Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/652267-ea13-4892-9ffa-09c1b7336a51/1/LAMZlfesXe9EEvUlxhAsGLz3Z24.roa
File: LAMZlfesXe9EEvUlxhAsGLz3Z24.roa (raw, json)
Hash identifier: WL4gAXCXYnI9VOhGDk5k6YnVDlydL2lsc/OtUVoz0Vw=
Subject key identifier: 2C:03:19:95:F7:AC:5D:EF:44:12:F5:25:C6:10:2C:18:BC:F7:67:6E
Certificate issuer: /CN=92205f5a64ea1fb090ad26dcfdb18cefb9aabd8d
Certificate serial: 02AF3CE5
Authority key identifier: 92:20:5F:5A:64:EA:1F:B0:90:AD:26:DC:FD:B1:8C:EF:B9:AA:BD:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kiBfWmTqH7CQrSbc_bGM77mqvY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/652267-ea13-4892-9ffa-09c1b7336a51/1/LAMZlfesXe9EEvUlxhAsGLz3Z24.roa
Signing time: Sat 01 Jan 2022 14:06:34 +0000
ROA not before: Sat 01 Jan 2022 14:06:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41320
IP address blocks: 195.26.94.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45038821 (0x2af3ce5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92205f5a64ea1fb090ad26dcfdb18cefb9aabd8d
Validity
Not Before: Jan 1 14:06:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c031995f7ac5def4412f525c6102c18bcf7676e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:c6:57:f8:10:ca:38:7d:19:3f:f6:89:d3:ac:
e9:8a:f1:a3:de:4d:9f:fe:2c:d8:81:05:62:f8:9e:
55:a9:7c:ac:dc:90:39:ae:f7:28:7d:e7:98:e1:ac:
22:e7:76:91:d3:b9:c2:04:7d:72:53:5b:5d:65:7f:
08:8d:46:56:37:35:c0:3b:bd:4a:f1:24:6a:1a:16:
e5:1b:77:2b:52:d4:a3:1d:4c:87:c1:98:92:60:a3:
86:d2:a3:c9:c5:fc:3c:3e:9f:ac:ac:c5:5a:dc:9c:
0c:3d:62:09:f2:62:85:5b:73:4a:5a:b1:89:1b:fb:
0a:f9:f5:92:a3:c3:53:5b:be:bd:49:33:08:43:19:
69:08:db:ec:11:b5:64:b5:0e:cb:24:c5:42:b7:94:
80:b6:9d:e6:aa:b9:77:3f:c5:c8:38:06:84:5c:83:
14:82:71:05:94:c7:e6:7d:31:32:d0:62:18:ef:be:
72:ba:36:e6:0c:41:5a:cd:4d:54:29:60:8c:43:bd:
9e:87:47:d7:54:5c:04:55:be:8b:aa:0c:b7:c8:2f:
e6:bb:c9:03:e8:e8:ed:76:1a:d0:d8:38:11:ae:84:
9a:c3:88:e7:ba:e1:ef:26:82:93:d8:14:96:53:0e:
63:51:6d:4e:0a:af:db:4c:fa:2c:c2:4d:b6:84:44:
91:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:03:19:95:F7:AC:5D:EF:44:12:F5:25:C6:10:2C:18:BC:F7:67:6E
X509v3 Authority Key Identifier:
keyid:92:20:5F:5A:64:EA:1F:B0:90:AD:26:DC:FD:B1:8C:EF:B9:AA:BD:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kiBfWmTqH7CQrSbc_bGM77mqvY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/652267-ea13-4892-9ffa-09c1b7336a51/1/LAMZlfesXe9EEvUlxhAsGLz3Z24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/652267-ea13-4892-9ffa-09c1b7336a51/1/kiBfWmTqH7CQrSbc_bGM77mqvY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.26.94.0/23
Signature Algorithm: sha256WithRSAEncryption
b0:50:b5:76:48:8b:8e:8c:78:f8:06:0d:92:7f:ea:42:fd:fe:
df:4d:7f:09:94:b8:a6:28:ef:b2:26:6d:c9:97:f0:d6:20:3b:
b2:ed:dc:6c:38:a3:81:9a:f3:05:73:df:5b:2c:04:3f:7d:df:
d9:e8:8d:f6:4f:70:e6:e3:a6:44:96:b1:92:cb:44:f2:6f:48:
3e:7d:fb:c6:06:a0:1f:6d:ba:99:9b:c5:1a:14:94:46:84:54:
93:e1:c8:46:a2:0e:03:e3:d9:df:ef:01:b1:fe:59:bb:f8:0e:
2c:93:fe:f6:d0:35:1c:77:c2:10:42:dd:f7:4d:98:82:37:10:
21:8a:3a:5b:e7:47:38:10:e2:61:e4:e8:db:4c:2f:dc:71:7e:
96:b8:7a:81:15:f2:24:6f:07:3a:cc:c0:65:1e:1a:e9:c9:87:
74:02:54:84:16:aa:97:59:0e:2b:fb:12:a6:bf:71:4e:04:de:
10:3c:9c:ae:33:ce:96:c5:0d:ba:aa:f1:55:e0:60:1b:2f:1d:
d7:cc:77:e4:5a:72:d7:6f:a5:92:26:59:d3:c7:45:73:20:d3:
cf:0f:f5:99:d3:44:d6:25:a2:62:6c:74:9a:68:d3:75:53:86:
38:dc:20:02:d4:39:9f:c1:4d:de:95:87:5b:82:bc:91:df:94:
a3:98:9b:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:49 2024 by rpki-client on console-fra.rpki-client.org