Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/_kzGPPyKAutZmSyJ0nozFlBvd2w.roa
File: _kzGPPyKAutZmSyJ0nozFlBvd2w.roa (raw, json)
Hash identifier: 6R5iE93zbdSXA++UlXcbIvOlvylTy4NTrOBlo1UL510=
Subject key identifier: FE:4C:C6:3C:FC:8A:02:EB:59:99:2C:89:D2:7A:33:16:50:6F:77:6C
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 018414AC4EEA49C98964E2D1EB090AD7CBE1
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/_kzGPPyKAutZmSyJ0nozFlBvd2w.roa
Signing time: Wed 26 Oct 2022 14:22:27 +0000
ROA not before: Wed 26 Oct 2022 14:22:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51472
IP address blocks: 81.23.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:14:ac:4e:ea:49:c9:89:64:e2:d1:eb:09:0a:d7:cb:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Oct 26 14:22:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe4cc63cfc8a02eb59992c89d27a3316506f776c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:48:92:a2:a1:80:af:7f:ac:be:1d:94:7b:54:
3a:e5:97:98:28:58:c1:80:1b:d6:bc:10:2c:86:94:
e1:c5:39:26:d9:67:40:6b:b0:41:00:f5:48:e7:27:
f9:f7:ad:6d:64:85:0f:6b:58:18:28:b8:b6:33:3b:
71:9f:20:1a:e2:4c:86:93:6f:2c:b7:e6:e3:3a:1f:
09:14:10:94:2b:be:a4:71:78:12:dc:48:34:eb:fc:
0c:c4:e8:76:96:18:af:d6:dc:20:88:28:95:a0:cb:
3f:17:f5:87:fc:fa:f7:bc:72:6a:95:26:0b:c2:9c:
1c:92:45:bd:a4:ca:c0:55:dc:e0:e7:e1:5f:5e:68:
43:c3:18:6d:06:56:96:a7:31:88:2d:c2:15:9e:11:
8c:6f:70:1a:65:fa:68:a6:db:19:2e:b7:3b:c2:ff:
34:95:73:46:b3:cc:27:3c:d8:81:6b:1d:96:7a:fd:
bb:e3:26:a6:06:8f:1c:f8:dc:4d:45:28:4c:28:45:
56:c2:93:b7:6c:bf:7e:dc:dc:d3:1e:c6:f9:6a:b4:
99:1c:53:bc:3c:e4:7a:dd:c3:24:28:b7:78:5f:cb:
5f:4f:5e:23:e4:3b:66:8b:96:71:6d:ba:ce:da:2c:
73:ab:fa:6c:2f:7d:a0:1c:83:3b:9a:ed:72:5d:28:
ca:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:4C:C6:3C:FC:8A:02:EB:59:99:2C:89:D2:7A:33:16:50:6F:77:6C
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/_kzGPPyKAutZmSyJ0nozFlBvd2w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.23.15.0/24
Signature Algorithm: sha256WithRSAEncryption
61:03:4f:fb:7c:73:7f:8c:45:95:e9:46:ba:fa:78:91:e9:d1:
97:69:33:08:50:9c:d0:26:e4:f7:16:62:58:9c:ae:14:4f:a3:
d5:aa:92:7d:a4:26:dc:e7:83:5d:cd:b2:99:bb:8b:fa:3c:07:
6a:42:a3:72:0f:a4:43:fa:28:6e:3a:57:af:fc:c2:38:c5:00:
d7:23:14:d5:e8:20:f1:a9:e3:b5:2c:77:10:57:d3:22:14:0e:
90:9a:a3:d5:e3:82:46:a8:53:6a:c9:49:3d:87:38:94:1c:6c:
4c:4d:10:7b:60:2a:61:eb:69:a2:9e:c1:c3:8a:30:28:e8:bd:
92:b7:ca:68:88:dd:42:09:f6:71:f2:7c:15:36:44:e5:e7:4f:
b0:cc:f9:1e:fc:4b:aa:a1:11:d4:0d:3a:76:91:cf:45:fd:ee:
8a:49:39:cc:aa:6c:d7:e9:26:b0:59:3c:c2:4a:9f:1c:24:b4:
b5:0c:82:04:8e:b4:e1:a3:00:3e:6b:77:72:3b:ec:2c:86:aa:
00:89:e3:bb:ca:b0:a5:1e:c5:3f:79:5c:2c:7a:e9:05:29:23:
32:4d:fe:c9:1a:b3:3b:69:59:b3:6e:72:e2:00:43:e8:41:d8:
b2:42:bc:8d:6f:66:10:a1:aa:8b:65:50:35:74:ca:c3:cf:23:
ea:04:9a:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:32:43 2025 by rpki-client