Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/e5312b-8439-4bb4-86d2-69b432799372/1/KNbqZI-LLXZDWCWe6tiCsJ4mSXk.roa
File: KNbqZI-LLXZDWCWe6tiCsJ4mSXk.roa (raw, json)
Hash identifier: KjMh6hqqSV4Vmf/wWbFCyQQRjmRAmFYsVVMztozP09A=
Subject key identifier: 28:D6:EA:64:8F:8B:2D:76:43:58:25:9E:EA:D8:82:B0:9E:26:49:79
Certificate issuer: /CN=c2fe993d1f310e8173c17ce9278f1e9f8e22e3c2
Certificate serial: 08953913
Authority key identifier: C2:FE:99:3D:1F:31:0E:81:73:C1:7C:E9:27:8F:1E:9F:8E:22:E3:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wv6ZPR8xDoFzwXzpJ48en44i48I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/e5312b-8439-4bb4-86d2-69b432799372/1/KNbqZI-LLXZDWCWe6tiCsJ4mSXk.roa
Signing time: Sat 01 Jan 2022 15:00:34 +0000
ROA not before: Sat 01 Jan 2022 15:00:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29119
IP address blocks: 2.59.92.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143997203 (0x8953913)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2fe993d1f310e8173c17ce9278f1e9f8e22e3c2
Validity
Not Before: Jan 1 15:00:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=28d6ea648f8b2d764358259eead882b09e264979
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:61:22:f5:21:f0:57:c6:b8:66:1c:bd:6e:6d:
7d:67:4f:06:ae:98:c4:a3:28:f9:5c:96:b8:33:98:
26:c5:6f:44:97:db:38:94:0c:04:bd:9a:e0:c6:b3:
fb:35:42:41:9b:d2:ae:8b:ef:a7:5a:52:06:3a:c7:
c2:ad:95:64:61:82:b8:ab:a3:54:0d:09:70:30:e0:
f0:d9:f8:20:b7:28:ae:59:57:63:08:38:11:3c:bf:
70:50:e9:52:15:7a:56:08:5d:51:a2:1e:2d:b5:8f:
6c:d9:ca:a4:a0:16:c8:b3:5e:02:3d:0a:50:0f:86:
bb:3a:33:86:40:b6:0f:52:20:c4:bf:9d:57:01:0e:
1b:66:c3:c9:09:35:b7:90:e4:6d:33:d4:e5:1c:d3:
f5:11:9d:12:48:08:e2:7a:bc:ec:ef:47:ff:9a:fd:
da:05:04:10:bd:7a:a9:91:f6:e3:12:37:3c:e3:56:
da:c6:9e:f7:d4:0e:c1:0f:e9:ac:26:ee:09:24:a9:
d2:f6:3a:52:8b:2b:f7:0c:21:5e:b7:0a:d7:53:88:
80:be:7f:da:41:92:50:73:21:d0:e3:dd:5a:bd:47:
fb:7c:13:9e:31:54:4c:31:d1:60:5c:8c:97:55:46:
8a:fe:f9:33:1e:f1:de:ab:bc:64:e9:c2:f9:90:d4:
24:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:D6:EA:64:8F:8B:2D:76:43:58:25:9E:EA:D8:82:B0:9E:26:49:79
X509v3 Authority Key Identifier:
keyid:C2:FE:99:3D:1F:31:0E:81:73:C1:7C:E9:27:8F:1E:9F:8E:22:E3:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wv6ZPR8xDoFzwXzpJ48en44i48I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e5312b-8439-4bb4-86d2-69b432799372/1/KNbqZI-LLXZDWCWe6tiCsJ4mSXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e5312b-8439-4bb4-86d2-69b432799372/1/wv6ZPR8xDoFzwXzpJ48en44i48I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.92.0/22
Signature Algorithm: sha256WithRSAEncryption
35:47:0b:2b:b6:8e:93:14:27:4a:8b:df:29:af:12:00:f9:28:
7d:16:5a:15:3d:55:ba:0d:30:d5:0d:f3:4e:ce:1f:01:53:4a:
19:2c:17:d9:a1:c0:ee:cb:15:d1:e1:a9:0e:0d:31:29:b3:b6:
d3:dd:f9:0b:37:08:c4:b9:e6:a5:d5:8c:09:34:d8:c0:c3:76:
5a:04:97:e8:3f:8e:97:a9:dc:39:e2:5e:c4:38:9d:91:08:ac:
76:06:a0:cb:4f:eb:83:6f:23:a5:e3:67:58:ed:cc:6e:4e:fe:
69:af:03:79:a4:0f:a5:c3:7c:9a:32:be:4f:3f:c4:a1:25:df:
20:20:35:e3:09:c9:c6:6d:04:40:24:fe:ed:cf:45:75:a9:89:
7c:9a:fd:c4:3f:86:d5:a4:2d:7b:0e:16:41:37:67:ca:4e:17:
a3:c5:ba:84:3a:40:cb:b8:eb:69:d2:ad:31:03:46:78:4e:d2:
38:2f:19:dc:79:32:9b:a5:01:83:15:e7:16:ac:2c:6a:04:47:
60:8c:33:e4:d0:03:00:e6:f9:5b:ba:f0:94:2d:1b:a8:51:61:
72:06:9b:13:72:63:0b:8b:0d:97:59:ef:0e:b8:5c:57:8e:82:
00:a0:72:87:4c:0d:be:92:73:2f:15:a7:6c:c6:09:8c:d7:ae:
12:64:43:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:58 2023 by rpki-client on console.sobornost.net