efmGyC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/7b480b-b28d-419f-9d40-4306dd7a4a57/1/KUn1KeRJkP2Kq3sCw1zv_Wni5h8.roa
Signing time: Mon 30 May 2022 12:02:13 +0000
ROA not before: Mon 30 May 2022 12:02:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31214
IP address blocks: 141.98.28.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88642238 (0x54892be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7ae676ffc66234f33db5238798ab979f986c82d
Validity
Not Before: May 30 12:02:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2949f529e44990fd8aab7b02c35ceffd69e2e61f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c7:72:a7:4b:fe:e2:af:df:9c:16:c1:ea:88:
cc:8b:6e:0d:ed:a8:a1:e0:7f:d0:a4:4c:11:bd:a4:
07:b7:9a:17:ea:35:e4:74:3d:94:5f:9b:5e:13:d9:
05:15:a0:eb:1c:7a:90:49:7b:ca:21:74:e7:56:44:
3a:44:d7:c4:d8:32:aa:63:53:70:a4:d2:1c:8d:c9:
ef:d2:cd:a8:84:fb:f7:21:31:bf:35:d0:93:31:9b:
c7:07:8f:33:e1:7e:03:7c:56:94:35:e1:bf:9b:8f:
a5:5d:21:f5:9d:33:35:c8:70:17:9f:f1:da:9f:e4:
66:c4:47:3e:44:06:dc:c6:bf:87:67:3f:8c:d3:88:
6e:b0:12:1f:50:2e:21:95:23:78:82:c2:a6:1a:ce:
24:55:7f:07:4c:cd:f2:0c:7c:11:02:37:18:87:f5:
69:e4:c8:2c:36:03:5b:6a:23:c1:1c:d6:2a:8c:eb:
a8:1e:0f:2a:6f:a5:39:f7:b3:e6:c2:80:82:b5:36:
fd:d6:e5:54:d0:71:82:8b:0b:81:f0:d7:1e:fc:13:
29:05:22:27:1d:dd:bb:fe:72:85:44:5a:b5:97:71:
cc:94:b7:54:af:57:bc:62:1f:26:24:ea:a5:6c:2c:
0c:3d:39:25:25:2f:5e:50:cf:27:5c:ea:93:82:76:
10:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:49:F5:29:E4:49:90:FD:8A:AB:7B:02:C3:5C:EF:FD:69:E2:E6:1F
X509v3 Authority Key Identifier:
keyid:B7:AE:67:6F:FC:66:23:4F:33:DB:52:38:79:8A:B9:79:F9:86:C8:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t65nb_xmI08z21I4eYq5efmGyC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/7b480b-b28d-419f-9d40-4306dd7a4a57/1/KUn1KeRJkP2Kq3sCw1zv_Wni5h8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/7b480b-b28d-419f-9d40-4306dd7a4a57/1/t65nb_xmI08z21I4eYq5efmGyC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.28.0/22
Signature Algorithm: sha256WithRSAEncryption
18:5f:ac:32:54:d1:f2:39:de:52:64:d4:a2:60:6e:a5:1c:2a:
36:ff:7f:2b:ca:ad:48:e5:c8:3c:bd:7e:86:f3:e5:7e:10:f1:
20:45:10:a1:b9:af:1e:84:e9:f2:a1:a1:4b:11:fe:84:58:a8:
a5:65:76:6e:0d:23:8b:fb:89:08:ad:b8:ec:ea:9f:ab:36:66:
8c:21:97:de:b6:65:2d:93:de:5e:cc:4b:69:8d:10:56:bb:a0:
fe:9e:27:41:af:21:94:10:42:04:a2:1f:90:cf:6d:e3:d2:aa:
75:85:92:af:12:e1:4e:d2:e1:7f:db:29:87:eb:c6:9e:e4:47:
4b:5f:99:36:f9:87:5e:62:9a:fc:4b:91:7f:25:66:c8:83:87:
40:5c:c9:9c:cb:8a:97:80:db:69:8c:ff:34:b6:3a:f0:e2:36:
ac:d9:e8:69:60:27:1a:4a:db:ee:b5:3a:29:3c:6e:dc:80:bd:
61:02:c7:85:70:fa:e1:6a:ea:1b:5c:99:77:98:88:c4:0e:11:
cc:0c:5b:55:d7:3a:2c:a7:0b:80:9b:8e:7b:6d:73:bd:c0:89:
bb:fc:c5:d1:bf:a6:9f:e6:6c:1f:48:ca:94:af:03:6b:83:22:
db:a8:8d:35:e9:8e:72:e8:54:13:87:b7:2d:6d:fc:14:0c:bc:
c1:5d:7e:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:24 2024 by rpki-client on console-fra.rpki-client.org