Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/e5d5eb-ada0-4d5c-8664-f2b22c69d5fc/1/Ks_7F7LeawCP1zBqmw_zDhUdCjg.roa
File: Ks_7F7LeawCP1zBqmw_zDhUdCjg.roa (raw, json)
Hash identifier: T5hzotS6oPF4cAcSZsb/E3GFEvSg/oC8JKDTdYpnBtk=
Subject key identifier: 2A:CF:FB:17:B2:DE:6B:00:8F:D7:30:6A:9B:0F:F3:0E:15:1D:0A:38
Certificate issuer: /CN=14d94a6b30920d1f7a2d15171b508f92266476e3
Certificate serial: 0D045C98
Authority key identifier: 14:D9:4A:6B:30:92:0D:1F:7A:2D:15:17:1B:50:8F:92:26:64:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FNlKazCSDR96LRUXG1CPkiZkduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/e5d5eb-ada0-4d5c-8664-f2b22c69d5fc/1/Ks_7F7LeawCP1zBqmw_zDhUdCjg.roa
Signing time: Sat 01 Jan 2022 14:54:48 +0000
ROA not before: Sat 01 Jan 2022 14:54:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1103
IP address blocks: 136.231.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 218389656 (0xd045c98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14d94a6b30920d1f7a2d15171b508f92266476e3
Validity
Not Before: Jan 1 14:54:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2acffb17b2de6b008fd7306a9b0ff30e151d0a38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:97:91:80:2a:7a:14:76:69:60:9e:2d:2a:67:
2f:9c:90:c7:68:16:c1:40:b7:1d:0a:d0:39:7b:6d:
b8:7d:0d:c9:73:cf:e4:12:4c:c2:32:bc:99:18:bc:
53:4c:6f:f6:f1:7a:49:83:3d:95:c9:dc:c3:3e:6e:
f6:4f:0b:0f:8a:9c:12:eb:a0:b9:dd:73:10:fb:66:
89:f9:2c:93:73:e5:4a:b2:f2:b7:8d:f6:43:83:be:
65:8c:7a:11:ce:f2:20:3c:16:00:67:2b:7b:2a:df:
47:7b:bb:f7:c9:0e:69:60:bb:a0:07:05:b0:ab:85:
02:cf:77:cb:84:46:cc:ae:04:ed:d0:aa:67:de:c7:
7a:02:8a:61:f1:f2:72:a5:34:45:5f:66:2b:7b:29:
6a:fe:3e:07:a9:1d:9a:02:f8:6f:c9:fa:60:f1:e9:
97:ae:4e:21:5e:ad:dd:dc:92:c1:2e:9d:35:c9:27:
56:8d:17:30:0a:17:f8:30:52:21:60:d4:6a:98:c7:
6f:22:42:51:f8:a4:72:55:d0:39:52:0d:05:25:1c:
b5:1e:ba:27:90:b0:7a:65:73:1f:17:42:a0:8e:47:
62:d3:a3:de:85:ce:d3:5d:7f:bf:7e:8e:b9:21:9e:
0d:d9:aa:3b:8c:a4:62:a6:b9:bd:04:18:76:75:7f:
9f:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:CF:FB:17:B2:DE:6B:00:8F:D7:30:6A:9B:0F:F3:0E:15:1D:0A:38
X509v3 Authority Key Identifier:
keyid:14:D9:4A:6B:30:92:0D:1F:7A:2D:15:17:1B:50:8F:92:26:64:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FNlKazCSDR96LRUXG1CPkiZkduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e5d5eb-ada0-4d5c-8664-f2b22c69d5fc/1/Ks_7F7LeawCP1zBqmw_zDhUdCjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e5d5eb-ada0-4d5c-8664-f2b22c69d5fc/1/FNlKazCSDR96LRUXG1CPkiZkduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
136.231.0.0/16
Signature Algorithm: sha256WithRSAEncryption
40:39:2d:f6:79:90:ad:6e:59:84:a9:ec:fd:ba:1c:bf:c2:b7:
a0:cf:2b:1b:97:83:3e:fe:18:77:19:f3:60:53:73:4e:4e:a9:
20:b0:cf:d3:5d:8b:82:c6:e4:6e:e5:eb:3e:58:f5:b7:91:80:
68:44:70:e2:bd:9e:e3:84:79:22:c7:0c:82:ff:1f:6c:e0:73:
dc:f9:0e:08:c4:b1:32:69:d6:fb:24:dd:f8:0f:48:cc:5f:8c:
e3:bb:19:34:c6:73:bb:be:05:18:95:6a:0f:c2:34:b9:11:90:
3d:79:7c:33:3c:95:9e:c8:09:f0:f6:f4:39:aa:76:6c:2d:91:
1e:17:14:00:45:55:fd:c0:78:c1:31:d1:06:62:c3:bd:d4:d0:
96:c4:a1:94:7e:97:c1:ef:f2:b0:46:0b:e6:22:e0:0c:ea:8f:
f7:1f:a7:4c:4c:d7:6c:6c:10:2d:83:48:cc:69:2b:e5:dd:1a:
c9:93:2b:93:af:00:1f:6f:76:47:92:56:ff:57:df:8c:39:74:
6b:2f:c0:d8:cb:dc:de:4a:4f:1b:5b:9a:b8:66:76:7b:61:78:
bd:f3:39:e3:51:1a:c2:33:7f:66:04:bf:bc:fa:5c:db:83:af:
9e:88:c5:1a:2f:7f:6a:c6:13:7f:b4:3c:14:a5:4a:57:8c:c2:
4e:60:8d:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:42 2024 by rpki-client on console-ams.rpki-client.org