Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/04b23b-9c13-4dd2-bda8-2f22a76996d9/1/k-u2XXs7yoaVK0xxc9PJo2OQ7eY.roa
File: k-u2XXs7yoaVK0xxc9PJo2OQ7eY.roa (raw, json)
Hash identifier: IVqDl0u7pN+D5HzkYlChlcObOOcPr2oa+KXqqYws0Lc=
Subject key identifier: 93:EB:B6:5D:7B:3B:CA:86:95:2B:4C:71:73:D3:C9:A3:63:90:ED:E6
Certificate issuer: /CN=1a0439448b628cd0ba4232ea5dc39a968da9696e
Certificate serial: 0E3208A4
Authority key identifier: 1A:04:39:44:8B:62:8C:D0:BA:42:32:EA:5D:C3:9A:96:8D:A9:69:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GgQ5RItijNC6QjLqXcOalo2paW4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/04b23b-9c13-4dd2-bda8-2f22a76996d9/1/k-u2XXs7yoaVK0xxc9PJo2OQ7eY.roa
Signing time: Sat 01 Jan 2022 10:01:38 +0000
ROA not before: Sat 01 Jan 2022 10:01:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197207
IP address blocks: 185.131.56.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 238160036 (0xe3208a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a0439448b628cd0ba4232ea5dc39a968da9696e
Validity
Not Before: Jan 1 10:01:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93ebb65d7b3bca86952b4c7173d3c9a36390ede6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1a:ba:d8:4f:1e:d7:c7:5f:9c:fa:fb:a7:25:
68:57:1f:a3:f4:49:83:53:c4:f1:11:82:0b:f1:6a:
37:27:ee:fe:3f:ba:7d:3b:a4:df:d0:22:9b:c3:50:
e9:b0:d6:57:44:40:fa:21:4c:b6:c2:60:3e:f9:8f:
ab:dc:4b:7b:69:c8:c1:d4:74:54:b9:0b:2d:a6:d3:
5c:46:e9:7a:eb:d5:67:7a:4b:94:3b:14:52:9b:ad:
b3:b1:c2:c7:29:0d:d8:1b:e5:ab:42:44:e9:a9:cb:
33:30:a4:30:3e:be:de:5a:bf:53:bb:15:61:d9:d0:
7d:9c:76:32:80:d4:8d:b6:0f:7f:aa:59:2b:1d:8d:
cc:fc:1f:81:4e:58:dd:3e:c7:8a:e4:12:a4:71:b7:
e7:c3:c5:0a:dd:89:58:9d:ca:c5:8f:99:4f:48:39:
b5:d3:4f:f8:c4:12:c2:2e:9c:fe:40:3f:19:d5:9a:
de:78:b8:b6:ac:4b:38:f0:13:74:5a:ee:01:98:be:
4c:69:30:5d:42:85:92:37:23:52:96:a2:a0:6a:ee:
e4:f7:47:3d:a9:a2:cc:d7:d0:e9:3e:91:df:70:7f:
9f:61:32:92:2e:58:7e:ff:0e:d5:31:a0:c4:30:f3:
6c:c2:54:d3:a3:96:b2:fd:05:e0:08:e4:0c:44:36:
c7:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:EB:B6:5D:7B:3B:CA:86:95:2B:4C:71:73:D3:C9:A3:63:90:ED:E6
X509v3 Authority Key Identifier:
keyid:1A:04:39:44:8B:62:8C:D0:BA:42:32:EA:5D:C3:9A:96:8D:A9:69:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GgQ5RItijNC6QjLqXcOalo2paW4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/04b23b-9c13-4dd2-bda8-2f22a76996d9/1/k-u2XXs7yoaVK0xxc9PJo2OQ7eY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/04b23b-9c13-4dd2-bda8-2f22a76996d9/1/GgQ5RItijNC6QjLqXcOalo2paW4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.131.56.0/22
Signature Algorithm: sha256WithRSAEncryption
71:29:b6:6c:2f:64:cf:ff:58:44:ee:ae:f8:6c:11:0d:fe:2b:
d4:90:2e:6e:fc:8f:1a:97:86:de:d7:ee:5c:ce:fb:6a:08:63:
27:e9:b4:ac:3e:2d:aa:b5:cc:ae:b3:80:10:4a:3f:b3:1e:cf:
39:8a:e0:34:54:36:73:6b:8d:b7:07:b5:c9:5b:1b:8c:58:c7:
e9:a6:7c:a2:1a:d8:63:d1:3d:a4:08:90:71:05:c1:e8:85:7c:
dd:fb:73:33:8d:a2:99:fa:8e:ae:d5:af:ea:a4:08:66:6b:c7:
1b:54:25:98:69:4d:37:ea:5c:d4:2d:c1:26:f0:7c:07:5a:e5:
47:b6:c0:9b:98:94:35:df:39:b5:92:be:46:fd:63:74:ae:52:
57:20:d4:3d:70:ba:ae:84:79:59:68:47:fc:c4:31:67:22:5a:
b7:61:dd:1a:79:52:e4:45:e2:4b:fd:d4:82:7c:ad:9d:45:b8:
70:1d:d7:13:ca:fd:5b:78:17:b9:d5:36:d7:63:8d:24:1d:8e:
d9:c9:2a:dc:6d:1c:ad:c1:70:b3:e3:5e:5f:72:69:ee:53:4d:
a1:36:c7:88:84:ea:9c:00:08:3b:70:d8:8f:d6:6f:9a:b8:e3:
84:f0:4f:dd:1c:5a:9f:12:46:1b:9f:18:ac:19:28:69:fd:46:
f7:db:9d:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:39 2023 by rpki-client on console.sobornost.net