Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/kz4AFjZopviZ66NhJqWp8E4qCJU.roa
File: kz4AFjZopviZ66NhJqWp8E4qCJU.roa (raw, json)
Hash identifier: 5xwWzfyEIFo1sYKT505R18ktnLrg41/VKVANFdTizW4=
Subject key identifier: 93:3E:00:16:36:68:A6:F8:99:EB:A3:61:26:A5:A9:F0:4E:2A:08:95
Certificate issuer: /CN=b9762db1282ffd084761232038f81f5d29e640d5
Certificate serial: 0300ECD8
Authority key identifier: B9:76:2D:B1:28:2F:FD:08:47:61:23:20:38:F8:1F:5D:29:E6:40:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXYtsSgv_QhHYSMgOPgfXSnmQNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/kz4AFjZopviZ66NhJqWp8E4qCJU.roa
Signing time: Sat 01 Jan 2022 10:04:27 +0000
ROA not before: Sat 01 Jan 2022 10:04:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.139.34.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50392280 (0x300ecd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9762db1282ffd084761232038f81f5d29e640d5
Validity
Not Before: Jan 1 10:04:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=933e00163668a6f899eba36126a5a9f04e2a0895
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:15:5d:eb:af:35:9c:a4:20:b3:2f:8e:c5:d9:
7b:a4:ae:e6:25:53:f9:b0:ec:3d:4c:ac:30:8f:1d:
ab:f6:67:5c:55:03:f2:3c:aa:2f:64:94:27:d8:f7:
7f:64:92:8f:c0:09:fc:5c:54:04:9c:3d:44:a5:8a:
b2:05:5a:20:ce:0d:ed:df:a6:c6:b9:46:a0:98:76:
5b:9a:8d:10:1f:f8:11:b3:3c:03:c5:b0:a9:49:e1:
ee:01:5e:4c:5e:ee:66:1b:92:34:96:56:da:4b:db:
1d:39:b7:88:a5:e6:ca:44:3c:bb:16:05:4f:87:d2:
79:c1:1c:b1:89:04:1a:ca:d3:1a:8e:eb:69:55:ed:
96:08:26:47:2a:a9:c5:6f:fa:8f:f4:42:98:97:e3:
07:c6:7e:5c:de:9e:1b:0a:49:23:b1:5f:59:88:e7:
a9:8c:91:c7:75:7e:87:e5:59:66:81:e4:fd:b9:9d:
2a:97:37:e3:40:4a:fd:91:ed:df:d6:54:41:6c:63:
37:1c:97:44:3f:fb:d7:8e:57:a3:8a:87:61:c4:8a:
41:9c:37:54:72:a8:53:70:be:a8:70:30:96:6a:0f:
26:dd:62:44:f9:7f:b7:27:ff:5b:80:02:91:53:28:
10:63:3a:01:fd:50:f7:3d:65:67:83:3d:2c:c6:1a:
0f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:3E:00:16:36:68:A6:F8:99:EB:A3:61:26:A5:A9:F0:4E:2A:08:95
X509v3 Authority Key Identifier:
keyid:B9:76:2D:B1:28:2F:FD:08:47:61:23:20:38:F8:1F:5D:29:E6:40:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXYtsSgv_QhHYSMgOPgfXSnmQNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/kz4AFjZopviZ66NhJqWp8E4qCJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/uXYtsSgv_QhHYSMgOPgfXSnmQNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.139.34.0/23
Signature Algorithm: sha256WithRSAEncryption
7f:05:69:a9:ca:b8:79:91:d3:69:d2:b1:b7:68:f7:ab:a2:bb:
31:a6:cf:14:c1:f8:04:40:b8:cc:90:60:ae:17:32:ca:ec:15:
8f:50:77:46:d7:e0:97:57:6a:86:75:15:16:57:d9:d4:24:f9:
91:73:8d:3c:88:7a:e4:a8:6b:a1:f0:45:e8:5a:16:01:a0:e5:
f2:b0:6b:17:d4:e3:ef:da:7b:27:87:e2:40:c0:bd:28:36:6b:
cc:4c:55:71:29:c8:cf:fc:2d:36:38:2e:87:9c:31:5b:80:b9:
95:21:a6:d4:7a:00:39:1b:94:dc:58:70:43:fa:6b:37:32:12:
13:01:53:13:25:90:c6:58:b7:ad:6e:6f:11:b9:db:fe:95:78:
8a:8b:35:9c:b7:ab:b1:a3:b3:01:f8:39:45:09:f9:f8:7e:0f:
72:eb:37:f9:f7:d7:e7:c1:4a:70:de:55:ef:96:98:2b:57:02:
df:6b:82:b3:34:85:3c:ff:aa:b3:fd:fa:73:91:dc:6f:87:d0:
83:be:62:3e:8d:8b:6d:1b:94:eb:3a:89:22:d4:36:67:9f:13:
47:65:6a:d9:02:5c:f4:d2:06:02:ae:d3:2c:82:ce:fd:9b:3c:
c5:08:a2:91:08:76:0a:be:ef:83:a8:7d:9a:ff:4c:cb:33:d4:
05:87:59:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:05 2024 by rpki-client on console-fra.rpki-client.org