Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/768f14-a721-46f0-9199-4f4b994e0eb2/1/ktj0_P7o1xAQW_6N7SxoGaQeLWs.roa
File: ktj0_P7o1xAQW_6N7SxoGaQeLWs.roa (raw, json)
Hash identifier: JbmW/1rykspsl0Jp05NxFtLney33m4uYYpfD9FbKgE8=
Subject key identifier: 92:D8:F4:FC:FE:E8:D7:10:10:5B:FE:8D:ED:2C:68:19:A4:1E:2D:6B
Certificate issuer: /CN=4beccc9d1a76e91469cb63b12bf725d7debafb1b
Certificate serial: 0181F20A9A717105248AAE0AF28F5B23AFDD
Authority key identifier: 4B:EC:CC:9D:1A:76:E9:14:69:CB:63:B1:2B:F7:25:D7:DE:BA:FB:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S-zMnRp26RRpy2OxK_cl1966-xs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/768f14-a721-46f0-9199-4f4b994e0eb2/1/ktj0_P7o1xAQW_6N7SxoGaQeLWs.roa
Signing time: Tue 12 Jul 2022 10:53:09 +0000
ROA not before: Tue 12 Jul 2022 10:53:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13097
IP address blocks: 185.208.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f2:0a:9a:71:71:05:24:8a:ae:0a:f2:8f:5b:23:af:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4beccc9d1a76e91469cb63b12bf725d7debafb1b
Validity
Not Before: Jul 12 10:53:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=92d8f4fcfee8d710105bfe8ded2c6819a41e2d6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:75:a9:03:ac:f8:a6:71:01:63:d6:b3:43:db:
85:3f:bd:e9:8d:e2:3a:3b:9c:84:13:43:37:29:73:
61:e6:2a:69:8b:37:bc:a3:82:4f:fc:36:5c:67:38:
dd:b6:58:d9:6d:14:76:06:4c:9a:83:62:80:0b:df:
13:c6:fd:02:8b:27:43:20:08:af:8e:23:db:61:b8:
d3:7f:0c:67:6c:e2:0a:66:e6:62:69:de:cd:5b:49:
31:1d:46:e6:d5:fc:cf:df:18:48:da:9f:b5:f1:5a:
5d:51:ad:bc:06:f2:1f:01:7c:5d:68:78:72:b1:8f:
d3:8b:45:8d:5c:7d:0a:b1:c3:0e:c7:60:40:e8:2b:
b3:ab:5c:ae:0f:8a:73:c1:86:90:f4:31:3f:ef:92:
e0:69:c7:bb:88:90:dc:46:c9:ae:c8:1c:f6:25:5e:
82:ed:c6:61:f9:78:8e:3a:9a:ff:0b:4c:5d:74:58:
58:14:98:2f:fa:2f:1f:3b:b2:65:c6:cb:b6:c2:90:
4d:06:a7:80:55:56:83:f3:0d:30:f7:59:08:b7:15:
b1:e4:18:08:84:5d:69:a5:36:0a:2a:91:8f:a4:e9:
81:5a:46:c6:73:d5:9e:97:89:c5:e2:cd:e6:47:a0:
3a:9b:68:22:ac:45:f1:70:c5:36:20:63:63:01:e5:
6d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:D8:F4:FC:FE:E8:D7:10:10:5B:FE:8D:ED:2C:68:19:A4:1E:2D:6B
X509v3 Authority Key Identifier:
keyid:4B:EC:CC:9D:1A:76:E9:14:69:CB:63:B1:2B:F7:25:D7:DE:BA:FB:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S-zMnRp26RRpy2OxK_cl1966-xs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/768f14-a721-46f0-9199-4f4b994e0eb2/1/ktj0_P7o1xAQW_6N7SxoGaQeLWs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/768f14-a721-46f0-9199-4f4b994e0eb2/1/S-zMnRp26RRpy2OxK_cl1966-xs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.208.138.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:76:5d:7b:2d:5d:78:f7:f8:0d:59:51:7c:c7:b2:11:4c:d4:
fb:ab:fc:df:7f:95:e8:be:a7:ab:b9:40:d5:de:c2:32:73:41:
a3:07:44:10:28:73:3f:ef:a8:ea:64:d4:a5:b5:74:89:c8:ef:
ca:7a:e1:0c:26:7a:67:95:6b:b0:3b:c2:c2:15:32:e4:7c:46:
40:75:ad:3c:a6:b4:3f:3e:d4:b4:75:ca:58:79:51:a5:39:64:
e3:eb:29:d4:7b:ed:4e:9b:8b:a9:46:6c:60:eb:51:f7:bb:e7:
69:cc:dc:0d:2f:c8:70:e5:f2:15:76:a5:f6:a9:e4:35:45:0c:
69:4f:d3:18:6a:1c:9f:24:d1:f7:e9:87:bf:f0:58:eb:e9:73:
7a:30:b7:1c:5b:0b:d0:ca:37:e0:2f:7c:fe:75:ff:4d:24:c1:
d0:b7:fa:59:16:5d:7d:9d:8e:2b:1d:09:6a:bb:a9:a3:e3:de:
eb:cd:50:c8:d4:a2:2f:a0:87:81:55:9e:4d:04:26:48:6a:a0:
51:3b:b1:a5:b3:31:a6:45:4b:37:c3:58:4f:13:07:9b:71:19:
77:cb:50:02:72:75:07:55:45:30:6e:bf:cd:4c:ac:79:b4:4e:
d9:e6:fc:b3:8d:43:7d:c2:41:fb:2e:b0:21:64:a9:05:82:b6:
76:8c:f6:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:38 2024 by rpki-client on console-fra.rpki-client.org