Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/8e5d65-5912-418e-9c01-123a86d94818/1/LyD_HY92FAEhpNVe3t-GpwJM0V4.roa
File: LyD_HY92FAEhpNVe3t-GpwJM0V4.roa (raw, json)
Hash identifier: P4ce6Z8B0ZjlIxnUuKI6znkqx5TRySYMQTHTCk5snco=
Subject key identifier: 2F:20:FF:1D:8F:76:14:01:21:A4:D5:5E:DE:DF:86:A7:02:4C:D1:5E
Certificate issuer: /CN=27802685da734b157a2db9ccff76dd4e48911928
Certificate serial: 03B1FBB0
Authority key identifier: 27:80:26:85:DA:73:4B:15:7A:2D:B9:CC:FF:76:DD:4E:48:91:19:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J4AmhdpzSxV6LbnM_3bdTkiRGSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/8e5d65-5912-418e-9c01-123a86d94818/1/LyD_HY92FAEhpNVe3t-GpwJM0V4.roa
Signing time: Sat 01 Jan 2022 01:54:46 +0000
ROA not before: Sat 01 Jan 2022 01:54:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51002
IP address blocks: 193.243.168.0/22 maxlen: 22
176.123.208.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61995952 (0x3b1fbb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27802685da734b157a2db9ccff76dd4e48911928
Validity
Not Before: Jan 1 01:54:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f20ff1d8f76140121a4d55ededf86a7024cd15e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:91:d4:30:ff:24:2b:e1:c5:21:18:dd:5f:68:
1f:6d:f3:da:fc:bf:f2:cb:63:e5:99:2a:d2:e5:93:
bc:7c:1e:08:33:36:0c:52:22:0a:e3:89:c6:67:9f:
ca:e6:7d:31:40:fe:b2:92:42:6a:23:fa:4d:29:9e:
17:78:7e:2b:8e:4d:0e:23:33:8b:9c:22:08:bb:ff:
22:37:a5:e0:1a:20:b0:04:b8:13:8e:65:1d:04:8c:
20:0f:b7:5d:87:53:24:db:b1:93:d7:7b:01:bc:6f:
3c:e1:c7:04:59:6d:bf:88:80:53:f2:96:a6:81:5f:
3a:9f:36:1e:3b:be:cd:d2:cb:ca:97:85:fe:66:fa:
3f:08:00:8b:1f:53:b7:c7:5e:c9:e8:85:e1:2c:74:
1d:fa:80:ca:7c:90:ef:bb:90:98:bb:16:ac:3c:53:
b8:63:50:5f:fb:73:70:e7:11:1f:54:aa:ad:e7:bf:
ca:03:dd:6a:47:cf:0b:58:6d:53:4a:8b:bd:cd:38:
07:21:8f:35:2d:a3:22:4f:8a:14:0e:88:08:b9:9a:
ae:d4:fe:fb:b5:2f:ad:39:a9:93:12:17:8e:e9:2f:
65:49:d1:4a:ab:76:6e:42:76:1d:4a:82:2c:ee:12:
47:e2:71:f3:27:c9:07:4f:b1:34:a0:d7:73:03:53:
47:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:20:FF:1D:8F:76:14:01:21:A4:D5:5E:DE:DF:86:A7:02:4C:D1:5E
X509v3 Authority Key Identifier:
keyid:27:80:26:85:DA:73:4B:15:7A:2D:B9:CC:FF:76:DD:4E:48:91:19:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J4AmhdpzSxV6LbnM_3bdTkiRGSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/8e5d65-5912-418e-9c01-123a86d94818/1/LyD_HY92FAEhpNVe3t-GpwJM0V4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/8e5d65-5912-418e-9c01-123a86d94818/1/J4AmhdpzSxV6LbnM_3bdTkiRGSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.123.208.0/21
193.243.168.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:fb:42:4a:43:3e:ec:50:da:08:4e:4e:16:a5:d9:b1:fe:16:
55:94:8a:35:cf:20:0e:0a:5f:69:1e:e0:73:b9:94:51:37:a0:
7a:9e:84:fe:62:54:be:2d:69:3b:90:da:29:19:9e:73:70:dd:
17:82:95:88:cb:b8:4e:83:0b:ef:84:13:94:e2:33:a9:5a:16:
a3:e2:14:22:92:45:e5:2e:d8:33:bb:d9:9e:bd:c8:b4:a2:78:
b4:2e:93:6f:9f:66:ca:50:df:61:e1:a5:1c:03:db:a5:80:d5:
61:4a:76:12:5b:3d:61:83:b5:12:67:0f:d9:cc:25:ff:7a:7f:
22:db:9a:01:fc:da:84:42:9b:56:b6:19:59:01:97:38:21:e3:
5c:ca:26:f3:3b:af:d2:82:f3:47:db:ff:57:ad:bf:be:b5:a8:
06:02:9f:23:36:74:a9:41:2c:7d:7c:aa:5e:71:50:a9:26:94:
51:c7:44:f4:ca:f8:6a:c0:7f:ce:04:c1:73:d7:82:50:b0:30:
f4:54:ab:19:b5:b0:07:43:84:69:ac:26:1c:d7:cf:48:2e:a3:
70:6f:51:6d:6f:70:72:38:f9:ba:72:40:38:b3:0c:0e:cd:c9:
f9:03:5a:24:a1:ac:4f:ee:08:41:97:bc:2e:2d:92:45:21:9f:
e8:dd:9f:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:24 2024 by rpki-client on console-fra.rpki-client.org