Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/8025f6-5f38-4ddf-917d-114c2400c3e3/1/Kx7eWOB9QTcVpqvFTLfUP6B0tHY.roa
File: Kx7eWOB9QTcVpqvFTLfUP6B0tHY.roa (raw, json)
Hash identifier: C7CDgokMMvFAETfTTU1WXQlldgIF7yI6lQzXbn4Mems=
Subject key identifier: 2B:1E:DE:58:E0:7D:41:37:15:A6:AB:C5:4C:B7:D4:3F:A0:74:B4:76
Certificate issuer: /CN=11d47912efd409a46f7cd42741804c7d4f5e1ad5
Certificate serial: 1068ECDA
Authority key identifier: 11:D4:79:12:EF:D4:09:A4:6F:7C:D4:27:41:80:4C:7D:4F:5E:1A:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EdR5Eu_UCaRvfNQnQYBMfU9eGtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/8025f6-5f38-4ddf-917d-114c2400c3e3/1/Kx7eWOB9QTcVpqvFTLfUP6B0tHY.roa
Signing time: Sat 01 Jan 2022 11:03:39 +0000
ROA not before: Sat 01 Jan 2022 11:03:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 192.109.134.0/24 maxlen: 24
129.70.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 275311834 (0x1068ecda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11d47912efd409a46f7cd42741804c7d4f5e1ad5
Validity
Not Before: Jan 1 11:03:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b1ede58e07d413715a6abc54cb7d43fa074b476
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8c:46:a9:eb:93:d5:b8:f6:e0:42:bf:af:1e:
b3:24:a5:1d:08:e2:84:99:dc:61:89:93:aa:8c:08:
3c:bd:5d:0f:c0:d8:cf:a7:bd:27:37:84:91:57:6e:
07:d6:dd:ac:5d:d3:02:40:ee:8a:ff:e6:b8:b5:2d:
33:c4:a2:d0:91:f3:ab:92:92:f9:39:f0:7e:61:d3:
86:ca:ac:90:25:d6:e7:06:12:0c:b2:fd:e7:eb:c1:
b3:83:65:e6:18:37:9d:c0:ed:76:36:aa:e1:55:70:
db:22:7e:30:b5:79:af:ed:b0:d7:5e:55:34:9c:cc:
3f:55:14:5e:eb:c1:4e:0b:ab:10:b9:71:49:13:f2:
f4:a3:38:ff:fc:5a:6c:1d:87:45:b4:c8:9a:e2:df:
c1:c8:ae:04:4f:e2:8b:77:f2:24:95:34:d1:39:96:
4b:d5:5d:52:e3:b9:cb:7a:c3:f2:28:68:aa:b2:c2:
9e:9e:23:cb:97:ae:66:02:0b:db:40:09:8b:3a:49:
58:38:29:59:73:fe:45:ad:e7:cb:e8:c2:7f:12:28:
a6:2e:68:67:4e:6d:49:fa:76:ea:f4:31:f7:c8:af:
96:b7:f4:80:d4:ea:6c:a6:c0:9c:03:26:c6:18:e3:
1f:74:ea:2e:2f:af:e9:26:39:ec:bd:b8:a1:ea:33:
ad:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:1E:DE:58:E0:7D:41:37:15:A6:AB:C5:4C:B7:D4:3F:A0:74:B4:76
X509v3 Authority Key Identifier:
keyid:11:D4:79:12:EF:D4:09:A4:6F:7C:D4:27:41:80:4C:7D:4F:5E:1A:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EdR5Eu_UCaRvfNQnQYBMfU9eGtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/8025f6-5f38-4ddf-917d-114c2400c3e3/1/Kx7eWOB9QTcVpqvFTLfUP6B0tHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/8025f6-5f38-4ddf-917d-114c2400c3e3/1/EdR5Eu_UCaRvfNQnQYBMfU9eGtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
129.70.0.0/16
192.109.134.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:f6:b9:30:76:e8:f4:84:55:93:ea:04:a7:92:b1:38:4a:98:
e1:95:41:76:55:4a:f7:5d:5f:b8:9a:14:62:e5:34:38:2a:d2:
8d:a2:a7:25:16:3b:39:71:73:f1:49:fd:d7:22:c4:48:12:a8:
d0:16:f5:02:96:60:8d:60:4b:3a:d9:1f:f4:f5:f1:0a:d4:66:
97:96:9d:ba:52:d2:a1:36:5e:6e:57:c3:11:52:e2:bc:0d:64:
fa:92:0a:1a:69:2f:80:dd:fb:1c:25:74:4b:f8:c6:27:b8:11:
5f:ec:39:18:35:8b:5b:0e:cb:17:2a:7d:4b:86:0d:d3:57:7e:
35:c1:00:dd:a4:ef:4c:cf:f1:33:b3:e7:bb:da:2b:d1:76:38:
44:d1:d5:45:32:08:9c:be:be:c6:4c:03:d2:77:ac:ae:5f:a2:
de:bf:dc:23:1e:fb:6f:17:6f:10:c8:e9:2e:7a:63:99:23:dc:
99:1a:38:69:e6:d4:06:ea:16:f1:19:17:07:98:0b:94:2a:b4:
2b:f5:5a:38:69:d3:9a:d4:17:7b:2a:51:2e:a5:61:2e:94:23:
c3:5f:f6:33:89:84:5c:f4:fe:5a:3c:44:94:39:39:99:e5:ed:
15:f7:a1:90:52:79:a4:ee:b8:18:95:00:fe:49:47:74:d8:da:
a4:a5:e3:2e
-----BEGIN CERTIFICATE-----
MIIE9DCCA9ygAwIBAgIEEGjs2jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
MWQ0NzkxMmVmZDQwOWE0NmY3Y2Q0Mjc0MTgwNGM3ZDRmNWUxYWQ1MB4XDTIyMDEw
MTExMDMzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmIxZWRlNThlMDdk
NDEzNzE1YTZhYmM1NGNiN2Q0M2ZhMDc0YjQ3NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALyMRqnrk9W49uBCv68esySlHQjihJncYYmTqowIPL1dD8DY
z6e9JzeEkVduB9bdrF3TAkDuiv/muLUtM8Si0JHzq5KS+TnwfmHThsqskCXW5wYS
DLL95+vBs4Nl5hg3ncDtdjaq4VVw2yJ+MLV5r+2w115VNJzMP1UUXuvBTgurELlx
SRPy9KM4//xabB2HRbTImuLfwciuBE/ii3fyJJU00TmWS9VdUuO5y3rD8ihoqrLC
np4jy5euZgIL20AJizpJWDgpWXP+Ra3ny+jCfxIopi5oZ05tSfp26vQx98ivlrf0
gNTqbKbAnAMmxhjjH3TqLi+v6SY57L24oeozrdcCAwEAAaOCAg4wggIKMB0GA1Ud
DgQWBBQrHt5Y4H1BNxWmq8VMt9Q/oHS0djAfBgNVHSMEGDAWgBQR1HkS79QJpG98
1CdBgEx9T14a1TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0VkUjVFdV9VQ2FSdmZOUW5RWUJNZlU5ZUd0VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDIvODAyNWY2LTVmMzgtNGRkZi05MTdkLTExNGMyNDAwYzNlMy8x
L0t4N2VXT0I5UVRjVnBxdkZUTGZVUDZCMHRIWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDIv
ODAyNWY2LTVmMzgtNGRkZi05MTdkLTExNGMyNDAwYzNlMy8xL0VkUjVFdV9VQ2FS
dmZOUW5RWUJNZlU5ZUd0VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAk
BggrBgEFBQcBBwEB/wQVMBMwEQQCAAEwCwMDAIFGAwQAwG2GMA0GCSqGSIb3DQEB
CwUAA4IBAQBs9rkwduj0hFWT6gSnkrE4SpjhlUF2VUr3XV+4mhRi5TQ4KtKNoqcl
Fjs5cXPxSf3XIsRIEqjQFvUClmCNYEs62R/09fEK1GaXlp26UtKhNl5uV8MRUuK8
DWT6kgoaaS+A3fscJXRL+MYnuBFf7DkYNYtbDssXKn1Lhg3TV341wQDdpO9Mz/Ez
s+e72ivRdjhE0dVFMgicvr7GTAPSd6yuX6Lev9wjHvtvF28QyOkuemOZI9yZGjhp
5tQG6hbxGRcHmAuUKrQr9Vo4adOa1Bd7KlEupWEulCPDX/YziYRc9P5aPESUOTmZ
5e0V96GQUnmk7rgYlQD+SUd02NqkpeMu
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:02 2024 by rpki-client on console-fra.rpki-client.org