Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/kzb4jSl1BajY_GKII2yrqam-LLI.roa
File: kzb4jSl1BajY_GKII2yrqam-LLI.roa (raw, json)
Hash identifier: LCJeZhQqnXHaBUTCjcHh2S3Cnqm9tJlT0oW3PhCjbGM=
Subject key identifier: 93:36:F8:8D:29:75:05:A8:D8:FC:62:88:23:6C:AB:A9:A9:BE:2C:B2
Certificate issuer: /CN=f651dc9875e35ec580c571fd0416f4d5f5d4158a
Certificate serial: 01848008FF1078852212E660D7973315B50B
Authority key identifier: F6:51:DC:98:75:E3:5E:C5:80:C5:71:FD:04:16:F4:D5:F5:D4:15:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9lHcmHXjXsWAxXH9BBb01fXUFYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/kzb4jSl1BajY_GKII2yrqam-LLI.roa
Signing time: Wed 16 Nov 2022 10:43:03 +0000
ROA not before: Wed 16 Nov 2022 10:43:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204968
IP address blocks: 193.30.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:80:08:ff:10:78:85:22:12:e6:60:d7:97:33:15:b5:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f651dc9875e35ec580c571fd0416f4d5f5d4158a
Validity
Not Before: Nov 16 10:43:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9336f88d297505a8d8fc6288236caba9a9be2cb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:00:8d:6b:24:e1:38:c2:b6:0c:d1:83:8c:ec:
69:cf:ec:ae:c4:b3:ed:c6:cb:bc:25:6f:f8:0b:d3:
63:d1:07:14:f2:b5:67:a8:6c:18:61:60:77:fd:35:
a6:1e:70:c6:1c:b2:50:51:c8:36:82:36:2f:c1:33:
b1:fd:5e:58:16:4d:ef:8b:62:c5:63:ad:a7:bb:74:
be:6f:c6:5f:3a:db:94:ce:ad:5a:3a:0c:56:e6:f5:
08:22:3e:f4:e5:c6:f7:1f:fd:9f:46:3d:2f:c9:cd:
1f:0a:7f:36:d5:0a:53:e7:20:5c:b2:10:e8:b9:6e:
13:d2:07:b8:d5:03:8b:96:4e:72:49:ed:3c:53:f1:
eb:76:2e:7c:8b:51:23:fc:58:9f:41:81:17:2f:08:
45:64:ed:39:6c:e3:80:4f:e6:0a:f2:c9:89:a2:18:
c2:c3:55:b3:22:72:4c:52:7a:87:ba:2e:86:fd:42:
12:6a:16:aa:61:07:f9:83:97:0a:88:df:ee:5f:f1:
28:70:0f:5e:7a:ef:e0:48:2f:6b:85:8c:2b:5a:1f:
11:7d:01:ae:a6:88:9d:b8:5d:f7:d8:8b:6a:90:78:
90:08:e0:16:7b:3b:ed:7a:04:9c:12:7c:62:8b:20:
d1:4b:10:14:cd:80:56:d1:b1:4a:0e:d5:23:4a:5e:
7f:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:36:F8:8D:29:75:05:A8:D8:FC:62:88:23:6C:AB:A9:A9:BE:2C:B2
X509v3 Authority Key Identifier:
keyid:F6:51:DC:98:75:E3:5E:C5:80:C5:71:FD:04:16:F4:D5:F5:D4:15:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9lHcmHXjXsWAxXH9BBb01fXUFYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/kzb4jSl1BajY_GKII2yrqam-LLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/9lHcmHXjXsWAxXH9BBb01fXUFYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.101.0/24
Signature Algorithm: sha256WithRSAEncryption
41:54:80:9b:c6:30:3b:8e:f8:0e:a3:f5:e7:2e:7a:bb:89:ed:
3a:a3:b9:8b:38:d7:97:62:0f:2d:95:88:e3:f7:c3:7f:bd:54:
53:31:2e:0a:28:50:16:96:81:b8:16:df:a9:54:6b:54:ba:04:
41:fc:ac:3f:ea:3c:de:57:b5:12:30:4d:6b:5f:8d:d8:27:4e:
7f:a4:1f:b6:6f:cf:ae:f5:45:cd:1d:02:20:9c:32:e0:43:68:
46:34:83:69:d6:0a:d3:8c:50:5a:4b:9d:f5:d6:ec:36:07:5e:
11:52:3e:3f:52:d5:69:ad:07:2d:f5:69:ed:f0:81:0b:28:65:
7f:93:b3:62:8c:47:37:ba:c5:13:d9:65:48:49:b4:82:1f:2f:
f2:4e:ea:1b:27:52:f9:34:50:d5:9d:e0:b0:d4:c1:82:19:9b:
8c:1e:52:3a:5d:e5:7b:c5:e4:77:66:da:ce:5c:b7:45:f4:43:
ae:92:52:01:07:6b:99:19:21:12:5a:b0:93:e6:86:6d:c4:c9:
e5:9e:f9:74:8f:ee:24:05:d8:08:2e:49:8d:2c:4f:39:c7:0d:
c6:56:2b:0e:cb:81:a5:56:d5:d8:9a:b6:11:33:b1:49:cc:82:
12:35:c7:2a:44:c8:1a:72:83:7e:05:2d:49:c6:01:f2:86:42:
e7:c9:33:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:23:52 2025 by rpki-client