Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/lv1MatVK-Ncr1yvmsfQV8d-Uk7s.roa
File: lv1MatVK-Ncr1yvmsfQV8d-Uk7s.roa (raw, json)
Hash identifier: IJwnMrtsWx37oWGjLEY2BJhtj8B5NslURZLxHPN44ds=
Subject key identifier: 96:FD:4C:6A:D5:4A:F8:D7:2B:D7:2B:E6:B1:F4:15:F1:DF:94:93:BB
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 17F2AD81
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/lv1MatVK-Ncr1yvmsfQV8d-Uk7s.roa
Signing time: Sat 01 Jan 2022 03:59:59 +0000
ROA not before: Sat 01 Jan 2022 03:59:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43943
IP address blocks: 213.91.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401780097 (0x17f2ad81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 03:59:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=96fd4c6ad54af8d72bd72be6b1f415f1df9493bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:fd:7b:52:60:9b:e7:1d:3f:62:2e:45:95:7d:
02:20:08:a8:f1:46:42:1e:74:a1:4b:e0:cd:47:cf:
c6:25:d9:d9:27:74:d8:45:b6:08:48:49:d1:54:aa:
9e:ce:e1:04:92:d2:f2:4c:e0:29:d9:9c:f9:71:7d:
64:4c:b6:08:19:43:65:90:33:de:5e:d4:22:a2:2c:
71:72:0b:f7:21:6f:c1:26:c8:36:3b:03:6a:10:e9:
0a:de:b3:15:05:60:16:20:03:c7:1d:82:cb:a3:39:
a1:cc:3a:3b:0f:d5:ca:58:c7:30:a4:2f:ef:4f:c7:
a3:95:01:2f:ba:4c:9b:1f:1b:0c:9b:fd:3f:01:e2:
88:01:af:ca:1b:f5:d5:d2:7e:e3:74:74:0a:5a:79:
c4:2a:a1:07:cf:7d:14:d5:6b:97:2f:34:a5:6e:0e:
95:57:b1:e6:6b:08:0c:27:00:e5:11:7a:03:94:c3:
1d:ec:68:64:91:00:bb:2f:b2:46:55:c0:42:ff:0f:
d5:c6:81:cb:ce:90:86:fe:54:79:4d:ec:35:a5:de:
2d:71:91:98:7e:82:4a:b7:7d:e7:fc:96:03:bb:6c:
20:37:93:2f:61:5c:86:df:f3:dc:3d:12:28:e7:d4:
63:75:1c:99:4b:13:54:6a:80:f7:3c:af:96:ed:fb:
e6:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:FD:4C:6A:D5:4A:F8:D7:2B:D7:2B:E6:B1:F4:15:F1:DF:94:93:BB
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/lv1MatVK-Ncr1yvmsfQV8d-Uk7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.91.176.0/24
Signature Algorithm: sha256WithRSAEncryption
94:f0:5a:1c:9f:0a:2a:55:ac:1b:9f:c9:f0:13:14:9f:cf:e1:
9b:d6:2a:d1:d9:0c:0c:d8:c1:b3:8e:18:44:bb:1a:b9:d2:ea:
88:4f:fc:58:6b:7c:cc:0b:17:f2:59:ee:7a:f5:48:f3:32:90:
78:07:1f:35:28:d7:87:d0:30:52:87:6d:10:97:58:48:bf:54:
2d:71:e3:51:19:59:b2:52:43:29:0e:09:dd:ff:5c:63:da:20:
82:38:7c:54:3e:68:22:c4:51:8b:cb:6f:ca:e4:c4:24:82:e3:
04:1d:de:47:34:44:7a:9e:1d:38:96:e9:6f:95:d2:4c:7c:ac:
d0:c0:6f:12:35:77:91:e6:7d:34:3d:50:fd:f4:fb:73:2b:14:
06:83:ef:d3:9d:dc:c3:b7:0c:3c:f6:a7:e3:0d:d0:70:5e:d5:
7a:74:a4:9b:e5:79:7b:ca:b8:b9:b9:3b:34:1f:dd:94:d2:3d:
ec:a5:79:40:52:7f:0b:26:a5:bd:09:ed:ff:57:9b:a9:8f:2e:
d5:56:56:78:b5:67:72:b1:13:cf:7d:7a:e7:7a:b0:c7:c9:0f:
21:15:db:63:93:04:c4:32:d8:7a:2d:54:c6:6d:d7:53:02:94:
93:bb:cc:2c:19:f5:33:f5:25:d6:98:b7:63:0a:a0:9c:cb:88:
15:b6:35:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org