Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/KSssOf6pPXO74uj4qw3c-mrr-Jc.roa
File: KSssOf6pPXO74uj4qw3c-mrr-Jc.roa (raw, json)
Hash identifier: xQ/ScOvoMEZv8BTXP/s0vA1a2WMe1lELROy3cDoeUI4=
Subject key identifier: 29:2B:2C:39:FE:A9:3D:73:BB:E2:E8:F8:AB:0D:DC:FA:6A:EB:F8:97
Certificate issuer: /CN=bc1d20936626b55743c6594512de42ef9f8e905f
Certificate serial: 07A4C592
Authority key identifier: BC:1D:20:93:66:26:B5:57:43:C6:59:45:12:DE:42:EF:9F:8E:90:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vB0gk2YmtVdDxllFEt5C75-OkF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/KSssOf6pPXO74uj4qw3c-mrr-Jc.roa
Signing time: Sat 01 Jan 2022 14:00:23 +0000
ROA not before: Sat 01 Jan 2022 14:00:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206610
IP address blocks: 2.56.104.0/22 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128238994 (0x7a4c592)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc1d20936626b55743c6594512de42ef9f8e905f
Validity
Not Before: Jan 1 14:00:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=292b2c39fea93d73bbe2e8f8ab0ddcfa6aebf897
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:0a:13:01:d6:1e:27:6b:0d:5e:30:e1:98:e7:
11:70:10:80:11:96:c3:a9:16:d6:c1:2c:e9:2e:13:
8c:4b:ba:bd:f2:26:71:18:6c:a2:43:22:83:13:fe:
57:68:7d:9f:75:8c:27:00:fb:81:7b:bd:96:68:b9:
83:6b:32:a4:09:df:62:62:b9:53:cd:3c:21:ad:e1:
c1:5c:8e:8b:96:c7:20:ca:bc:0d:3b:1f:ca:80:f8:
0f:56:78:52:c2:5d:25:d0:31:8e:3d:8e:33:01:1e:
af:37:14:34:b8:ae:f9:11:d8:fa:c8:99:fb:02:dd:
19:48:40:13:4b:1a:60:4b:98:60:78:0a:00:64:c3:
29:93:57:7e:ad:64:7d:5c:d5:51:21:97:67:87:8b:
9c:51:8a:b7:ee:ea:ac:3d:6b:b4:cf:0f:22:5c:85:
4e:97:12:cf:da:ea:0f:57:5a:19:22:6c:d4:af:93:
78:68:be:cf:74:51:71:e0:96:b1:53:da:85:9a:4e:
66:2b:3e:d4:50:cb:54:ef:37:e3:af:a0:4f:87:9d:
f6:35:e6:ee:eb:a6:98:55:1a:49:91:ce:b7:4e:a4:
51:65:77:81:2e:cb:01:a0:d8:73:da:71:59:64:7b:
0b:3a:30:07:78:32:30:a6:89:d1:da:75:51:81:62:
f7:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:2B:2C:39:FE:A9:3D:73:BB:E2:E8:F8:AB:0D:DC:FA:6A:EB:F8:97
X509v3 Authority Key Identifier:
keyid:BC:1D:20:93:66:26:B5:57:43:C6:59:45:12:DE:42:EF:9F:8E:90:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vB0gk2YmtVdDxllFEt5C75-OkF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/KSssOf6pPXO74uj4qw3c-mrr-Jc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/vB0gk2YmtVdDxllFEt5C75-OkF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.104.0/22
Signature Algorithm: sha256WithRSAEncryption
07:65:61:53:9d:e2:65:a5:ae:00:57:52:4c:9f:3c:19:7d:f6:
81:ca:58:14:e1:a3:1e:8c:94:d1:90:44:10:91:fb:74:56:31:
1f:c5:54:c4:8f:23:dd:64:ed:d5:1c:1d:6c:43:ca:43:05:30:
8c:63:ac:cb:02:58:76:fe:d7:9b:e4:56:9f:2c:36:bc:df:ad:
f5:cb:11:2e:d7:6a:15:7b:2b:a0:40:27:27:df:70:75:56:fa:
38:42:18:49:2e:1c:5f:6c:3e:6f:3d:a8:35:a0:d8:9a:d8:1a:
75:d7:e9:44:01:32:c1:bb:9e:2e:c3:bf:4b:da:32:f2:0b:a6:
cc:ad:c3:1f:92:a9:8f:14:59:bb:0f:78:85:d8:75:45:f9:d1:
a3:63:a4:58:5e:4c:66:c4:e8:a3:79:06:5c:e7:e0:04:ec:9c:
55:1f:dc:4d:20:92:58:5b:ab:e3:2d:dc:51:a8:cc:90:4c:62:
a9:6a:ea:3d:76:2c:a4:aa:57:e5:53:d1:b0:2b:74:bf:1c:70:
62:3f:10:f9:57:20:40:51:47:df:43:32:c9:58:1f:e5:53:a7:
2b:3f:fb:67:77:ac:64:9f:86:ed:d9:8b:a6:9e:0f:71:4a:ee:
17:4a:f6:50:de:b5:39:8c:eb:7c:35:93:bb:00:2c:17:29:2c:
69:6f:bd:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:40 2023 by rpki-client on console.sobornost.net