Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/542603-5462-4b8d-8bc4-535cc0c102f0/1/lMIvOhxZ2462ROR7LKYdTjfwR_E.roa
File: lMIvOhxZ2462ROR7LKYdTjfwR_E.roa (raw, json)
Hash identifier: rgdytZESNU9LzOUE3Kvk4ntMZI1Bhj6HzTYJC70d0fk=
Subject key identifier: 94:C2:2F:3A:1C:59:DB:8E:B6:44:E4:7B:2C:A6:1D:4E:37:F0:47:F1
Certificate issuer: /CN=c2fd2c74ad6fae2ddd0f6e9c39fde831893ae6f9
Certificate serial: 0181F6687652058EBA4B7CA409A129F0FD66
Authority key identifier: C2:FD:2C:74:AD:6F:AE:2D:DD:0F:6E:9C:39:FD:E8:31:89:3A:E6:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wv0sdK1vri3dD26cOf3oMYk65vk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/542603-5462-4b8d-8bc4-535cc0c102f0/1/lMIvOhxZ2462ROR7LKYdTjfwR_E.roa
Signing time: Wed 13 Jul 2022 07:14:09 +0000
ROA not before: Wed 13 Jul 2022 07:14:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39729
IP address blocks: 185.110.66.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f6:68:76:52:05:8e:ba:4b:7c:a4:09:a1:29:f0:fd:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2fd2c74ad6fae2ddd0f6e9c39fde831893ae6f9
Validity
Not Before: Jul 13 07:14:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=94c22f3a1c59db8eb644e47b2ca61d4e37f047f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:6c:c1:f1:78:12:7f:c0:63:d3:e8:30:3b:5f:
cf:4c:17:7c:e8:2f:d0:df:1b:1a:18:8b:b7:47:f8:
b2:47:b5:ae:64:2f:f0:73:b8:c4:07:58:73:01:1a:
1e:a0:cd:cf:08:ee:56:6e:c1:d8:a8:5d:da:f0:73:
c5:40:d7:b5:c3:26:81:ba:fa:b6:bd:19:92:7c:47:
dd:2a:b4:cd:76:8a:f7:1e:03:c2:29:e4:aa:29:29:
73:13:4e:fe:0d:82:cb:25:4b:4a:03:12:3d:dc:2a:
41:0d:9e:9b:37:6c:57:8b:af:c5:36:1a:7f:04:a1:
48:7c:54:17:a9:8d:1a:7c:f6:a4:75:bc:82:c0:34:
e9:62:11:70:e9:22:aa:e7:1c:9e:2e:16:9d:cd:0c:
bd:4e:58:8f:6a:5c:51:8b:d8:07:69:4c:58:f0:02:
0b:ad:fe:58:01:35:71:b6:8e:56:a4:f4:ef:2b:49:
04:21:8f:cc:bf:9a:47:b2:41:bf:24:2f:ca:63:2c:
37:9f:ff:ad:55:32:d5:df:bd:ab:ee:8b:a9:61:8e:
5d:c7:71:dc:86:a3:6c:fe:ba:b9:16:68:12:ff:7d:
a1:bd:56:14:3f:7d:d6:cd:12:71:c5:32:81:9f:02:
e7:c0:b9:f3:81:15:64:16:5d:a0:84:14:26:e1:59:
15:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:C2:2F:3A:1C:59:DB:8E:B6:44:E4:7B:2C:A6:1D:4E:37:F0:47:F1
X509v3 Authority Key Identifier:
keyid:C2:FD:2C:74:AD:6F:AE:2D:DD:0F:6E:9C:39:FD:E8:31:89:3A:E6:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wv0sdK1vri3dD26cOf3oMYk65vk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/542603-5462-4b8d-8bc4-535cc0c102f0/1/lMIvOhxZ2462ROR7LKYdTjfwR_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/542603-5462-4b8d-8bc4-535cc0c102f0/1/wv0sdK1vri3dD26cOf3oMYk65vk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.66.0/23
Signature Algorithm: sha256WithRSAEncryption
55:13:41:02:c3:5a:1e:76:8f:c6:43:13:14:5f:37:e2:8a:29:
77:a0:5f:ea:40:69:90:06:27:67:2a:07:8b:73:e9:78:65:d1:
8c:d0:78:fa:04:9f:fe:6b:19:9c:dd:7a:9b:af:bf:4e:7c:a5:
22:53:d6:5c:2e:56:90:e3:47:79:be:ea:a7:ac:29:47:53:f9:
6d:6f:3c:1d:46:6f:81:4e:1b:09:79:41:b3:27:b0:e3:03:38:
8b:22:e9:71:04:3d:a1:e0:01:20:24:37:06:6a:8c:37:1e:bd:
79:14:c6:d6:60:0f:0a:3f:22:76:47:36:67:a5:3a:0c:d9:d8:
aa:8e:7e:26:9a:ba:d0:17:a0:96:a4:c7:05:9b:b8:a9:bc:62:
ee:1b:25:08:82:01:31:97:de:40:b1:72:0b:ec:4b:04:b9:40:
df:0c:4c:60:36:a5:71:53:74:61:1f:0f:33:1c:dc:59:45:53:
50:1c:c5:1e:0d:61:74:d5:61:6a:06:f4:7e:61:ff:ac:41:b5:
df:05:c8:95:10:1b:3c:9d:a5:e9:63:76:09:2b:49:2c:9a:8c:
0c:1b:b5:99:f4:08:88:9f:2b:cc:00:9e:61:f2:f3:0f:83:1f:
97:90:8a:f5:0d:91:bf:84:77:e3:37:0c:17:91:f9:e0:2f:43:
02:44:28:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:56 2024 by rpki-client on console-fra.rpki-client.org