Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/70b504-c2d4-4387-9b75-f45b8dbe2f97/1/KWnZk09I4EE7Zy3zWt2RbUycPq4.roa
File: KWnZk09I4EE7Zy3zWt2RbUycPq4.roa (raw, json)
Hash identifier: 6FGr9prDJbtvIvj5EfL4qUgi02FhpOC4DdXYVbhQRd0=
Subject key identifier: 29:69:D9:93:4F:48:E0:41:3B:67:2D:F3:5A:DD:91:6D:4C:9C:3E:AE
Certificate issuer: /CN=d895fa70e3f7df361151d55379d4d9b85dadfd3d
Certificate serial: 06070016
Authority key identifier: D8:95:FA:70:E3:F7:DF:36:11:51:D5:53:79:D4:D9:B8:5D:AD:FD:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2JX6cOP33zYRUdVTedTZuF2t_T0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/70b504-c2d4-4387-9b75-f45b8dbe2f97/1/KWnZk09I4EE7Zy3zWt2RbUycPq4.roa
Signing time: Sat 01 Jan 2022 02:55:19 +0000
ROA not before: Sat 01 Jan 2022 02:55:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 185.1.163.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101122070 (0x6070016)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d895fa70e3f7df361151d55379d4d9b85dadfd3d
Validity
Not Before: Jan 1 02:55:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2969d9934f48e0413b672df35add916d4c9c3eae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e7:6c:01:5d:28:ba:17:1f:f2:07:bc:4a:0d:
f0:70:70:76:9d:a7:11:b4:8e:ce:f1:2a:8f:a1:ee:
f4:4c:e8:4a:93:84:50:a9:3f:e4:03:48:0d:e0:19:
c5:50:c2:ae:b2:64:64:c0:77:1e:7b:57:3d:de:83:
7e:fb:a5:8a:7c:ec:de:fd:2d:06:3e:63:c6:d7:26:
84:c9:32:58:29:a4:43:e3:14:69:68:e8:8e:57:0d:
c3:a0:23:81:22:70:25:b7:1e:af:2f:b1:d4:37:a8:
46:45:ef:27:5e:98:b1:02:4f:53:a8:3d:24:c9:98:
63:2e:ff:2f:0c:0b:42:82:c4:85:7d:e8:cd:22:22:
54:90:66:8c:17:cb:b5:5f:5a:ce:f0:63:f4:06:21:
39:34:f8:a2:f4:f0:d6:86:4e:3f:9c:92:98:48:a6:
0c:90:d6:08:4e:f3:4b:3b:19:79:50:9f:83:c3:8a:
a5:6c:45:a9:09:8e:c9:93:1e:4f:36:c3:76:86:95:
37:83:e7:ab:5b:eb:69:3b:6a:27:00:2b:a8:58:e1:
38:dd:c9:ad:20:93:81:ff:11:b4:35:c3:0d:9a:ae:
5e:c1:54:a5:95:e0:93:22:68:97:b4:c4:a8:29:87:
8c:e8:a2:02:92:c1:b4:dd:86:70:45:c9:6f:44:ee:
67:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:69:D9:93:4F:48:E0:41:3B:67:2D:F3:5A:DD:91:6D:4C:9C:3E:AE
X509v3 Authority Key Identifier:
keyid:D8:95:FA:70:E3:F7:DF:36:11:51:D5:53:79:D4:D9:B8:5D:AD:FD:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2JX6cOP33zYRUdVTedTZuF2t_T0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/70b504-c2d4-4387-9b75-f45b8dbe2f97/1/KWnZk09I4EE7Zy3zWt2RbUycPq4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/70b504-c2d4-4387-9b75-f45b8dbe2f97/1/2JX6cOP33zYRUdVTedTZuF2t_T0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.163.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:18:7f:49:3f:c5:fe:66:a9:2c:f4:fa:65:4b:9b:46:8d:4a:
08:3d:81:42:65:d3:6e:7b:2c:21:34:18:c1:be:03:63:43:d4:
d5:0c:b8:6c:8d:9c:87:3d:9b:64:8f:38:cb:e1:e0:b1:3d:e7:
bb:4e:fc:a1:f4:7d:42:e9:8e:53:f4:ef:b7:0c:eb:e3:5f:23:
a9:01:40:fe:36:d1:55:b3:b3:43:a0:1b:25:bd:0f:0f:b4:80:
1f:3d:2a:a5:15:bf:a3:f4:f9:30:ed:86:7c:32:68:23:41:a6:
e3:43:ea:a1:0d:45:5b:92:9d:75:b9:5a:f1:92:c2:f7:7f:d5:
b2:0c:96:33:9b:af:d3:40:1c:59:26:b9:1e:92:0a:6a:07:ba:
8c:46:e5:42:e4:79:87:1d:be:3e:c4:51:ad:74:1a:81:e4:97:
26:5f:69:d5:e6:2e:69:6d:0c:5b:e1:9d:66:fc:64:ac:b9:36:
3c:0d:b2:93:a9:8b:7c:8c:34:9f:0b:0b:dd:42:1f:d7:61:06:
dc:ff:9b:8e:6c:f4:78:a2:08:3b:f9:2e:81:f6:ca:0e:46:cb:
1b:5a:8e:b2:17:bb:15:e7:64:0b:b9:a1:f9:de:3d:42:8e:c5:
74:57:84:90:cd:84:40:1d:45:d7:c3:20:dd:ae:a2:66:34:dd:
e4:ca:4a:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:34 2023 by rpki-client on console-fra.rpki-client.org