Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/KzWQN1WooXXKpgku83qJScJKU8Q.roa
File: KzWQN1WooXXKpgku83qJScJKU8Q.roa (raw, json)
Hash identifier: vzMiXeRsrF972b73C0bq2fYEVvtZzbeQ2DSBk22+0Hs=
Subject key identifier: 2B:35:90:37:55:A8:A1:75:CA:A6:09:2E:F3:7A:89:49:C2:4A:53:C4
Certificate issuer: /CN=e316318247d211841f9620a9a1130010ddb486f2
Certificate serial: 02CAC9
Authority key identifier: E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/KzWQN1WooXXKpgku83qJScJKU8Q.roa
Signing time: Thu 20 Jan 2022 14:19:27 +0000
ROA not before: Thu 20 Jan 2022 14:19:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208937
IP address blocks: 91.231.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 182985 (0x2cac9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e316318247d211841f9620a9a1130010ddb486f2
Validity
Not Before: Jan 20 14:19:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b35903755a8a175caa6092ef37a8949c24a53c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:88:ad:86:49:bc:4b:ab:4a:91:82:ce:d6:e4:
4e:22:f2:35:e1:18:7b:4a:f8:bc:c7:91:09:a8:e4:
ec:77:38:90:3b:be:0b:83:f7:0c:78:69:69:cd:ee:
df:ff:1d:4f:0a:26:60:2d:99:37:03:39:7f:be:b1:
66:ce:5e:83:9d:db:2d:6d:2a:65:bd:3d:61:71:4a:
fd:b1:07:6a:e5:29:f6:61:95:85:e5:b7:42:96:0c:
09:53:07:3a:92:21:76:65:50:5e:42:72:8a:2b:e4:
bf:db:8d:4b:6d:b8:ee:74:b2:e1:48:ce:19:bd:8c:
27:4b:6c:e1:86:85:05:94:ee:e1:f1:67:97:64:1e:
0e:7f:50:a9:98:cd:7e:fc:5e:3a:9a:2b:70:42:93:
ec:bd:47:93:ec:e5:11:61:b3:2d:02:59:e4:5e:f0:
4d:7d:67:4a:b6:7f:92:8e:2a:88:81:37:f1:d3:23:
21:81:0d:e8:e9:17:6d:73:4c:58:14:e0:01:f7:ae:
62:82:34:5a:bb:7e:44:86:54:fa:ba:c1:ef:49:6e:
04:e2:09:d2:6f:5e:44:f1:04:60:42:ba:e6:e2:35:
a5:81:ec:a3:1e:2d:64:4d:b0:70:5f:3c:d1:bb:a6:
3d:ac:1c:76:ae:87:7a:e9:e2:cf:b2:2c:5b:fd:77:
3c:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:35:90:37:55:A8:A1:75:CA:A6:09:2E:F3:7A:89:49:C2:4A:53:C4
X509v3 Authority Key Identifier:
keyid:E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/KzWQN1WooXXKpgku83qJScJKU8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4xYxgkfSEYQfliCpoRMAEN20hvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.126.0/24
Signature Algorithm: sha256WithRSAEncryption
85:53:81:0a:59:a7:d8:a7:30:1c:f0:b8:d2:c7:54:e6:bf:52:
cc:26:0e:9c:db:76:76:6a:65:d8:e3:7b:40:93:ad:1e:6f:75:
46:8f:d4:14:73:72:16:e6:be:89:31:e2:63:78:5d:9c:4e:9d:
d8:5e:a0:c0:ea:ea:29:09:3c:d0:cd:f1:44:df:c4:5a:56:c1:
bf:15:e4:cf:d8:c3:17:9b:61:cc:0a:99:5a:7f:3b:29:86:dd:
f6:66:55:32:c8:cb:7c:5c:32:84:69:92:44:ba:28:ea:83:e0:
2f:54:a1:9d:12:f1:45:4b:d7:7a:b2:20:94:0f:90:88:8d:17:
1a:07:87:99:b1:3a:a9:59:21:89:95:e0:f5:ab:ef:ae:b0:d5:
64:1b:66:8b:d6:91:c2:a2:82:12:b9:8e:f1:82:e6:61:cb:68:
c6:d8:e0:70:22:7d:2d:68:7b:37:fd:4d:ca:9d:48:df:f8:00:
4a:f2:71:74:50:13:c5:0c:49:1e:e0:d3:c9:fe:e0:33:fa:68:
56:39:1d:c0:7f:c6:18:59:9f:d0:a5:23:cf:42:be:dc:9d:00:
87:12:fb:70:65:0d:13:e6:01:05:bd:ff:18:13:65:cb:5a:3c:
46:41:1a:a4:4b:fe:ff:bf:fd:ac:6f:31:24:21:ca:64:95:07:
3c:2e:2d:16
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAsrJMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGUz
MTYzMTgyNDdkMjExODQxZjk2MjBhOWExMTMwMDEwZGRiNDg2ZjIwHhcNMjIwMTIw
MTQxOTI3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygyYjM1OTAzNzU1YThh
MTc1Y2FhNjA5MmVmMzdhODk0OWMyNGE1M2M0MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA7Yithkm8S6tKkYLO1uROIvI14Rh7Svi8x5EJqOTsdziQO74L
g/cMeGlpze7f/x1PCiZgLZk3Azl/vrFmzl6DndstbSplvT1hcUr9sQdq5Sn2YZWF
5bdClgwJUwc6kiF2ZVBeQnKKK+S/241LbbjudLLhSM4ZvYwnS2zhhoUFlO7h8WeX
ZB4Of1CpmM1+/F46mitwQpPsvUeT7OURYbMtAlnkXvBNfWdKtn+SjiqIgTfx0yMh
gQ3o6Rdtc0xYFOAB965igjRau35EhlT6usHvSW4E4gnSb15E8QRgQrrm4jWlgeyj
Hi1kTbBwXzzRu6Y9rBx2rod66eLPsixb/Xc84QIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFCs1kDdVqKF1yqYJLvN6iUnCSlPEMB8GA1UdIwQYMBaAFOMWMYJH0hGEH5Yg
qaETABDdtIbyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
NHhZeGdrZlNFWVFmbGlDcG9STUFFTjIwaHZJLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC85OS9lZTQyYmItMWU0OS00YzIxLWE0ZDYtZWMyODdlMWQzN2U1LzEv
S3pXUU4xV29vWFhLcGdrdTgzcUpTY0pLVThRLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9l
ZTQyYmItMWU0OS00YzIxLWE0ZDYtZWMyODdlMWQzN2U1LzEvNHhZeGdrZlNFWVFm
bGlDcG9STUFFTjIwaHZJLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+d+MA0GCSqGSIb3DQEBCwUAA4IB
AQCFU4EKWafYpzAc8LjSx1Tmv1LMJg6c23Z2amXY43tAk60eb3VGj9QUc3IW5r6J
MeJjeF2cTp3YXqDA6uopCTzQzfFE38RaVsG/FeTP2MMXm2HMCplafzspht32ZlUy
yMt8XDKEaZJEuijqg+AvVKGdEvFFS9d6siCUD5CIjRcaB4eZsTqpWSGJleD1q++u
sNVkG2aL1pHCooISuY7xguZhy2jG2OBwIn0taHs3/U3KnUjf+ABK8nF0UBPFDEke
4NPJ/uAz+mhWOR3Af8YYWZ/QpSPPQr7cnQCHEvtwZQ0T5gEFvf8YE2XLWjxGQRqk
S/7/v/2sbzEkIcpklQc8Li0W
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:51 2023 by rpki-client on console-fra.rpki-client.org