Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/LaVG1aWT7trIGeA0X4N6_eulUDc.roa
File: LaVG1aWT7trIGeA0X4N6_eulUDc.roa (raw, json)
Hash identifier: gMffCIU6zdmL+eK3KsXAlUO0EQ0ArfIC/+plWhF2XRc=
Subject key identifier: 2D:A5:46:D5:A5:93:EE:DA:C8:19:E0:34:5F:83:7A:FD:EB:A5:50:37
Certificate issuer: /CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Certificate serial: 0752103A
Authority key identifier: 32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/LaVG1aWT7trIGeA0X4N6_eulUDc.roa
Signing time: Fri 11 Feb 2022 09:48:02 +0000
ROA not before: Fri 11 Feb 2022 09:48:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47823
IP address blocks: 185.94.196.0/22 maxlen: 24
193.219.101.0/24 maxlen: 24
2.58.152.0/22 maxlen: 24
193.219.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122818618 (0x752103a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Validity
Not Before: Feb 11 09:48:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2da546d5a593eedac819e0345f837afdeba55037
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:65:6b:37:11:99:6d:29:a0:c2:3a:77:6a:e1:
e8:a6:6f:a3:f1:eb:02:2d:63:73:56:38:ec:91:70:
1c:f4:52:07:ed:7d:0c:81:ab:65:0b:8a:9b:a4:bf:
7a:9c:fc:49:37:31:72:a8:8d:52:e1:fe:61:aa:ff:
92:0d:e6:b7:0e:bf:0a:bc:ca:c0:21:54:7e:85:8a:
5d:af:94:80:48:f7:b1:e5:26:61:69:1f:e8:ca:f6:
23:3a:69:cd:15:86:04:7c:f9:d8:a0:55:05:43:60:
bf:c6:1a:38:4b:fe:fa:68:a9:e5:62:74:d7:f1:3c:
32:8c:47:24:a2:ff:53:1b:c5:01:d9:a5:e3:76:d8:
f4:fe:ed:30:93:69:8e:ee:3c:e8:c2:1c:2b:97:26:
19:0f:ad:0a:bd:b5:1a:b3:4b:fe:86:d5:a7:63:31:
2e:7a:16:7b:33:74:a9:36:c7:40:18:ee:83:87:c6:
62:df:84:38:78:96:56:9a:35:29:74:50:0b:4d:8f:
ba:de:e6:ca:ff:8f:83:c9:ac:ea:1d:c3:ae:e4:5b:
53:ac:5e:fc:32:3f:47:db:cd:49:81:4f:b3:4e:cc:
3e:d2:f6:a2:4b:7d:39:a5:a1:89:16:9f:ae:46:42:
9e:b4:c3:dd:3a:37:e7:b8:7c:fc:1d:c2:44:d4:4d:
bc:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:A5:46:D5:A5:93:EE:DA:C8:19:E0:34:5F:83:7A:FD:EB:A5:50:37
X509v3 Authority Key Identifier:
keyid:32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/LaVG1aWT7trIGeA0X4N6_eulUDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.152.0/22
185.94.196.0/22
193.219.101.0/24
193.219.121.0/24
Signature Algorithm: sha256WithRSAEncryption
28:57:9f:de:31:87:20:1a:88:73:44:f2:1c:96:06:85:92:40:
91:f6:21:4f:e5:b7:d8:25:2e:d8:c7:56:42:ea:b1:2e:c4:fd:
64:2b:55:f7:ff:e0:4b:ce:a0:d6:cd:aa:af:00:dc:37:f5:76:
b1:bf:8f:42:02:51:5b:f2:aa:86:ed:1c:1a:ba:d4:3a:3d:5d:
1d:6a:a8:ab:17:cb:38:73:fa:15:c9:3f:5a:a5:6b:e5:af:f6:
bb:b9:22:e6:d1:2a:ac:74:7c:89:70:48:92:ec:24:0e:43:2a:
a9:f9:8f:9f:24:a3:20:84:e1:66:b4:91:64:7e:38:0a:9a:ed:
f4:4c:74:2f:d3:a0:8f:8f:6a:3a:55:f5:62:43:48:4c:62:27:
7e:bd:27:48:f5:e0:02:53:1c:db:63:e3:15:80:02:fc:b4:52:
e6:2d:ba:cd:91:03:24:47:1a:6c:3d:b9:36:97:70:b6:bf:70:
ff:59:9e:9e:9d:f0:f7:00:af:ba:0c:05:cb:e6:23:49:69:d2:
09:cf:10:2a:22:ae:6b:19:61:09:47:57:24:46:c6:df:01:df:
85:44:c6:00:f1:8a:ad:a4:66:56:59:5f:f8:f0:72:cd:38:a7:
ae:f1:f2:ba:41:1d:10:2a:fe:2b:3d:6a:67:eb:64:31:1d:f0:
9b:bb:2a:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:15 2024 by rpki-client on console-fra.rpki-client.org