Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/a7c7c1-fc42-43a3-9ad8-70dad51e73fb/1/kzA_YewYeUsSDE_LR9Xlnxfy-B4.roa
File: kzA_YewYeUsSDE_LR9Xlnxfy-B4.roa (raw, json)
Hash identifier: O4yOn/MHuqjG9TM9NkRoxDog73GQPZdUUK9e24eKOks=
Subject key identifier: 93:30:3F:61:EC:18:79:4B:12:0C:4F:CB:47:D5:E5:9F:17:F2:F8:1E
Certificate issuer: /CN=86d542323c0e3051c9c7bb8ed1d1e8acfd3db834
Certificate serial: 33C68BFE
Authority key identifier: 86:D5:42:32:3C:0E:30:51:C9:C7:BB:8E:D1:D1:E8:AC:FD:3D:B8:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htVCMjwOMFHJx7uO0dHorP09uDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/a7c7c1-fc42-43a3-9ad8-70dad51e73fb/1/kzA_YewYeUsSDE_LR9Xlnxfy-B4.roa
Signing time: Sat 01 Jan 2022 01:54:05 +0000
ROA not before: Sat 01 Jan 2022 01:54:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29695
IP address blocks: 178.16.64.0/20 maxlen: 20
185.10.28.0/22 maxlen: 22
77.222.192.0/19 maxlen: 19
141.0.224.0/19 maxlen: 19
77.110.192.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 868649982 (0x33c68bfe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d542323c0e3051c9c7bb8ed1d1e8acfd3db834
Validity
Not Before: Jan 1 01:54:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93303f61ec18794b120c4fcb47d5e59f17f2f81e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:b9:6f:7f:11:e2:40:e9:18:6c:ff:49:10:fd:
20:d2:26:55:00:bd:c4:93:0c:da:57:c5:42:f1:3e:
3c:6b:cd:9b:2f:0a:2a:04:54:87:33:d0:64:99:d1:
47:a8:4c:a5:f6:0f:a2:bd:b4:c9:c0:d7:d2:f4:23:
9e:bc:82:e0:36:13:76:f7:15:11:15:6c:ca:05:92:
eb:d3:75:b8:5f:a0:46:75:e4:ea:b9:85:cc:03:e7:
3b:96:dc:3e:75:c3:4e:f9:8c:47:ab:62:dc:49:75:
a8:ee:3a:0d:e5:2d:3d:58:1f:ab:8d:13:f8:a8:d5:
72:2d:28:70:a4:a2:ce:76:9b:44:39:91:88:ce:df:
dc:9d:4d:8c:59:8e:c2:2c:24:9c:a6:2d:4e:6b:c7:
7b:e2:77:85:92:93:1c:23:76:71:dd:3f:3b:25:36:
3d:3e:65:1c:9f:45:b8:38:eb:76:ac:0f:90:0c:c5:
19:c4:ed:a7:01:10:58:57:36:51:0a:27:b3:7a:35:
6d:fa:ff:f3:24:18:b3:91:66:aa:5a:ff:2d:dc:b1:
53:35:f5:44:89:fc:fd:8c:5a:a9:6b:a7:8a:7f:6e:
53:4e:50:9a:13:93:57:a4:55:d8:1b:d1:2c:f4:33:
b8:46:6e:df:00:1a:53:e8:2e:80:d4:04:93:b7:2e:
2e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:30:3F:61:EC:18:79:4B:12:0C:4F:CB:47:D5:E5:9F:17:F2:F8:1E
X509v3 Authority Key Identifier:
keyid:86:D5:42:32:3C:0E:30:51:C9:C7:BB:8E:D1:D1:E8:AC:FD:3D:B8:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htVCMjwOMFHJx7uO0dHorP09uDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a7c7c1-fc42-43a3-9ad8-70dad51e73fb/1/kzA_YewYeUsSDE_LR9Xlnxfy-B4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a7c7c1-fc42-43a3-9ad8-70dad51e73fb/1/htVCMjwOMFHJx7uO0dHorP09uDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.110.192.0/18
77.222.192.0/19
141.0.224.0/19
178.16.64.0/20
185.10.28.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:45:f5:6b:77:c5:f2:02:12:e2:09:55:a5:1f:cc:19:c2:7a:
9a:d7:1f:de:bf:e5:f6:24:1a:bf:a3:1d:1a:eb:d6:c3:14:b5:
f6:23:76:03:c8:9e:28:1b:bd:b2:0c:f1:51:9c:27:d1:75:c8:
7c:59:fa:76:0c:77:8b:a6:37:c4:be:fe:26:82:dd:cc:81:e9:
cd:7c:2b:17:f9:10:54:32:ab:96:8c:a8:5b:36:55:d0:5a:e4:
55:9a:d5:c0:67:bf:76:1c:5a:b7:9d:05:1e:e2:8f:ed:15:e6:
37:8f:38:89:1b:25:bd:ff:5d:d4:04:33:84:44:4f:0e:cf:b9:
66:df:97:4a:0c:28:11:db:93:b9:b7:d5:fb:24:8f:39:b9:8a:
f2:d2:ef:32:97:86:82:38:e3:e1:e1:82:7f:fd:02:b0:b2:29:
3e:7c:26:df:06:42:d4:d0:b9:30:8c:29:a7:23:66:c3:a2:3f:
7e:e7:f7:ad:61:54:41:6b:36:35:be:99:d5:b9:f8:ae:cf:1f:
98:3d:bd:68:cc:f5:4a:fc:de:92:1f:cc:1b:f6:e5:9b:d2:17:
be:05:90:23:81:00:6c:7b:63:94:71:5c:e9:68:26:bc:c1:cf:
e1:ec:b9:47:21:21:62:03:65:8f:2b:d9:56:28:cf:af:55:cb:
2d:40:37:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:09 2024 by rpki-client on console-fra.rpki-client.org