Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/94c919-e6ea-4e18-af12-ed5b01d2528c/1/LQjGII-jbGo9akCV-ELLBZW1BbE.roa
File: LQjGII-jbGo9akCV-ELLBZW1BbE.roa (raw, json)
Hash identifier: exZGuz61UZupoa2T3luEX62yF7mtne/v+ndXis5EGcE=
Subject key identifier: 2D:08:C6:20:8F:A3:6C:6A:3D:6A:40:95:F8:42:CB:05:95:B5:05:B1
Certificate issuer: /CN=5ab1996515884434b87882b5b972a6e529ffb00b
Certificate serial: 03D3789F
Authority key identifier: 5A:B1:99:65:15:88:44:34:B8:78:82:B5:B9:72:A6:E5:29:FF:B0:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WrGZZRWIRDS4eIK1uXKm5Sn_sAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/94c919-e6ea-4e18-af12-ed5b01d2528c/1/LQjGII-jbGo9akCV-ELLBZW1BbE.roa
Signing time: Sat 01 Jan 2022 12:54:12 +0000
ROA not before: Sat 01 Jan 2022 12:54:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209103
IP address blocks: 185.159.157.0/24 maxlen: 24
185.159.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64190623 (0x3d3789f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ab1996515884434b87882b5b972a6e529ffb00b
Validity
Not Before: Jan 1 12:54:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d08c6208fa36c6a3d6a4095f842cb0595b505b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:b8:09:8c:14:03:67:1a:b7:bb:71:ba:e3:68:
b6:fc:d4:f9:a2:76:d3:80:09:c3:3b:ac:08:c9:84:
54:09:ef:f9:8a:65:b4:0f:9f:48:86:a9:8e:cd:86:
4a:24:30:83:ab:18:c7:69:39:f4:1e:58:4b:30:41:
58:62:5d:3f:fa:c8:53:f9:71:14:b4:00:e4:49:66:
4d:d6:2d:55:7a:24:3a:8e:86:ef:4b:bc:45:cc:f4:
3a:18:2f:37:54:51:7a:d2:19:19:ad:36:13:26:a3:
ce:10:eb:98:df:99:86:b4:eb:7f:d0:3c:04:03:e7:
81:cd:14:1c:a5:9e:dd:47:c0:76:cf:2b:06:7d:c7:
16:d3:d4:9c:74:f2:16:d8:c9:ab:7f:60:d3:ec:10:
b3:6c:ac:e7:b2:38:1f:ce:64:e5:7b:98:37:17:67:
b3:83:45:20:c7:f6:d1:f4:ee:4f:15:77:74:db:f8:
51:90:fa:81:d8:70:4b:ef:80:f0:7b:e7:25:d3:b7:
53:57:d3:3b:b2:e9:ba:94:4f:c6:92:31:6b:a5:7b:
c7:18:19:ee:38:8a:7d:38:b6:35:de:55:08:e1:e6:
02:a5:aa:28:8e:d6:a6:14:d5:81:dc:5c:c3:ca:90:
a2:d1:68:41:92:52:d0:9b:40:d2:b1:89:7f:dc:9c:
de:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:08:C6:20:8F:A3:6C:6A:3D:6A:40:95:F8:42:CB:05:95:B5:05:B1
X509v3 Authority Key Identifier:
keyid:5A:B1:99:65:15:88:44:34:B8:78:82:B5:B9:72:A6:E5:29:FF:B0:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WrGZZRWIRDS4eIK1uXKm5Sn_sAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/94c919-e6ea-4e18-af12-ed5b01d2528c/1/LQjGII-jbGo9akCV-ELLBZW1BbE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/94c919-e6ea-4e18-af12-ed5b01d2528c/1/WrGZZRWIRDS4eIK1uXKm5Sn_sAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.159.157.0/24
185.159.159.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:e6:77:c9:26:ee:08:d6:12:49:1b:ac:c6:4d:80:4c:da:19:
fc:80:a6:a6:a3:a2:4f:d6:b0:82:8d:90:20:10:f2:9f:5b:b4:
49:62:f8:a4:02:87:44:77:4b:57:0a:c4:2c:39:23:da:3c:e1:
62:6b:ec:7f:cd:0c:43:b3:06:bf:36:e0:7e:7b:87:cb:89:1a:
76:6c:82:8b:ce:4c:9e:aa:4c:4f:0f:dd:f1:6c:33:85:92:ab:
a5:4d:c9:fc:1f:56:01:12:bd:6a:76:89:8f:da:e7:0e:1c:28:
07:1a:6b:47:34:b8:b4:a0:9c:28:f9:a1:9f:7d:20:73:39:5a:
b2:bc:c5:03:55:3f:02:6d:39:61:e0:0a:12:45:fe:5e:85:33:
21:25:d5:36:87:ee:99:b0:d5:d3:23:9f:92:f8:6d:9f:85:10:
1c:e1:ea:d7:f3:66:6b:fd:7a:64:70:0b:2e:f2:f0:2c:e4:6d:
06:d4:8c:86:e6:1d:95:86:e9:3d:49:85:ac:a7:8f:64:85:cb:
5c:81:ed:35:95:c2:3a:74:9d:27:b5:f0:8d:de:7b:73:75:fa:
c5:5e:54:a6:2d:6a:d2:ba:a4:4a:12:c2:19:c1:ec:2f:fb:46:
9d:b6:80:e8:cc:11:97:2d:84:f6:b8:b7:a0:c8:ce:05:b9:72:
14:dd:04:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:12 2024 by rpki-client on console-fra.rpki-client.org