Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/62a3b1-117d-4b17-9662-45eb738cb9c8/1/kzuJWeP6Y5iufqaEeMIvm4FKUKE.roa
File: kzuJWeP6Y5iufqaEeMIvm4FKUKE.roa (raw, json)
Hash identifier: xe/Br34315k1UvTPap+US9hvEacevSbzAm6Ojn53DBo=
Subject key identifier: 93:3B:89:59:E3:FA:63:98:AE:7E:A6:84:78:C2:2F:9B:81:4A:50:A1
Certificate issuer: /CN=06da1c6b1a65f7a3d97f9bd75e7cac3135246fa5
Certificate serial: 1CC28C49
Authority key identifier: 06:DA:1C:6B:1A:65:F7:A3:D9:7F:9B:D7:5E:7C:AC:31:35:24:6F:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Btocaxpl96PZf5vXXnysMTUkb6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/62a3b1-117d-4b17-9662-45eb738cb9c8/1/kzuJWeP6Y5iufqaEeMIvm4FKUKE.roa
Signing time: Wed 02 Feb 2022 15:36:27 +0000
ROA not before: Wed 02 Feb 2022 15:36:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56803
IP address blocks: 185.195.71.0/24 maxlen: 24
2a05:ad00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 482511945 (0x1cc28c49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06da1c6b1a65f7a3d97f9bd75e7cac3135246fa5
Validity
Not Before: Feb 2 15:36:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=933b8959e3fa6398ae7ea68478c22f9b814a50a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f3:93:5c:e9:9d:0c:e2:3a:19:ff:25:a1:2e:
6d:6a:3f:e1:21:1d:70:57:33:0a:46:f6:fb:27:6d:
a7:a7:b5:44:60:e6:13:60:7b:f0:47:b7:66:63:97:
d6:88:d6:67:50:b3:6e:09:4b:8e:1b:95:0c:d3:ba:
af:a8:ca:a0:b0:c5:86:fc:b2:3d:49:03:a1:49:e3:
e5:5e:5c:fa:af:9b:a8:99:87:ee:80:62:dc:e9:bc:
45:c2:24:02:65:b6:c9:05:80:39:18:d9:6a:3f:25:
d0:1d:eb:d4:ba:9f:19:70:23:87:5c:86:10:77:27:
43:77:88:7c:42:2d:c0:d2:b5:40:8c:c6:59:51:2f:
2f:a0:91:89:f8:67:8a:40:dc:d6:07:87:53:c6:e6:
00:f2:fa:65:d0:d6:71:22:70:58:be:9e:f9:f5:d4:
68:bf:de:9c:a5:af:83:96:2b:a4:7a:ff:9c:a3:bb:
b0:00:72:d6:5c:a0:44:66:5e:ef:99:93:75:be:e6:
bc:91:92:5b:48:71:17:5f:ef:25:9a:cb:1a:44:96:
d4:fe:a2:78:78:12:22:4e:04:73:3c:4d:c8:26:f8:
04:d4:30:c6:6f:d3:e9:44:59:2a:d1:ca:9a:6b:cd:
4c:df:c7:6d:72:b6:49:0e:b2:5e:d7:7b:e1:3b:1d:
2b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:3B:89:59:E3:FA:63:98:AE:7E:A6:84:78:C2:2F:9B:81:4A:50:A1
X509v3 Authority Key Identifier:
keyid:06:DA:1C:6B:1A:65:F7:A3:D9:7F:9B:D7:5E:7C:AC:31:35:24:6F:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Btocaxpl96PZf5vXXnysMTUkb6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/62a3b1-117d-4b17-9662-45eb738cb9c8/1/kzuJWeP6Y5iufqaEeMIvm4FKUKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/62a3b1-117d-4b17-9662-45eb738cb9c8/1/Btocaxpl96PZf5vXXnysMTUkb6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.195.71.0/24
IPv6:
2a05:ad00::/29
Signature Algorithm: sha256WithRSAEncryption
40:2b:7b:87:19:13:2f:0f:3f:6f:3e:e0:42:20:92:1e:8c:0f:
f0:72:f6:11:e1:fb:52:39:3b:91:2b:b0:fa:4e:01:90:b2:af:
fa:3f:ed:f6:15:26:f4:64:ed:fb:ad:db:2b:08:2d:e1:c2:b1:
d7:b6:09:4c:64:05:f0:04:c1:f5:ff:b5:be:dd:8f:a7:15:ef:
d9:1d:92:4b:df:0a:7e:a6:24:b1:83:36:2d:b7:8f:cd:05:4e:
8f:ee:8d:98:8c:25:fc:01:00:45:1d:d6:24:63:19:ec:8e:09:
7f:4e:cf:18:8c:74:0c:9e:75:38:31:d7:0a:d4:b2:c7:b9:93:
b7:ac:ea:cb:15:0f:dc:c4:69:ca:dc:25:6f:16:4c:ef:4a:13:
9c:27:a6:68:ec:75:fc:55:e1:a2:d6:5b:0d:95:58:d9:bd:38:
01:17:7f:91:88:76:3b:98:a2:a0:e9:26:4e:ec:ab:93:c3:87:
e0:38:99:ed:82:2b:c2:c5:79:e4:d0:57:f4:bf:1a:e9:86:59:
77:a0:db:eb:e7:5a:28:d9:1e:bd:05:21:5f:8d:58:5d:8f:23:
90:d6:27:5b:42:02:43:0d:19:b1:23:b3:28:33:67:f6:21:78:
3b:72:49:b0:83:83:1f:b9:b8:42:cc:79:04:00:50:47:7e:d8:
73:c4:09:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:47 2023 by rpki-client on console-fra.rpki-client.org