Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/Kzk2PAz06LqTv9t54qghyq6incQ.roa
File: Kzk2PAz06LqTv9t54qghyq6incQ.roa (raw, json)
Hash identifier: oHnROhBiamcjARTqKZF37K434ACorrejAE74oQaojJQ=
Subject key identifier: 2B:39:36:3C:0C:F4:E8:BA:93:BF:DB:79:E2:A8:21:CA:AE:A2:9D:C4
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 0182491B512ADDC46FEF01599F5235F0D911
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/Kzk2PAz06LqTv9t54qghyq6incQ.roa
Signing time: Fri 29 Jul 2022 08:38:23 +0000
ROA not before: Fri 29 Jul 2022 08:38:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 109.105.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:49:1b:51:2a:dd:c4:6f:ef:01:59:9f:52:35:f0:d9:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Jul 29 08:38:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b39363c0cf4e8ba93bfdb79e2a821caaea29dc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:65:22:1c:a1:d3:81:76:39:b8:9a:9c:d4:44:
d8:e9:5b:0e:93:1c:f2:b6:c8:a4:cb:0e:a7:8f:a6:
64:fd:81:61:0d:55:27:1c:e0:57:ad:69:0c:d2:06:
ad:eb:db:2d:29:72:a7:f4:44:46:95:80:ba:2b:96:
81:58:b1:3e:e2:86:c4:87:7f:8e:9f:c2:15:01:b8:
7e:3a:f9:5d:9e:ec:e4:14:90:ac:f1:51:b4:ee:59:
56:ec:61:f6:1f:c8:b1:59:71:87:40:9c:a4:e8:86:
fe:c4:39:57:b5:48:e1:26:bc:8e:19:a7:26:5c:fa:
44:45:e3:5a:f1:34:44:82:1a:18:30:5c:17:ef:7e:
0c:04:ae:40:75:2f:3c:a6:32:34:7c:a6:ca:d3:22:
53:82:55:a3:d2:30:2e:c3:a7:02:b1:95:38:55:3b:
de:e0:0b:c6:8b:59:66:38:a1:aa:30:7e:64:96:34:
01:f3:26:9e:d0:fc:ba:fc:26:88:83:50:80:59:a5:
85:a7:d0:d7:ba:64:bb:eb:ed:3f:db:a1:2b:37:0b:
fc:47:65:31:3b:c4:48:81:98:7e:5f:81:9a:ee:8e:
70:36:b6:be:08:db:d1:7d:2c:55:cc:88:da:3a:b0:
41:fb:3b:3a:9a:86:8a:ff:b1:8c:a5:00:12:2f:99:
83:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:39:36:3C:0C:F4:E8:BA:93:BF:DB:79:E2:A8:21:CA:AE:A2:9D:C4
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/Kzk2PAz06LqTv9t54qghyq6incQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.105.192.0/24
Signature Algorithm: sha256WithRSAEncryption
39:6c:2b:5c:4b:ba:09:2b:db:fe:62:f0:9b:46:48:fc:18:8a:
b4:3c:c3:21:18:65:7b:2d:d5:2b:45:31:4f:a4:b8:ce:d3:e9:
6e:90:e6:ea:cf:fd:b8:51:88:99:08:62:b5:4f:c0:c6:03:eb:
15:3b:22:87:ff:f8:37:19:b5:51:05:55:a6:fe:e8:1d:9e:e4:
17:9d:09:8b:1b:9e:1e:dd:56:ca:74:95:0e:42:c0:e7:42:cd:
5c:5f:67:9c:80:8e:6e:eb:bc:13:9a:0e:52:d2:ae:94:a4:09:
60:c2:2c:49:d4:dd:cc:09:5f:72:4c:e2:bb:4d:cb:4d:2f:dd:
9a:da:54:bb:09:f1:f0:5c:45:30:fc:c0:ed:78:14:eb:ce:b1:
7a:4d:89:7b:34:cf:4c:96:c6:a9:ff:ff:f8:67:17:de:16:cc:
8c:f6:1e:23:74:05:61:d5:b6:7c:45:74:73:0c:82:0a:45:1b:
54:61:f0:06:90:16:16:a7:85:da:89:be:54:cd:e4:5f:3d:d6:
79:ea:dc:c9:8f:02:22:b4:82:e8:4f:e5:aa:2d:8d:b7:f5:38:
cf:bb:32:6b:23:95:ee:c5:bc:3a:7e:c9:47:20:c9:1c:2d:54:
57:9c:38:67:9b:d5:b1:f5:86:f7:6e:84:a3:f6:5f:46:fc:e3:
ec:30:4f:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:10 2023 by rpki-client on console-ams.rpki-client.org