Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/kbap-ve_aOI0JO_jYHpGU8KVAzU.roa
File: kbap-ve_aOI0JO_jYHpGU8KVAzU.roa (raw, json)
Hash identifier: tTxUiEJpewtp6scDbioREdLJAjnF2ATSG52CCQ3G5ZQ=
Subject key identifier: 91:B6:A9:FA:F7:BF:68:E2:34:24:EF:E3:60:7A:46:53:C2:95:03:35
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0188DECF242CE3C0172F964DC71E32EDEB2A
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/kbap-ve_aOI0JO_jYHpGU8KVAzU.roa
Signing time: Wed 21 Jun 2023 16:34:57 +0000
ROA not before: Wed 21 Jun 2023 16:34:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211907
IP address blocks: 2a0c:b641:a40::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:de:cf:24:2c:e3:c0:17:2f:96:4d:c7:1e:32:ed:eb:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jun 21 16:34:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91b6a9faf7bf68e23424efe3607a4653c2950335
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:23:a6:b5:73:68:a7:25:7c:33:a7:f7:9d:bd:
3b:00:bd:f1:8e:b1:ac:c9:3b:b8:6c:f4:05:0d:2f:
7f:57:f1:e9:bd:85:49:52:b9:e7:39:dc:1c:e5:34:
1b:6a:aa:0b:ef:79:de:dc:fc:11:6e:1b:b1:b2:67:
2c:57:7e:20:76:8e:73:00:46:7c:7b:d1:62:6d:b2:
dc:bf:98:cf:36:b7:77:08:b3:14:87:31:57:a4:c8:
83:01:b4:fa:0e:de:bb:87:55:46:69:ea:af:5b:a4:
03:33:d7:93:a2:b6:e0:a0:f1:eb:f7:ec:b6:31:78:
52:59:1e:68:41:54:ee:98:c3:46:8a:93:a3:43:39:
29:f7:06:97:b4:a6:29:b6:b2:7c:07:10:27:0d:76:
e3:92:c7:77:61:46:b4:49:ad:8f:11:83:b9:bf:15:
a5:8c:fc:98:29:b1:af:11:07:fe:34:b1:0e:c0:7e:
b7:fd:8d:fa:32:0a:07:70:8d:73:93:d4:2c:16:e5:
b7:ce:a5:7b:a0:c2:bb:77:bf:e9:54:9b:78:43:91:
c3:2a:ca:95:d3:51:58:27:e4:4d:16:56:79:fd:eb:
52:9e:c4:f0:8f:da:17:aa:fe:b8:8f:2f:61:74:6f:
7c:5b:a2:3c:a1:b1:2f:c6:f9:5f:2b:3b:9f:e3:47:
89:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:B6:A9:FA:F7:BF:68:E2:34:24:EF:E3:60:7A:46:53:C2:95:03:35
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/kbap-ve_aOI0JO_jYHpGU8KVAzU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:a40::/44
Signature Algorithm: sha256WithRSAEncryption
46:f0:8a:81:83:fb:9d:2e:6d:b2:06:e2:bb:a9:43:0b:4f:c8:
1b:de:e9:81:a2:d7:2e:a0:37:35:e8:49:6c:d3:ba:fc:f5:94:
76:fb:c7:06:08:17:3f:07:76:17:00:12:94:e9:51:51:36:ea:
eb:6f:b5:d4:e9:46:53:6e:14:de:f4:67:a6:21:c7:1e:9a:d5:
bb:c8:69:fc:f3:38:c2:33:55:ed:a4:27:8d:4f:0f:c9:4c:e9:
8e:59:65:4b:45:fa:af:a2:1e:7c:25:60:22:63:e2:4a:1a:b3:
52:bb:c8:89:7e:44:5a:69:3d:da:99:81:4b:33:cd:d0:a4:28:
08:a1:09:9d:dc:f7:03:d2:7c:fb:74:66:c0:9a:90:4e:91:9f:
4d:55:b5:08:ba:d6:8d:a7:51:b4:d7:71:1a:e4:89:1e:73:3a:
ce:7d:93:d8:a8:0a:94:ee:b0:53:eb:23:7d:8e:6f:1b:1f:2c:
36:e1:b4:f8:ac:7f:56:cb:62:1c:69:42:5d:91:0f:78:c9:7f:
e1:50:a2:e7:03:7d:fe:e0:91:2a:3e:11:0c:a6:34:4c:91:24:
23:98:83:a7:90:da:e6:bc:8e:ec:1d:17:28:47:05:c1:d5:2f:
a0:f6:12:ea:81:d2:d5:ed:24:11:80:7f:6f:ec:1c:8b:ac:bd:
d3:5c:4f:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:28:00 2025 by rpki-client