Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/f1d703-ff9a-44b1-8e65-66ca57f74e0d/1/kfcaL06eQYGAMm74snc8iHZrHZE.roa
File: kfcaL06eQYGAMm74snc8iHZrHZE.roa (raw, json)
Hash identifier: 3YxGN+VvPDulk45hynq6Wj7Kkzdbfjznkfjnn6RV5Pc=
Subject key identifier: 91:F7:1A:2F:4E:9E:41:81:80:32:6E:F8:B2:77:3C:88:76:6B:1D:91
Certificate issuer: /CN=6f4232c19d0a7f7ed769c4715421e6cc18bdb640
Certificate serial: 012381
Authority key identifier: 6F:42:32:C1:9D:0A:7F:7E:D7:69:C4:71:54:21:E6:CC:18:BD:B6:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b0IywZ0Kf37XacRxVCHmzBi9tkA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/f1d703-ff9a-44b1-8e65-66ca57f74e0d/1/kfcaL06eQYGAMm74snc8iHZrHZE.roa
Signing time: Wed 11 May 2022 15:16:02 +0000
ROA not before: Wed 11 May 2022 15:16:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.38.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74625 (0x12381)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f4232c19d0a7f7ed769c4715421e6cc18bdb640
Validity
Not Before: May 11 15:16:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91f71a2f4e9e418180326ef8b2773c88766b1d91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f1:f3:bd:12:c2:e7:52:17:14:2e:7c:88:46:
1b:d0:e5:d5:da:e0:59:12:a3:43:87:a7:29:6c:51:
f9:e6:1c:d7:ad:06:f1:64:a8:b3:13:e4:77:ca:38:
71:c3:ac:c7:35:1c:2a:0c:f0:75:1a:03:c1:09:f3:
0c:ac:25:55:d1:19:be:8b:65:69:ed:97:6d:ae:28:
5f:99:7b:cf:8d:ec:1b:15:8f:ee:ad:4d:e1:38:fb:
31:3f:1a:8e:b3:98:3f:63:4c:ec:2b:94:3a:b3:cd:
27:1f:b3:7c:2d:6b:6d:12:b9:77:c1:c7:40:8f:52:
45:8d:ec:cd:37:51:c5:4e:6c:45:97:f5:e1:c5:cd:
f6:e3:5f:39:b3:39:e3:df:08:f2:90:2b:2e:b2:de:
bd:b9:01:49:aa:4d:7b:56:93:b2:12:18:88:8e:31:
27:5d:c9:40:41:69:b4:48:7e:15:01:ec:6e:be:5d:
b1:95:69:dd:27:8e:64:da:7e:67:bb:a1:87:6f:88:
89:e2:5c:7f:77:59:15:87:bf:13:45:86:8d:46:f8:
b3:39:b0:48:02:40:fc:e4:d1:1e:ef:49:76:82:64:
78:05:e0:82:d4:c7:60:67:c5:3f:c7:98:61:45:8f:
5d:46:77:4e:dd:e6:fd:33:53:7c:ef:aa:c8:20:6e:
0f:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:F7:1A:2F:4E:9E:41:81:80:32:6E:F8:B2:77:3C:88:76:6B:1D:91
X509v3 Authority Key Identifier:
keyid:6F:42:32:C1:9D:0A:7F:7E:D7:69:C4:71:54:21:E6:CC:18:BD:B6:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0IywZ0Kf37XacRxVCHmzBi9tkA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/f1d703-ff9a-44b1-8e65-66ca57f74e0d/1/kfcaL06eQYGAMm74snc8iHZrHZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/f1d703-ff9a-44b1-8e65-66ca57f74e0d/1/b0IywZ0Kf37XacRxVCHmzBi9tkA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.38.134.0/24
Signature Algorithm: sha256WithRSAEncryption
22:7e:0c:13:e2:3e:3b:d6:cd:15:96:33:94:34:f5:e0:e8:59:
5d:f3:12:ab:e7:6e:e0:5a:02:c3:a6:c4:b4:83:91:f1:32:f8:
34:5e:df:c4:cb:6c:5f:bb:52:c7:f5:4f:ed:58:6f:8f:1f:0c:
86:3f:06:10:4c:b3:57:d7:6e:61:8e:a1:18:69:33:05:b6:9c:
f2:a4:18:f1:4b:4f:3d:c8:c8:ee:27:bf:5c:46:04:df:e8:a6:
e5:16:83:42:f6:07:98:71:b7:47:8d:9d:3c:32:8f:4f:4e:f2:
43:87:8c:d2:36:8d:91:84:ce:55:1e:0b:b5:6e:75:ea:57:ea:
6c:c6:7c:80:2b:92:b2:00:e4:32:e3:bf:ea:21:b4:c9:f2:96:
4f:1f:ee:49:17:d0:c7:b0:93:c3:77:d5:db:7e:a3:43:d0:93:
34:98:a0:46:6f:9d:fe:d7:05:6b:a8:82:0f:fd:0c:50:9a:e8:
92:c8:2b:d9:c8:bb:3e:c8:c0:c4:da:5e:52:16:d1:fc:b0:6f:
74:7c:0a:f0:d1:0c:04:e6:73:63:12:f4:05:d3:2e:f8:b7:91:
45:ed:bc:38:d9:c1:f5:f1:c7:bf:43:4c:13:74:45:d3:c9:78:
c8:41:15:71:ef:c1:c0:35:69:d6:2d:e8:a4:fb:7c:a6:f6:f8:
4d:e4:5a:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:15 2024 by rpki-client on console-ams.rpki-client.org