Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/knzspC_eMVTezvuDQEun5zRPdHM.roa
File: knzspC_eMVTezvuDQEun5zRPdHM.roa (raw, json)
Hash identifier: pFOr67d8cBlRPX0oDU4T/jIHqt7IappHi+aBHYkpPQc=
Subject key identifier: 92:7C:EC:A4:2F:DE:31:54:DE:CE:FB:83:40:4B:A7:E7:34:4F:74:73
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 09921B5F
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/knzspC_eMVTezvuDQEun5zRPdHM.roa
Signing time: Wed 16 Mar 2022 07:33:12 +0000
ROA not before: Wed 16 Mar 2022 07:33:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35758
IP address blocks: 193.107.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160570207 (0x9921b5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Mar 16 07:33:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=927ceca42fde3154decefb83404ba7e7344f7473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1c:db:92:43:4e:16:ac:00:ba:27:a4:f5:8c:
d1:ef:32:4a:61:ac:e7:cd:8f:a9:85:8f:da:19:16:
8d:80:68:fa:ee:a5:17:2d:3f:27:d5:41:3b:a6:f5:
24:87:1f:cb:21:86:96:c3:42:44:e4:36:db:e0:78:
c4:7b:bf:3c:7b:51:5b:c8:1d:01:62:9d:f7:40:5a:
25:9d:65:02:1e:58:6d:e3:21:f6:9b:dc:e6:5e:bc:
6b:07:9b:95:79:1f:8a:54:b3:83:ca:ae:35:83:4a:
24:84:0b:3b:26:2f:02:c8:6c:6c:c4:aa:84:c3:5b:
5c:59:8a:a6:ba:b2:63:fd:ed:f9:93:db:df:fb:9d:
f2:ab:e5:86:9d:f2:e0:9f:d6:16:ce:0b:fc:1a:30:
bc:56:6c:32:41:27:e2:ce:bb:af:e8:43:9d:16:0e:
18:a6:1a:c9:f6:e8:5d:b7:7e:b2:ca:18:84:ac:1c:
14:d1:6e:de:5a:1d:8c:5c:c5:66:80:04:bf:6b:ea:
85:db:e5:e1:57:ac:99:9e:c3:96:fd:b1:57:af:86:
11:da:08:65:0d:1c:82:06:a2:7d:75:7e:1a:40:b8:
eb:aa:3a:74:67:69:db:30:3c:e3:d1:d0:00:fd:9e:
89:10:24:0d:ac:8f:0a:47:1d:45:ca:aa:08:05:fc:
4b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:7C:EC:A4:2F:DE:31:54:DE:CE:FB:83:40:4B:A7:E7:34:4F:74:73
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/knzspC_eMVTezvuDQEun5zRPdHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.107.218.0/24
Signature Algorithm: sha256WithRSAEncryption
28:25:2a:b6:f5:1b:3d:69:a6:ee:fb:dc:b8:8f:90:4e:df:28:
a8:9d:0a:8a:e8:64:09:6c:fa:af:23:f4:7c:a1:69:b7:8c:04:
32:b8:52:9c:4e:51:e1:e1:f8:fc:15:c0:84:ec:04:28:4a:03:
0d:a1:00:32:53:94:e9:a0:db:3d:f5:da:22:5a:6c:e4:eb:b0:
2d:36:5f:80:2e:c6:ad:91:17:e6:f1:88:91:a1:39:bb:db:6b:
4f:fa:80:ec:b7:66:bc:27:57:ca:de:45:9f:03:3e:01:db:b4:
b0:b7:8e:8f:74:9c:f9:b8:48:62:b2:4c:4d:7e:15:3f:51:6e:
3a:c0:04:ce:b2:af:c1:eb:2a:03:aa:20:71:be:40:5b:46:ce:
40:15:4c:1e:d0:c7:7f:1b:58:c3:84:36:63:67:ca:c4:11:1f:
e7:fc:17:07:5f:23:1f:17:8f:19:ac:f4:5a:bc:45:53:8d:6d:
56:99:37:a2:55:21:64:70:54:d3:4d:bc:9c:21:3f:a6:18:50:
ce:0a:05:c9:73:3b:73:46:5d:94:c2:6b:41:6f:22:59:fd:c0:
07:6d:07:a4:8e:35:a5:70:94:52:44:39:64:9f:79:34:f5:5a:
d0:79:bc:13:43:51:da:23:7d:3b:af:d5:e6:f6:53:0d:f6:f3:
ea:86:32:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:03 2023 by rpki-client on console-fra.rpki-client.org