Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/74f5b2-c7e2-4a7e-b6c4-58765f193fec/1/kiZl5HBwDEiCLAAcK0XqK3b-Pag.roa
File: kiZl5HBwDEiCLAAcK0XqK3b-Pag.roa (raw, json)
Hash identifier: lfQPZnoMtzOk2Igat6r1i6BpLZl4EXgR83/cYkkzdfY=
Subject key identifier: 92:26:65:E4:70:70:0C:48:82:2C:00:1C:2B:45:EA:2B:76:FE:3D:A8
Certificate issuer: /CN=12d72718d155ac0e7d327f6384a2e4c95416d760
Certificate serial: 06DBEA69
Authority key identifier: 12:D7:27:18:D1:55:AC:0E:7D:32:7F:63:84:A2:E4:C9:54:16:D7:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EtcnGNFVrA59Mn9jhKLkyVQW12A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/74f5b2-c7e2-4a7e-b6c4-58765f193fec/1/kiZl5HBwDEiCLAAcK0XqK3b-Pag.roa
Signing time: Sat 01 Jan 2022 13:04:38 +0000
ROA not before: Sat 01 Jan 2022 13:04:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51088
IP address blocks: 192.166.96.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115075689 (0x6dbea69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12d72718d155ac0e7d327f6384a2e4c95416d760
Validity
Not Before: Jan 1 13:04:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=922665e470700c48822c001c2b45ea2b76fe3da8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:de:02:9b:98:64:7c:0c:36:27:4d:b6:b9:5a:
95:53:02:20:d6:2c:8f:9a:c1:f1:b5:20:8c:af:55:
fe:41:44:8f:7a:1d:04:65:e7:7a:6c:96:c2:ca:21:
1a:11:d3:e1:56:81:9b:35:10:f4:3c:44:c1:6d:35:
1c:77:65:43:f6:98:c1:4a:f9:7b:be:d2:05:d3:8d:
16:b0:ae:22:99:b2:7d:4b:e8:32:4f:cb:2d:94:75:
aa:16:d3:dd:94:eb:0a:18:41:74:fa:c2:43:40:21:
6b:ad:f4:53:e4:fd:ab:6c:67:2f:56:17:3b:4e:04:
8d:24:3d:55:08:55:15:54:cb:23:e5:30:24:76:15:
64:36:6c:30:c7:de:10:4d:27:e4:f6:48:12:02:a6:
28:79:f4:6c:39:f6:e9:7f:b5:38:b2:4f:a6:6e:ca:
78:28:e5:d5:64:b2:19:f0:bc:4a:32:b5:ea:de:e1:
53:0f:79:1c:95:88:4f:58:04:63:a7:25:3b:73:be:
3c:2f:be:66:30:23:b4:71:27:0b:c4:ae:18:8a:84:
85:a5:2f:c7:07:51:1b:c3:70:99:29:2a:07:60:d1:
3d:07:8a:d5:cd:b0:64:96:33:d3:cd:88:41:2e:56:
5d:c1:a6:cc:c0:5a:8b:99:39:65:66:26:05:96:78:
ba:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:26:65:E4:70:70:0C:48:82:2C:00:1C:2B:45:EA:2B:76:FE:3D:A8
X509v3 Authority Key Identifier:
keyid:12:D7:27:18:D1:55:AC:0E:7D:32:7F:63:84:A2:E4:C9:54:16:D7:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EtcnGNFVrA59Mn9jhKLkyVQW12A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/74f5b2-c7e2-4a7e-b6c4-58765f193fec/1/kiZl5HBwDEiCLAAcK0XqK3b-Pag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/74f5b2-c7e2-4a7e-b6c4-58765f193fec/1/EtcnGNFVrA59Mn9jhKLkyVQW12A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.166.96.0/22
Signature Algorithm: sha256WithRSAEncryption
06:c9:8e:56:48:7e:2e:3b:7d:ec:af:f5:5a:46:47:3a:8a:60:
af:8f:7a:3a:0e:f0:9b:df:61:3f:b0:38:5f:15:34:a3:1b:d8:
9f:d9:c7:82:91:8d:8e:f8:c4:21:48:33:3b:33:6e:6d:af:a7:
ca:ca:17:86:c8:04:dd:83:1e:e1:a4:13:c4:16:d8:48:34:1b:
82:4e:36:13:3a:51:15:1a:9e:1b:f5:fe:45:f6:5c:6c:d8:7f:
3f:ee:94:11:22:81:58:0d:a8:33:5a:e9:54:11:f6:a1:fa:8d:
d8:17:87:72:01:8a:80:e4:8c:58:37:31:a6:a1:9d:d1:b5:98:
8a:0a:02:e8:f2:2c:8d:09:a5:da:14:53:29:c6:35:88:da:42:
35:79:16:e4:f5:29:82:a4:45:11:7e:0f:f6:d4:1a:dc:a6:fb:
ae:17:91:6b:80:50:48:b2:bd:04:31:1c:9f:5d:94:3d:24:cf:
6a:31:5f:b0:9f:07:09:6c:e8:c7:fc:50:e9:ca:30:17:0e:77:
e3:bf:90:50:4f:b5:57:40:23:b9:79:67:22:d0:4b:0f:b3:76:
a0:a2:97:0e:83:83:c2:40:c1:74:90:84:19:93:65:df:5f:ff:
2e:09:d7:0c:4f:7c:f6:6c:2f:ea:1e:fc:ea:14:65:30:85:12:
79:19:cb:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:58 2023 by rpki-client on console.sobornost.net