Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7029b3-2ca8-4ba1-aa92-e6d472d3a825/1/kQd_3VE_VTz0bVW294RO8Ji0LEY.roa
File: kQd_3VE_VTz0bVW294RO8Ji0LEY.roa (raw, json)
Hash identifier: CfjTuGS291QNWsBEln7joxB0ivUCwWdqLXOBWTSITdo=
Subject key identifier: 91:07:7F:DD:51:3F:55:3C:F4:6D:55:B6:F7:84:4E:F0:98:B4:2C:46
Certificate issuer: /CN=d14f747f42d6f2606f808f8829f43c90dd48ca0b
Certificate serial: 0182A76ADE51C500BBDD9D76E63C19D0F2D4
Authority key identifier: D1:4F:74:7F:42:D6:F2:60:6F:80:8F:88:29:F4:3C:90:DD:48:CA:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0U90f0LW8mBvgI-IKfQ8kN1Iygs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7029b3-2ca8-4ba1-aa92-e6d472d3a825/1/kQd_3VE_VTz0bVW294RO8Ji0LEY.roa
Signing time: Tue 16 Aug 2022 16:09:34 +0000
ROA not before: Tue 16 Aug 2022 16:09:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212609
IP address blocks: 185.238.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a7:6a:de:51:c5:00:bb:dd:9d:76:e6:3c:19:d0:f2:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14f747f42d6f2606f808f8829f43c90dd48ca0b
Validity
Not Before: Aug 16 16:09:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91077fdd513f553cf46d55b6f7844ef098b42c46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e5:83:c5:1b:6d:43:61:75:6d:92:44:89:54:
d0:3e:48:dc:8f:a6:c5:6b:cc:1c:76:2e:3d:ec:ca:
b6:47:fc:5e:89:02:35:c1:bb:a5:b0:58:82:46:0b:
20:37:89:3a:b2:a4:2e:e4:9a:8d:68:8e:d8:4c:75:
23:20:f2:d9:39:f2:5c:d8:5d:25:eb:3e:b4:1f:cb:
28:31:d0:7e:8a:e1:69:06:0d:f1:68:00:ce:ce:52:
0d:3c:12:4a:d6:ef:80:ee:bc:5f:53:b3:b8:d9:40:
a2:e3:81:d1:e6:73:84:59:78:8f:e2:b9:07:31:a6:
f4:b4:ec:a7:a1:01:4b:75:36:a0:fc:4f:53:4e:fe:
2f:ed:62:04:07:c3:f7:66:8e:6e:58:6a:a7:60:f4:
a0:a7:4c:0e:4e:8c:22:b0:51:d3:fd:11:50:4e:d1:
3e:a4:d4:23:43:c7:2f:e4:ee:72:5f:e9:41:b5:e4:
eb:2c:7e:d7:d4:93:33:de:fc:45:1c:03:34:6d:8f:
ef:96:95:43:ff:16:4c:b7:f1:a3:1a:5b:19:d5:ab:
4c:fb:bc:3c:e5:95:04:56:86:44:b4:08:c1:fa:6d:
be:a4:20:c8:48:0f:77:1b:60:ab:85:e9:f6:c7:1e:
c3:55:24:4d:7a:9e:37:ed:da:23:8d:d4:d1:13:97:
5b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:07:7F:DD:51:3F:55:3C:F4:6D:55:B6:F7:84:4E:F0:98:B4:2C:46
X509v3 Authority Key Identifier:
keyid:D1:4F:74:7F:42:D6:F2:60:6F:80:8F:88:29:F4:3C:90:DD:48:CA:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0U90f0LW8mBvgI-IKfQ8kN1Iygs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7029b3-2ca8-4ba1-aa92-e6d472d3a825/1/kQd_3VE_VTz0bVW294RO8Ji0LEY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7029b3-2ca8-4ba1-aa92-e6d472d3a825/1/0U90f0LW8mBvgI-IKfQ8kN1Iygs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.142.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:43:b9:cd:8d:18:22:a3:40:a6:01:d3:98:cf:6a:a6:4f:d6:
12:e4:3e:47:54:54:2f:c4:fa:d2:97:e7:0f:49:ce:d4:79:85:
28:c1:5f:c3:30:f9:cd:bb:6c:b9:a1:fa:77:50:66:15:e3:5c:
11:41:5c:81:9d:55:35:be:79:7d:52:90:5f:93:45:d9:7b:38:
ae:de:90:f6:61:8b:40:5a:ca:5c:00:5d:b4:00:93:c7:ef:3b:
aa:93:1c:77:c6:87:a9:3b:a8:13:6c:42:64:1a:c9:bf:c8:9d:
a3:11:b9:81:4d:a2:e1:9b:69:86:27:64:0d:fc:e5:4d:4a:63:
ac:81:7b:fb:71:72:a8:ff:34:ce:77:36:4a:16:fc:6f:c1:85:
59:0c:fb:56:e3:4c:81:a1:fb:f3:c5:ab:6c:1a:5a:0a:ee:0b:
b6:87:c0:7a:a4:3d:77:ec:6d:1c:5b:f9:d8:22:85:d8:ad:d2:
2d:e2:13:e8:5c:46:18:36:75:77:24:3f:ea:da:39:68:9b:ab:
68:cc:f1:92:98:dc:51:f6:70:cc:b2:07:55:23:b2:ed:f7:55:
e0:75:1c:ac:48:53:a3:da:c7:31:eb:84:de:aa:ea:fd:df:87:
9a:a0:a3:06:30:12:8b:57:d0:31:e2:00:ce:06:fc:ae:2e:e9:
98:d0:32:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:11 2024 by rpki-client on console-ams.rpki-client.org