Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/6d5e29-af6e-4c8c-b0ad-516e0b30eb10/1/IZ48AMBtmp4GVZR2yGscqBZk6Ks.roa
File: IZ48AMBtmp4GVZR2yGscqBZk6Ks.roa (raw, json)
Hash identifier: C331JdLLA67c8q8CDRy85OlOTSekH1EqifNwux+chYg=
Subject key identifier: 21:9E:3C:00:C0:6D:9A:9E:06:55:94:76:C8:6B:1C:A8:16:64:E8:AB
Certificate issuer: /CN=927af7d407f045dbea80773265b04ce574d0b7e3
Certificate serial: 0183C5FD0328CE06532431B2956ADB542C81
Authority key identifier: 92:7A:F7:D4:07:F0:45:DB:EA:80:77:32:65:B0:4C:E5:74:D0:B7:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/knr31AfwRdvqgHcyZbBM5XTQt-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/6d5e29-af6e-4c8c-b0ad-516e0b30eb10/1/IZ48AMBtmp4GVZR2yGscqBZk6Ks.roa
Signing time: Tue 11 Oct 2022 07:40:36 +0000
ROA not before: Tue 11 Oct 2022 07:40:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1103
IP address blocks: 192.104.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c5:fd:03:28:ce:06:53:24:31:b2:95:6a:db:54:2c:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=927af7d407f045dbea80773265b04ce574d0b7e3
Validity
Not Before: Oct 11 07:40:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=219e3c00c06d9a9e06559476c86b1ca81664e8ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c0:fc:7d:ff:5f:bb:91:c0:16:50:3b:e2:65:
4b:c1:d1:77:6b:b2:76:a2:36:cf:68:f2:89:e1:bd:
e5:0c:e2:76:c5:2e:c5:70:45:b4:6e:09:a4:2f:dd:
8c:b8:09:c3:66:20:44:bb:c6:1a:a6:d2:10:dc:19:
a3:17:62:53:db:e4:cd:fc:90:00:e6:25:f3:46:7b:
f1:a4:96:96:26:71:05:fe:b7:02:e1:5d:37:56:0a:
4a:6d:99:c5:0a:80:19:85:f1:a8:e4:41:cc:51:6d:
22:0a:f8:39:c3:45:ea:38:36:1a:34:72:07:7b:dd:
4d:b5:a0:cd:51:86:81:7e:bd:c2:9d:1f:c8:ec:55:
16:6d:47:cb:64:70:42:c3:05:35:67:56:eb:a1:2b:
9f:d8:6c:ed:52:32:d9:1c:1d:a5:51:5a:7e:d9:b8:
a3:e9:0b:cf:1c:f1:3d:96:59:63:7a:63:80:bf:45:
dc:60:a9:15:cf:29:af:dd:53:d1:b8:18:c8:ce:91:
3f:0f:6c:3f:a4:ca:04:12:d5:d4:66:78:10:a2:78:
fb:36:db:5e:a2:96:26:5d:4f:54:e0:c8:d3:6f:3f:
53:57:17:5b:61:99:b2:3f:2d:e4:5f:04:cc:e1:fe:
f2:a4:43:d5:be:7b:ba:25:36:47:c4:1e:84:28:95:
be:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:9E:3C:00:C0:6D:9A:9E:06:55:94:76:C8:6B:1C:A8:16:64:E8:AB
X509v3 Authority Key Identifier:
keyid:92:7A:F7:D4:07:F0:45:DB:EA:80:77:32:65:B0:4C:E5:74:D0:B7:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/knr31AfwRdvqgHcyZbBM5XTQt-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/6d5e29-af6e-4c8c-b0ad-516e0b30eb10/1/IZ48AMBtmp4GVZR2yGscqBZk6Ks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/6d5e29-af6e-4c8c-b0ad-516e0b30eb10/1/knr31AfwRdvqgHcyZbBM5XTQt-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.104.140.0/24
Signature Algorithm: sha256WithRSAEncryption
af:d7:7b:5e:29:d3:ad:87:94:69:da:a5:5b:64:f9:b7:7d:0a:
63:97:5a:f4:ba:81:69:15:62:08:17:c2:9b:1f:93:b4:45:76:
f1:ad:67:9b:d6:8e:94:31:87:9f:34:c0:16:f8:56:e3:39:36:
b0:ed:10:ed:fd:76:b5:30:50:fe:28:e9:08:39:97:5b:3c:93:
43:4a:80:a1:b1:33:59:18:7c:ce:8b:4b:b3:f6:33:8f:77:f4:
98:6b:ad:95:9f:f6:37:49:13:e0:0c:bd:ef:46:b5:e2:2d:6d:
fa:03:76:b7:2d:94:a1:54:6b:75:1f:25:0f:32:be:ce:dc:0a:
41:f0:bd:e4:13:73:be:3b:51:75:0a:e8:7c:ff:b5:45:c9:a7:
c6:33:03:22:13:fb:b6:18:b3:53:a0:e8:68:44:7c:d6:a2:0d:
14:a6:26:a5:d9:30:ae:f9:ac:8b:59:9b:73:a3:8a:1e:cf:aa:
34:d9:7a:0a:0c:cd:8d:73:38:6d:41:74:56:b5:07:a0:6a:f3:
c9:4e:42:17:08:c8:2f:9c:65:50:f9:80:20:fa:48:49:67:07:
a0:82:e6:55:ea:7c:b6:8e:63:cf:f0:b1:18:fd:f2:33:d6:23:
24:52:13:c6:8a:b3:f0:07:da:cd:9a:6b:77:93:f6:44:7f:c0:
bd:fc:22:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:55 2024 by rpki-client on console-ams.rpki-client.org