Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/4cae10-37a5-40ef-89d5-5701d01c1e87/1/kv-p4qJjTUBdvuPxfAo-Lvkpp2A.roa
File: kv-p4qJjTUBdvuPxfAo-Lvkpp2A.roa (raw, json)
Hash identifier: sCvXr4Q1mNcaUuDJHKZcrs09jMLackcBV+nVX/trwPw=
Subject key identifier: 92:FF:A9:E2:A2:63:4D:40:5D:BE:E3:F1:7C:0A:3E:2E:F9:29:A7:60
Certificate issuer: /CN=9f5ff3de10a31bbf5701c0bdb26c6508017da2ca
Certificate serial: 018216B2F5E04392B6607484A9904428726E
Authority key identifier: 9F:5F:F3:DE:10:A3:1B:BF:57:01:C0:BD:B2:6C:65:08:01:7D:A2:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n1_z3hCjG79XAcC9smxlCAF9oso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/4cae10-37a5-40ef-89d5-5701d01c1e87/1/kv-p4qJjTUBdvuPxfAo-Lvkpp2A.roa
Signing time: Tue 19 Jul 2022 13:43:23 +0000
ROA not before: Tue 19 Jul 2022 13:43:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39431
IP address blocks: 193.93.19.0/24 maxlen: 24
2001:678:468::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:16:b2:f5:e0:43:92:b6:60:74:84:a9:90:44:28:72:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f5ff3de10a31bbf5701c0bdb26c6508017da2ca
Validity
Not Before: Jul 19 13:43:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=92ffa9e2a2634d405dbee3f17c0a3e2ef929a760
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:b7:78:9d:a6:f5:07:36:cc:0f:6b:40:d2:57:
81:46:95:1d:28:57:c2:37:87:43:94:2a:6a:89:38:
00:d9:73:a7:20:04:b0:58:dc:44:4a:53:0d:a5:b0:
de:3b:e1:4a:fb:24:fa:b1:eb:97:32:78:d9:84:ff:
a7:ad:4a:e3:cd:87:30:78:1d:64:d8:f8:83:59:5d:
22:2d:b3:e9:e1:5e:16:be:35:16:33:83:8f:36:0a:
f1:15:5e:c4:2a:56:69:54:cc:b3:7f:5c:96:07:22:
a3:58:19:15:a3:f0:a1:64:c4:b8:75:3a:f9:a2:dc:
70:6c:8b:e3:8f:a1:0b:23:8c:ff:ec:d6:2b:17:ed:
c2:5d:11:c1:9a:a6:34:16:bf:40:b1:c1:49:0e:dc:
2a:7c:61:8f:4f:c6:47:9b:f7:1b:b6:11:c4:79:47:
68:66:81:44:26:d5:55:a4:3d:14:ee:8b:cf:8b:e7:
ca:5b:07:6d:a1:fe:86:bb:04:0b:5b:4c:fe:04:d2:
0a:a3:ac:7e:9e:98:c9:5c:9b:88:f1:ac:c6:bb:79:
2b:ff:36:5a:ca:82:12:a4:85:ac:4a:60:c5:ba:db:
76:53:43:cf:e2:a0:1f:12:78:dc:7d:ff:25:81:75:
7e:d0:5a:41:8c:23:c7:51:71:2c:79:bc:55:75:4f:
2e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:FF:A9:E2:A2:63:4D:40:5D:BE:E3:F1:7C:0A:3E:2E:F9:29:A7:60
X509v3 Authority Key Identifier:
keyid:9F:5F:F3:DE:10:A3:1B:BF:57:01:C0:BD:B2:6C:65:08:01:7D:A2:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n1_z3hCjG79XAcC9smxlCAF9oso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/4cae10-37a5-40ef-89d5-5701d01c1e87/1/kv-p4qJjTUBdvuPxfAo-Lvkpp2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/4cae10-37a5-40ef-89d5-5701d01c1e87/1/n1_z3hCjG79XAcC9smxlCAF9oso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.93.19.0/24
IPv6:
2001:678:468::/48
Signature Algorithm: sha256WithRSAEncryption
09:cb:0c:51:5e:d8:80:33:47:24:a8:3d:b6:89:25:79:af:6c:
69:9c:2e:e3:57:8a:9d:3a:df:fe:3a:9f:ca:22:75:5e:6f:27:
94:fd:98:3a:29:4a:84:7e:35:a3:e9:8e:90:32:83:2d:3a:a8:
c1:60:0e:e1:dc:06:bf:d4:e9:5b:04:84:df:16:a8:23:4b:55:
ce:44:5a:9a:0d:53:ea:a1:62:97:50:18:bc:da:2e:00:1b:48:
6f:47:ab:30:cc:f5:57:23:e5:fa:57:ba:b0:b7:55:4f:74:0d:
bc:0f:b6:22:c2:d2:78:57:aa:d5:b1:4b:31:80:f9:02:ea:84:
26:be:80:67:75:39:8c:69:70:7e:02:16:ae:ce:7e:af:d0:14:
d4:89:44:52:af:0f:b7:bb:16:1b:1f:a1:80:26:da:4b:27:f3:
8e:b3:79:ac:82:da:24:46:5e:ec:61:c0:89:6d:48:7b:5b:51:
f5:71:5b:a8:9b:cf:be:35:71:ad:44:99:2d:b7:9d:77:fb:6d:
85:c5:55:39:d5:54:26:c5:4b:71:0f:8f:15:74:67:ae:1f:c0:
59:71:aa:90:fb:fa:30:11:df:d9:7e:16:3b:6e:85:42:07:1c:
f7:76:86:fe:79:7a:ea:c5:49:b3:61:d2:93:28:6c:75:06:16:
e2:28:29:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:54 2024 by rpki-client on console-ams.rpki-client.org