Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/409949-f229-498d-9315-34b67df7cb03/1/KUZc-SvDlzn-H27YLImhue6t878.roa
File: KUZc-SvDlzn-H27YLImhue6t878.roa (raw, json)
Hash identifier: RSiFAZ6zi9VRTVMg+O//+Ia5Gf8idcE/2k/CBJFT940=
Subject key identifier: 29:46:5C:F9:2B:C3:97:39:FE:1F:6E:D8:2C:89:A1:B9:EE:AD:F3:BF
Certificate issuer: /CN=465ef7bd2eb3dcdbab04908380d48a8f2febc62c
Certificate serial: 01864B0C6CFE2FB55E8F2BC0203D2FC6F668
Authority key identifier: 46:5E:F7:BD:2E:B3:DC:DB:AB:04:90:83:80:D4:8A:8F:2F:EB:C6:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rl73vS6z3NurBJCDgNSKjy_rxiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/409949-f229-498d-9315-34b67df7cb03/1/KUZc-SvDlzn-H27YLImhue6t878.roa
Signing time: Mon 13 Feb 2023 13:52:30 +0000
ROA not before: Mon 13 Feb 2023 13:52:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210955
IP address blocks: 194.113.61.0/24 maxlen: 24
194.113.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4b:0c:6c:fe:2f:b5:5e:8f:2b:c0:20:3d:2f:c6:f6:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=465ef7bd2eb3dcdbab04908380d48a8f2febc62c
Validity
Not Before: Feb 13 13:52:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=29465cf92bc39739fe1f6ed82c89a1b9eeadf3bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:2c:85:d7:38:10:f0:8a:d2:b2:5a:a6:bc:cd:
64:b6:ee:62:3a:4c:ef:03:df:ef:d4:15:63:6a:cf:
e7:b5:cb:c4:d6:0e:f6:77:5c:a4:08:80:ee:ff:c3:
48:a4:06:9a:38:c8:b1:2c:61:a4:7b:14:73:3b:04:
1a:75:7e:2b:82:0c:4e:36:3d:82:0a:8b:78:03:70:
08:ac:d6:54:d4:55:66:18:92:62:64:3d:48:28:c1:
cc:08:b5:f1:27:5d:26:47:d4:02:85:08:43:2d:12:
b6:80:2e:d0:ea:43:66:8d:86:be:00:19:a0:a3:a0:
7a:d3:d1:84:85:bc:4f:28:55:3a:5d:e6:cb:45:a9:
ac:0d:92:89:f3:76:09:30:e4:19:c2:26:6a:69:a6:
f3:f1:ee:2e:d3:5e:cb:92:b0:9e:d2:54:42:03:d6:
88:46:7a:ea:24:f9:3f:15:39:6e:f1:49:af:d2:1e:
55:aa:23:39:53:18:2b:ba:0a:24:43:f8:c0:b9:d4:
aa:3e:58:db:ee:56:be:53:07:50:5d:53:15:ec:ef:
e3:62:eb:f1:6e:b1:44:40:14:26:85:62:55:f7:b2:
a4:4c:ac:36:17:e8:02:14:1c:ca:5a:32:36:14:3e:
de:fc:bc:93:d0:d2:42:4b:ca:20:1d:4f:08:b6:28:
b7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:46:5C:F9:2B:C3:97:39:FE:1F:6E:D8:2C:89:A1:B9:EE:AD:F3:BF
X509v3 Authority Key Identifier:
keyid:46:5E:F7:BD:2E:B3:DC:DB:AB:04:90:83:80:D4:8A:8F:2F:EB:C6:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rl73vS6z3NurBJCDgNSKjy_rxiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/409949-f229-498d-9315-34b67df7cb03/1/KUZc-SvDlzn-H27YLImhue6t878.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/409949-f229-498d-9315-34b67df7cb03/1/Rl73vS6z3NurBJCDgNSKjy_rxiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.113.61.0/24
194.113.70.0/24
Signature Algorithm: sha256WithRSAEncryption
88:fb:7e:9f:e3:9c:13:3d:3a:4f:e9:32:81:3a:da:3c:da:e2:
9c:44:36:60:36:f9:e6:b8:f3:11:5b:85:02:c0:f9:c2:1d:da:
2d:04:51:08:ba:24:56:cc:2a:df:6d:86:2a:ef:aa:33:7c:11:
0f:8c:bd:5f:cf:38:04:a2:f1:5e:d0:20:0d:91:6a:5a:28:5a:
25:e8:d3:91:1d:e8:55:24:38:3c:ad:85:43:87:2a:a3:bb:48:
45:06:b4:4b:b6:af:b8:c8:93:d7:96:65:a6:44:a7:a2:08:4d:
9c:fe:65:ed:b9:af:a1:2f:c1:56:37:39:cb:65:f1:b9:1e:ae:
20:bf:e0:26:c6:f2:6d:33:69:fa:66:a7:44:f2:14:87:7b:a2:
80:d8:18:17:f2:5c:a8:ba:eb:3c:6c:af:9c:fd:d7:e4:9d:49:
f1:cc:d7:53:22:8a:99:f6:7c:c4:f9:5f:d4:e8:ff:74:2d:97:
12:98:87:d5:1c:c6:68:5a:f8:58:40:d7:49:e3:79:e9:2b:d2:
d0:38:08:b4:b6:94:e7:18:10:9c:74:4f:d2:df:a7:c6:df:6c:
8a:2b:e2:c7:ed:dd:34:25:39:13:72:30:65:bc:e1:b2:83:be:
00:95:3c:c5:ee:fb:00:b0:28:41:b8:c4:b6:6f:dc:8d:54:de:
8d:8c:a8:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:11:03 2025 by rpki-client