Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/c48a2d-097d-498b-bc62-b513a0c2f353/1/Lm641ZnXXubbYCtl3FKWfJfPzz4.roa
File: Lm641ZnXXubbYCtl3FKWfJfPzz4.roa (raw, json)
Hash identifier: Pcnm3kCmOu5NFTckNEr/udIWeUl52yOUCUBVy/sJ2nc=
Subject key identifier: 2E:6E:B8:D5:99:D7:5E:E6:DB:60:2B:65:DC:52:96:7C:97:CF:CF:3E
Certificate issuer: /CN=9a2ae8d4b01687021b77b874f110c1b6dbfec651
Certificate serial: 05C7D5
Authority key identifier: 9A:2A:E8:D4:B0:16:87:02:1B:77:B8:74:F1:10:C1:B6:DB:FE:C6:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/miro1LAWhwIbd7h08RDBttv-xlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/c48a2d-097d-498b-bc62-b513a0c2f353/1/Lm641ZnXXubbYCtl3FKWfJfPzz4.roa
Signing time: Fri 15 Apr 2022 06:27:25 +0000
ROA not before: Fri 15 Apr 2022 06:27:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 217.28.143.0/24 maxlen: 24
2a12:26c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 378837 (0x5c7d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a2ae8d4b01687021b77b874f110c1b6dbfec651
Validity
Not Before: Apr 15 06:27:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e6eb8d599d75ee6db602b65dc52967c97cfcf3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e3:05:c0:be:7e:d9:1b:f5:b5:a6:43:36:dc:
84:af:42:4a:77:f7:57:b8:4c:66:1e:3c:5f:fe:8c:
3c:90:61:c3:32:54:1c:93:8d:60:7a:17:cc:55:d2:
62:2e:36:4a:8d:89:ae:2d:43:f9:f9:a8:b4:e1:bd:
8b:7a:0c:28:0c:8e:3a:9d:49:95:99:cb:8e:32:64:
2d:02:b1:f3:28:82:71:ae:27:5c:95:d0:d3:1f:99:
c9:d4:26:01:31:24:dd:1c:51:31:5f:53:a6:03:7d:
ad:52:93:30:e2:e7:a2:4e:91:e6:48:d7:f8:73:42:
33:d7:46:16:f9:3a:62:26:45:01:91:25:fd:90:48:
8b:23:2c:49:b4:37:b7:a4:ff:88:bb:8f:03:e4:3c:
97:70:22:0b:68:7f:1f:d5:0c:d6:78:81:53:15:9f:
20:86:59:f0:d4:6f:84:e3:87:53:ce:41:db:7a:35:
1f:ad:25:07:1a:19:51:58:33:85:31:78:73:8c:61:
cc:56:99:c7:61:c5:49:29:23:ba:19:09:f5:90:7e:
fd:a6:d7:2f:d0:60:6d:0f:97:f8:29:89:e0:cf:85:
48:86:71:d4:06:9c:d6:c8:dc:71:1e:63:40:82:95:
24:01:ec:f0:b3:46:ec:be:24:77:6a:0a:aa:a6:93:
fe:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:6E:B8:D5:99:D7:5E:E6:DB:60:2B:65:DC:52:96:7C:97:CF:CF:3E
X509v3 Authority Key Identifier:
keyid:9A:2A:E8:D4:B0:16:87:02:1B:77:B8:74:F1:10:C1:B6:DB:FE:C6:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/miro1LAWhwIbd7h08RDBttv-xlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/c48a2d-097d-498b-bc62-b513a0c2f353/1/Lm641ZnXXubbYCtl3FKWfJfPzz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/c48a2d-097d-498b-bc62-b513a0c2f353/1/miro1LAWhwIbd7h08RDBttv-xlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.28.143.0/24
IPv6:
2a12:26c0::/29
Signature Algorithm: sha256WithRSAEncryption
25:6a:14:5e:02:25:74:63:7b:2d:89:57:fe:96:65:79:9b:33:
ec:f8:6f:9f:7e:5c:f4:b4:be:46:7d:58:3f:21:73:ca:a4:b9:
ed:63:b4:6a:1c:de:4e:13:8e:c7:dd:e7:b0:28:32:3e:91:ce:
07:ed:5c:18:ab:ed:15:7d:ce:9f:d7:f5:37:b6:4a:6e:57:76:
70:1e:20:f2:ac:b8:aa:9a:60:f2:27:5f:36:35:5c:6b:b9:6d:
9e:a1:e8:39:0c:40:2d:46:f0:2e:4c:9a:5a:7e:44:60:f7:f5:
a0:ef:61:e0:6c:98:e6:85:c6:25:f5:74:b2:a0:a1:2f:f4:6b:
72:1f:9b:49:d7:fd:f8:03:28:10:f4:03:3e:01:73:8d:05:8f:
84:73:b6:da:66:a5:07:8d:cc:75:d5:9e:bf:2b:2a:82:3b:33:
fb:ba:7e:60:3c:49:a9:8b:39:3e:7a:68:f7:7a:9e:eb:8d:20:
20:bc:7c:d7:a2:27:f2:52:c8:a8:3b:c1:a3:8b:b3:7a:58:07:
2b:1f:e6:00:93:35:d5:b1:e3:e5:82:be:92:46:9a:fc:30:47:
28:cc:e9:85:a2:da:8a:79:de:d2:2e:c7:60:6d:74:33:26:da:
dc:7d:d3:b9:09:53:97:39:e3:b4:2b:99:02:90:bc:79:b7:63:
bc:f2:17:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:45 2024 by rpki-client on console-ams.rpki-client.org