Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/a6304b-6c59-4f5f-b646-5f0d91f4f908/1/kkOuPSktFl-wv9ApitkEuRnUj78.roa
File: kkOuPSktFl-wv9ApitkEuRnUj78.roa (raw, json)
Hash identifier: 2VfMo7DY8ydU2OSAlukVewBEoLymfxpSTQqkw3C6hfQ=
Subject key identifier: 92:43:AE:3D:29:2D:16:5F:B0:BF:D0:29:8A:D9:04:B9:19:D4:8F:BF
Certificate issuer: /CN=73cbc147eadd81548151f3510e2de09d868ac6cc
Certificate serial: 0670192B
Authority key identifier: 73:CB:C1:47:EA:DD:81:54:81:51:F3:51:0E:2D:E0:9D:86:8A:C6:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8vBR-rdgVSBUfNRDi3gnYaKxsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/a6304b-6c59-4f5f-b646-5f0d91f4f908/1/kkOuPSktFl-wv9ApitkEuRnUj78.roa
Signing time: Sat 01 Jan 2022 04:59:02 +0000
ROA not before: Sat 01 Jan 2022 04:59:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200375
IP address blocks: 193.178.124.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108009771 (0x670192b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73cbc147eadd81548151f3510e2de09d868ac6cc
Validity
Not Before: Jan 1 04:59:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9243ae3d292d165fb0bfd0298ad904b919d48fbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:c3:6f:cd:49:15:f9:05:75:94:dc:b7:82:a0:
c1:98:f5:c0:75:d0:1d:be:97:1f:4c:3a:64:80:09:
50:2b:87:2e:01:a3:d0:6f:72:b8:fc:84:6e:ba:f3:
e0:75:0e:78:e1:73:fc:47:62:04:d5:1c:1c:b8:0e:
b8:e2:cf:b5:13:9b:d7:d1:e3:b9:89:b5:32:bc:55:
4c:55:1a:45:d8:94:a0:02:47:c6:2d:da:a6:fc:82:
62:6e:e1:77:3c:0e:a7:20:32:57:b8:4e:6d:5e:dd:
41:69:9b:26:db:1d:70:4e:28:78:d8:07:1d:2e:00:
75:a8:89:96:25:d9:01:d4:8a:e3:4d:3e:dd:ed:05:
fa:7d:fd:4c:3a:a0:9c:f0:19:14:c0:99:a7:25:db:
92:2a:32:81:2d:de:7f:e6:3d:fe:9c:52:fd:ac:ce:
9e:10:98:2f:c5:26:50:7c:40:c0:53:3b:18:e3:3c:
f1:7f:21:bc:ae:65:99:48:a0:3b:1d:0b:a8:11:de:
3a:38:93:ce:2b:e3:8f:a3:94:d2:65:4a:aa:30:79:
77:2d:1e:49:3e:5d:b4:1f:14:0c:8e:0b:34:76:7f:
31:f7:6e:d7:c1:cd:84:02:3c:da:13:a4:c3:83:9a:
94:1e:3d:33:7b:40:d5:ef:10:8f:83:81:5f:7c:df:
a4:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:43:AE:3D:29:2D:16:5F:B0:BF:D0:29:8A:D9:04:B9:19:D4:8F:BF
X509v3 Authority Key Identifier:
keyid:73:CB:C1:47:EA:DD:81:54:81:51:F3:51:0E:2D:E0:9D:86:8A:C6:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8vBR-rdgVSBUfNRDi3gnYaKxsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a6304b-6c59-4f5f-b646-5f0d91f4f908/1/kkOuPSktFl-wv9ApitkEuRnUj78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a6304b-6c59-4f5f-b646-5f0d91f4f908/1/c8vBR-rdgVSBUfNRDi3gnYaKxsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.124.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:79:a9:41:bf:20:e4:60:92:10:74:99:0b:f0:8e:ad:19:cf:
de:7a:15:ac:61:6f:94:63:df:00:3e:2d:ad:61:1d:20:ad:9e:
c3:76:f8:99:4b:90:25:f8:53:72:eb:d2:11:29:c1:00:40:f6:
c1:7c:02:5e:f4:17:7f:00:d2:93:cb:58:5b:14:7a:dc:62:a8:
91:6c:6d:74:3c:f3:4f:10:d6:c4:48:d7:ab:07:16:15:87:a6:
49:b0:a2:46:71:42:ce:e2:33:41:0c:ba:32:45:3b:6f:d7:7c:
9f:bd:16:a8:94:1e:e6:45:a5:49:7d:bd:18:6b:4b:56:cc:3d:
c5:91:c6:71:99:aa:c2:86:34:d6:57:58:0b:74:a9:fc:1e:1f:
1d:fe:ad:21:06:fa:36:b1:44:0b:69:1c:44:fe:de:73:ed:93:
11:8c:8c:2f:43:87:b4:6e:b5:5f:3a:81:59:ef:03:77:04:2d:
62:f0:61:9d:84:95:22:bb:1c:15:50:60:0f:c7:10:46:18:0c:
a2:8f:d0:76:29:d0:d2:41:9c:e3:3c:f0:a1:91:16:bb:27:16:
c5:d9:63:34:6f:99:01:7a:c4:11:65:82:b9:a2:cd:71:cd:7a:
80:77:d4:d8:45:67:3b:c8:43:20:f3:da:e1:c2:76:3d:d0:b6:
ee:6c:7b:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:07:05 2025 by rpki-client