Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/a4fe8e-4b4d-4ac7-9a92-7a3b31be7b38/1/KSFTQgG0fbGul4tQwa-MVbdym8E.roa
File: KSFTQgG0fbGul4tQwa-MVbdym8E.roa (raw, json)
Hash identifier: 1FfTgOJQ84xpuQLurJo8HlJT4Y5bVjqSD9zDiC/0PTo=
Subject key identifier: 29:21:53:42:01:B4:7D:B1:AE:97:8B:50:C1:AF:8C:55:B7:72:9B:C1
Certificate issuer: /CN=58f267aaac99bf0c9d1e8e429de01ccd3cc90ec0
Certificate serial: 07599972
Authority key identifier: 58:F2:67:AA:AC:99:BF:0C:9D:1E:8E:42:9D:E0:1C:CD:3C:C9:0E:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WPJnqqyZvwydHo5CneAczTzJDsA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/a4fe8e-4b4d-4ac7-9a92-7a3b31be7b38/1/KSFTQgG0fbGul4tQwa-MVbdym8E.roa
Signing time: Wed 29 Jun 2022 15:47:03 +0000
ROA not before: Wed 29 Jun 2022 15:47:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202561
IP address blocks: 94.231.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123312498 (0x7599972)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58f267aaac99bf0c9d1e8e429de01ccd3cc90ec0
Validity
Not Before: Jun 29 15:47:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2921534201b47db1ae978b50c1af8c55b7729bc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f3:3d:0e:89:82:74:01:84:be:34:7d:6f:7a:
66:b5:c3:f3:b2:d2:da:32:ee:4b:47:90:59:eb:f7:
77:13:c1:e7:25:1d:9f:84:43:34:e0:ac:d1:aa:0b:
90:3f:35:8e:e3:35:46:08:47:f3:41:25:92:52:b5:
7a:67:9b:48:69:1e:a5:0d:87:e8:98:fa:73:e6:8e:
38:8e:bf:9a:95:4c:28:39:b4:6b:ce:9d:7c:c9:7f:
94:65:81:2e:f6:c5:8f:dd:08:35:5f:2c:a6:f1:b6:
95:75:c2:d0:06:36:91:c1:b2:39:f9:5d:8a:79:2e:
e9:a8:2e:97:f0:fb:60:c2:a3:5b:a1:93:ec:d9:36:
c3:fb:a2:be:ff:aa:6d:0a:b9:86:a6:ed:06:66:11:
68:23:c9:cd:ea:2a:a6:eb:32:a1:02:53:ee:06:ad:
da:fd:8c:43:4f:05:56:8d:62:0b:dc:27:2c:cf:aa:
ef:70:45:42:3e:32:62:4e:fb:f2:48:01:bb:3b:bc:
25:38:8d:87:d8:d1:33:66:10:d0:e2:1d:de:02:00:
45:0e:fb:32:e5:97:d3:ba:f3:fe:6a:9b:e8:da:65:
2d:59:70:70:c2:0e:ba:11:c0:d8:25:a5:33:5b:d1:
1a:23:b7:a3:a9:d3:cc:54:0f:4f:1e:57:17:79:7b:
7e:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:21:53:42:01:B4:7D:B1:AE:97:8B:50:C1:AF:8C:55:B7:72:9B:C1
X509v3 Authority Key Identifier:
keyid:58:F2:67:AA:AC:99:BF:0C:9D:1E:8E:42:9D:E0:1C:CD:3C:C9:0E:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WPJnqqyZvwydHo5CneAczTzJDsA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a4fe8e-4b4d-4ac7-9a92-7a3b31be7b38/1/KSFTQgG0fbGul4tQwa-MVbdym8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a4fe8e-4b4d-4ac7-9a92-7a3b31be7b38/1/WPJnqqyZvwydHo5CneAczTzJDsA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.231.192.0/24
Signature Algorithm: sha256WithRSAEncryption
84:f8:94:88:c6:69:0a:0f:d3:f9:a8:0a:1d:3f:99:0b:27:0c:
31:77:db:fa:28:86:17:db:26:50:c5:50:46:54:54:94:e7:bb:
77:ab:01:6f:6c:52:ae:88:3f:7a:22:32:27:01:2b:9f:81:46:
62:32:52:34:52:f6:29:9c:60:f6:6d:47:4d:4c:bc:2b:9c:30:
f7:d4:32:bf:8f:07:2a:ba:d0:64:9a:89:00:8c:e2:22:ed:78:
fa:16:8d:cf:de:43:33:96:ac:58:93:60:20:d0:bd:3a:ba:95:
b1:d6:ab:d8:dd:0a:2f:75:5d:5d:81:6d:54:44:45:2c:87:c4:
d8:f4:a5:d3:46:01:5d:8e:ae:81:aa:5f:ea:ff:b2:91:9a:2c:
fa:f3:95:1f:d3:82:28:fd:2a:86:cc:56:19:42:fa:86:ab:98:
9f:bf:16:36:9c:88:97:19:ec:d2:1d:9a:5b:a4:52:8a:12:4d:
85:ae:e4:f9:a3:a9:ad:fc:5c:3b:35:3f:14:fa:15:3b:73:aa:
0a:1d:46:ff:57:a0:50:ab:a6:0d:e3:07:1b:a1:4b:63:0e:5f:
44:f1:77:4d:11:5c:d6:b8:d7:8f:78:e8:b3:74:63:0c:3c:11:
a5:8c:d9:be:22:55:c4:71:5c:c8:b8:74:92:6f:be:f3:9f:e3:
7f:e0:4f:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:48 2023 by rpki-client on console.sobornost.net