Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/LJK2aH8TPdDIYToaaCR2XsgnWqM.roa
File: LJK2aH8TPdDIYToaaCR2XsgnWqM.roa (raw, json)
Hash identifier: wdgZPW0cw1v4CL5L76DcyyZHu2360VbJhoA2wLujaPY=
Subject key identifier: 2C:92:B6:68:7F:13:3D:D0:C8:61:3A:1A:68:24:76:5E:C8:27:5A:A3
Certificate issuer: /CN=521aa024758d8d104e1179c55039816636afe298
Certificate serial: 09919342
Authority key identifier: 52:1A:A0:24:75:8D:8D:10:4E:11:79:C5:50:39:81:66:36:AF:E2:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UhqgJHWNjRBOEXnFUDmBZjav4pg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/LJK2aH8TPdDIYToaaCR2XsgnWqM.roa
Signing time: Sat 01 Jan 2022 08:58:49 +0000
ROA not before: Sat 01 Jan 2022 08:58:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20626
IP address blocks: 185.75.40.0/22 maxlen: 22
83.216.96.0/19 maxlen: 19
62.168.128.0/19 maxlen: 19
2001:b58::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160535362 (0x9919342)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=521aa024758d8d104e1179c55039816636afe298
Validity
Not Before: Jan 1 08:58:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c92b6687f133dd0c8613a1a6824765ec8275aa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:9e:e4:db:79:98:39:69:ee:26:17:a9:6d:60:
b8:74:00:e9:06:3b:d5:34:b6:b0:29:35:14:5f:5a:
ff:05:12:82:40:cf:c4:ce:e3:70:1c:cc:1a:bc:39:
09:ed:34:06:58:a3:82:67:7a:5e:c9:f6:a3:c1:26:
58:9b:2c:b8:91:8c:71:39:0e:8d:96:21:ef:a4:de:
2a:34:6f:40:1b:34:8d:a7:33:78:ec:b4:6e:89:6b:
e2:48:56:ed:7d:71:4b:73:c3:11:c1:a4:6a:f5:69:
e6:ba:a7:c5:71:11:ce:13:82:7a:ed:89:0c:10:83:
20:53:57:75:d3:dd:2d:cc:a5:a5:d4:82:56:ab:67:
60:19:cf:39:4f:2b:2f:33:bb:7e:c5:5c:a1:f3:23:
9c:df:31:28:d2:a9:75:ad:95:10:0c:0d:30:1e:ff:
fb:6c:d0:f7:33:96:1c:9e:9a:5a:e5:44:49:cc:29:
a7:a7:5e:70:e7:6c:8a:42:d8:06:97:d0:76:12:77:
e4:8c:a6:cb:89:53:1d:37:19:39:4c:dd:6f:2c:ab:
f9:d4:69:be:70:2e:2b:29:68:41:c3:d6:1c:f8:2f:
be:b5:a3:85:e9:24:4b:5f:c2:73:8b:ae:b2:33:06:
a6:db:a0:76:91:6b:26:f2:47:e8:b9:5d:7c:b9:27:
59:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:92:B6:68:7F:13:3D:D0:C8:61:3A:1A:68:24:76:5E:C8:27:5A:A3
X509v3 Authority Key Identifier:
keyid:52:1A:A0:24:75:8D:8D:10:4E:11:79:C5:50:39:81:66:36:AF:E2:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UhqgJHWNjRBOEXnFUDmBZjav4pg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/LJK2aH8TPdDIYToaaCR2XsgnWqM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.168.128.0/19
83.216.96.0/19
185.75.40.0/22
IPv6:
2001:b58::/29
Signature Algorithm: sha256WithRSAEncryption
92:f1:22:68:31:33:39:3a:ef:0d:77:50:b5:42:58:b1:13:27:
e6:91:0d:3e:31:cb:e0:32:94:80:df:52:ff:6c:bb:1d:1c:8b:
49:74:3b:0e:9a:8c:d4:77:21:a0:c4:a0:93:95:ca:dd:77:ac:
bf:b2:f2:f6:1a:76:3c:2d:7e:4c:16:95:ab:10:ca:6b:89:12:
d3:5c:87:2a:b5:5a:5c:2d:8c:58:77:2c:8d:77:75:6f:4c:68:
76:fd:2e:c1:6d:22:2e:86:97:9b:3a:aa:e3:1e:80:b0:cc:6f:
8b:da:20:ae:e5:db:ae:84:e9:30:6e:1b:89:bf:bf:eb:e3:f6:
32:43:b2:ae:4e:67:d3:f2:ae:40:c3:62:d5:0d:2a:5d:52:09:
ef:d4:46:65:40:3a:4a:19:dc:12:7a:07:53:73:0b:09:5e:20:
aa:b9:1e:25:d0:e8:0e:5b:cd:f0:bd:52:e8:9d:38:cd:59:a4:
de:6e:e4:45:cb:00:e3:1a:c5:f4:ae:9f:3a:31:8d:28:26:46:
64:de:64:bc:45:32:16:79:0c:7f:91:d6:f7:92:24:7e:7e:05:
cf:2d:f3:60:b3:47:f4:5c:37:b0:6d:b8:15:b5:87:64:d1:f7:
ae:1e:36:2f:fd:cb:14:73:5e:7e:f2:8e:27:57:7e:07:41:4c:
12:8f:f4:d4
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:49 2024 by rpki-client on console-ams.rpki-client.org