Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/KVFTkr8SfLdHJJsO2PYbyB1BR2E.roa
File: KVFTkr8SfLdHJJsO2PYbyB1BR2E.roa (raw, json)
Hash identifier: Lrt2BG+HpniWj06QpoZow/O6OeuV3zQoSoouw4u5c50=
Subject key identifier: 29:51:53:92:BF:12:7C:B7:47:24:9B:0E:D8:F6:1B:C8:1D:41:47:61
Certificate issuer: /CN=2719412918a6627f99cce55c7aca139057b8574e
Certificate serial: 0186F3440A0A3914712CD591A41EF5761776
Authority key identifier: 27:19:41:29:18:A6:62:7F:99:CC:E5:5C:7A:CA:13:90:57:B8:57:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JxlBKRimYn-ZzOVcesoTkFe4V04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/KVFTkr8SfLdHJJsO2PYbyB1BR2E.roa
Signing time: Sat 18 Mar 2023 05:49:27 +0000
ROA not before: Sat 18 Mar 2023 05:49:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 142111
IP address blocks: 194.50.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:f3:44:0a:0a:39:14:71:2c:d5:91:a4:1e:f5:76:17:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2719412918a6627f99cce55c7aca139057b8574e
Validity
Not Before: Mar 18 05:49:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=29515392bf127cb747249b0ed8f61bc81d414761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:c7:41:28:61:a8:f9:99:f6:82:9d:b2:09:d3:
cf:ca:3c:8e:45:4f:c6:fe:ac:f2:45:bd:4a:af:11:
56:96:d2:12:cb:43:b2:13:51:5c:ac:93:b3:f8:d2:
57:bc:b5:8d:e5:92:7b:48:a3:f1:71:13:d0:ed:e9:
d0:7a:db:ec:31:c6:e2:51:12:6f:bb:20:44:29:3d:
95:c3:33:af:1d:74:a2:18:25:dd:28:ba:2f:ce:32:
56:58:25:fb:c5:22:0a:90:6c:07:34:b6:48:4b:7b:
cd:72:a1:a1:58:06:ac:24:90:0a:03:fd:c6:38:10:
cb:82:4d:85:bf:bb:d2:83:b1:a3:2a:51:f1:45:72:
7e:84:2d:f6:71:ce:0f:49:19:9b:ac:ec:8e:44:8f:
54:75:b0:de:7a:86:5b:4d:5e:54:f4:85:83:3a:8a:
c0:7d:84:e1:7e:ce:5a:42:d1:c7:f6:e6:f4:08:49:
d4:0f:5f:c3:d1:c7:9e:4d:f1:f2:15:ce:a2:a5:fe:
21:a2:cd:80:f6:64:f5:57:62:fb:5b:02:c3:c4:d3:
39:67:36:68:75:8f:3b:f0:51:79:1b:de:9b:3f:42:
a8:97:51:3d:cf:5e:22:16:a2:6d:78:6a:c0:36:28:
8e:00:8e:2c:6c:c8:d2:86:19:ac:29:6d:15:76:1c:
8e:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:51:53:92:BF:12:7C:B7:47:24:9B:0E:D8:F6:1B:C8:1D:41:47:61
X509v3 Authority Key Identifier:
keyid:27:19:41:29:18:A6:62:7F:99:CC:E5:5C:7A:CA:13:90:57:B8:57:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JxlBKRimYn-ZzOVcesoTkFe4V04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/KVFTkr8SfLdHJJsO2PYbyB1BR2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/JxlBKRimYn-ZzOVcesoTkFe4V04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.1.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:f6:dd:43:1a:2e:b6:e8:f0:c9:8c:b6:9a:48:ab:94:b5:22:
5d:dc:9e:18:77:11:03:eb:f5:ba:d6:11:c8:56:bb:45:95:2f:
e7:3e:ea:ef:63:1b:ca:fa:10:7b:72:5e:b0:d7:36:e9:b5:ec:
d2:39:27:a8:61:36:03:16:a2:b3:c4:a3:b2:f9:48:c0:b9:e0:
f5:7c:15:82:9b:66:97:1e:a5:9b:51:88:7d:d3:45:e3:14:19:
ee:6a:6d:b6:52:ac:2e:4f:72:81:b3:83:67:ea:bb:c4:72:d6:
58:d2:e4:59:cf:e7:06:fa:fd:64:d1:e1:ef:40:7a:dd:c8:7b:
20:ea:04:06:49:cc:60:28:ab:97:77:a4:d8:18:a7:03:50:5d:
89:ed:56:19:9b:23:a0:e7:6e:96:93:0c:6f:9d:ea:86:b7:d4:
26:3b:01:1e:10:d2:99:de:3b:3f:5d:33:54:ec:fe:ed:e2:99:
5b:53:56:6a:ba:9b:29:8c:b9:03:3d:e4:51:e2:6a:3d:52:9b:
a8:53:db:87:85:8e:fa:cd:82:1b:4b:14:f8:55:19:21:64:de:
37:2b:be:28:aa:04:f7:a5:71:cd:76:46:5b:e0:06:72:d7:fa:
bf:c6:97:61:ba:fd:0b:5b:7e:54:86:95:74:f2:ac:68:56:86:
9c:00:2e:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:35:54 2025 by rpki-client