Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/0d5f53-9653-47fb-a977-48f5e8767d02/1/1kzs_kugoRzo3ZjibTcVTnO_6U0.roa
File: 1kzs_kugoRzo3ZjibTcVTnO_6U0.roa (raw, json)
Hash identifier: jtA1gjB56XbVe3GqwiX7rAfeucUNwhCpm+FI+IOm2wk=
Subject key identifier: D6:4C:EC:FE:4B:A0:A1:1C:E8:DD:98:E2:6D:37:15:4E:73:BF:E9:4D
Certificate issuer: /CN=d1df4803e54b084a99cb7bb044bf791327594b73
Certificate serial: 06F4EFD8
Authority key identifier: D1:DF:48:03:E5:4B:08:4A:99:CB:7B:B0:44:BF:79:13:27:59:4B:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d9IA-VLCEqZy3uwRL95EydZS3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/0d5f53-9653-47fb-a977-48f5e8767d02/1/1kzs_kugoRzo3ZjibTcVTnO_6U0.roa
Signing time: Sat 01 Jan 2022 16:03:39 +0000
ROA not before: Sat 01 Jan 2022 16:03:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48981
IP address blocks: 91.198.28.0/24 maxlen: 24
91.193.74.0/24 maxlen: 24
2a0f:5c40::/29 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116715480 (0x6f4efd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1df4803e54b084a99cb7bb044bf791327594b73
Validity
Not Before: Jan 1 16:03:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d64cecfe4ba0a11ce8dd98e26d37154e73bfe94d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:14:f5:96:bf:f7:b6:40:82:62:cd:d7:4f:13:
a9:e5:7b:26:53:a6:40:cb:d6:c6:99:d0:37:4e:f6:
c7:f3:4d:cb:d0:53:ce:65:54:79:f8:aa:c6:f7:52:
a5:8b:2c:08:d0:07:71:b9:57:fe:96:8b:7d:50:8f:
78:03:60:e2:4e:29:46:a2:06:1d:3e:41:a6:0a:2c:
35:64:b4:49:0b:0e:be:3f:51:46:e2:0c:7f:67:7d:
02:44:ff:30:19:19:b1:e4:7a:ba:db:2a:be:ed:78:
eb:46:03:2c:a3:ba:ed:84:66:36:04:8e:84:a4:70:
f5:a3:56:26:74:03:2b:fd:a9:5f:12:69:4d:c8:45:
e4:f8:9c:d7:ae:3a:17:1a:9f:d8:8d:61:0d:4f:d5:
fb:16:d3:fb:fb:39:45:8f:f1:01:6a:91:10:f8:d7:
45:60:19:fe:95:b7:2a:1a:d0:14:a8:7b:5d:49:e2:
b8:32:04:32:32:75:32:e2:6b:ac:0f:44:3a:1c:bc:
d3:1b:2f:af:86:a3:17:49:36:e9:6f:e3:01:2f:55:
93:ac:bb:45:f6:b4:21:c6:a9:6e:aa:cd:e7:6a:5e:
eb:b2:52:65:dc:dd:25:eb:db:1c:f1:70:07:b9:4f:
44:a7:f5:a3:72:b5:8b:59:68:4d:d2:ad:3c:c8:11:
fb:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:4C:EC:FE:4B:A0:A1:1C:E8:DD:98:E2:6D:37:15:4E:73:BF:E9:4D
X509v3 Authority Key Identifier:
keyid:D1:DF:48:03:E5:4B:08:4A:99:CB:7B:B0:44:BF:79:13:27:59:4B:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d9IA-VLCEqZy3uwRL95EydZS3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/0d5f53-9653-47fb-a977-48f5e8767d02/1/1kzs_kugoRzo3ZjibTcVTnO_6U0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/0d5f53-9653-47fb-a977-48f5e8767d02/1/0d9IA-VLCEqZy3uwRL95EydZS3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.74.0/24
91.198.28.0/24
IPv6:
2a0f:5c40::/29
Signature Algorithm: sha256WithRSAEncryption
bd:1b:a5:df:58:cb:4c:16:6f:a9:8a:99:ba:81:90:47:09:84:
36:37:86:b8:71:53:08:23:69:1b:b4:9a:77:14:42:a3:83:ba:
62:f0:8c:b6:99:d3:88:24:ab:25:43:62:aa:14:04:d6:b4:07:
91:67:35:04:25:6b:bf:ec:c2:12:5c:18:9c:2d:62:48:dc:11:
43:c4:43:c0:2f:65:f8:16:7e:f5:10:5a:24:4e:2d:50:c1:08:
32:7e:85:4c:e8:cf:04:8f:43:a3:0e:3a:38:44:dc:5c:9c:24:
b9:d3:39:e4:ab:5c:a7:eb:94:5c:4d:f5:f5:f7:b9:33:db:b0:
b5:eb:ab:1d:77:ba:f3:9e:2d:f4:3a:30:ff:3a:1f:82:4e:2e:
d6:23:19:3d:7d:24:a4:a4:69:1b:68:fd:53:67:11:1a:0b:50:
a0:62:dd:37:17:69:bc:5e:0f:5b:9c:cf:68:c7:90:60:8e:7c:
f6:e9:05:ac:fe:be:22:d8:06:08:0f:9d:6c:bc:82:5f:26:54:
66:1c:1b:2c:0e:8a:26:da:2b:e2:41:86:22:94:9e:bf:5e:78:
a3:d7:9f:5a:83:64:45:72:4d:58:9a:f6:48:d8:2d:6d:93:0a:
86:71:62:ea:c2:d1:c0:96:09:00:84:b4:41:34:2a:c5:ec:30:
57:b7:b3:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:30 2023 by rpki-client on console-ams.rpki-client.org