Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/ccc1cb-0721-4542-9d65-7e610bab8178/1/LWN8jMPKCyHEIYb8HLUvBL6btMM.roa
File: LWN8jMPKCyHEIYb8HLUvBL6btMM.roa (raw, json)
Hash identifier: +kfyDVfFBYJtADuQddfkRR8cfu+FfJ18xcgKNwXdwTM=
Subject key identifier: 2D:63:7C:8C:C3:CA:0B:21:C4:21:86:FC:1C:B5:2F:04:BE:9B:B4:C3
Certificate issuer: /CN=179fbe82afcb4e54c7d497123a5c837114c57162
Certificate serial: 15B14F80
Authority key identifier: 17:9F:BE:82:AF:CB:4E:54:C7:D4:97:12:3A:5C:83:71:14:C5:71:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5--gq_LTlTH1JcSOlyDcRTFcWI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/ccc1cb-0721-4542-9d65-7e610bab8178/1/LWN8jMPKCyHEIYb8HLUvBL6btMM.roa
Signing time: Sat 01 Jan 2022 12:02:03 +0000
ROA not before: Sat 01 Jan 2022 12:02:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202146
IP address blocks: 185.52.64.0/22 maxlen: 24
2a04:c500::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 363941760 (0x15b14f80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179fbe82afcb4e54c7d497123a5c837114c57162
Validity
Not Before: Jan 1 12:02:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d637c8cc3ca0b21c42186fc1cb52f04be9bb4c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:34:e8:99:47:f0:ef:b1:fb:d6:0e:ff:dd:d0:
f1:c7:18:35:ab:b4:a3:d5:e3:6a:5a:b3:6e:66:9c:
81:4d:57:34:06:ab:cb:a7:c9:cf:85:a2:4e:dd:e8:
de:ba:a3:9e:d7:13:36:0f:8a:52:a8:ad:ef:8b:3c:
bb:32:d1:de:9d:58:af:bb:40:f2:5e:4c:0a:d7:08:
a5:13:69:e2:a8:05:d9:80:85:5c:28:6c:71:d4:3b:
13:83:b6:11:7a:2d:cc:19:5b:09:81:75:b1:fc:be:
35:67:32:e3:52:07:0c:ec:bd:51:a9:b9:33:04:dd:
de:4f:45:c6:2e:55:9b:2a:db:d6:7c:9f:ef:42:63:
0f:12:7a:03:76:63:2c:51:cb:f9:80:a4:20:96:64:
08:98:bf:85:a6:de:31:39:13:e2:4d:7b:16:ba:a7:
0f:79:81:4c:79:7b:82:50:4f:5a:9e:19:8d:0b:4f:
31:3f:62:70:25:a0:39:e6:36:48:12:c4:83:5f:99:
24:aa:1e:ee:ff:02:54:31:be:b1:af:60:f0:83:f5:
d4:98:df:d1:43:b2:ba:27:a0:12:af:92:cc:79:3c:
c2:9d:6f:5e:cd:d0:3d:12:f7:5a:df:e4:81:db:21:
d5:c3:f3:a0:97:3c:03:5d:07:1a:75:ab:57:9c:b3:
33:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:63:7C:8C:C3:CA:0B:21:C4:21:86:FC:1C:B5:2F:04:BE:9B:B4:C3
X509v3 Authority Key Identifier:
keyid:17:9F:BE:82:AF:CB:4E:54:C7:D4:97:12:3A:5C:83:71:14:C5:71:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5--gq_LTlTH1JcSOlyDcRTFcWI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ccc1cb-0721-4542-9d65-7e610bab8178/1/LWN8jMPKCyHEIYb8HLUvBL6btMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ccc1cb-0721-4542-9d65-7e610bab8178/1/F5--gq_LTlTH1JcSOlyDcRTFcWI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.52.64.0/22
IPv6:
2a04:c500::/29
Signature Algorithm: sha256WithRSAEncryption
ac:51:ee:f5:a5:ba:6b:c2:9c:d8:ac:6c:de:f4:42:2c:83:22:
95:07:7e:ad:85:57:a6:53:97:7e:33:fc:71:37:c8:cd:6e:1a:
a3:47:80:7b:a8:8d:54:f1:46:d9:e1:ab:03:21:91:38:4b:9e:
b4:f2:2e:43:f3:61:46:c5:bc:50:28:61:b5:23:0c:ef:b6:15:
87:c9:3a:6b:90:eb:ea:42:da:be:51:0c:02:58:f1:4f:79:1e:
ba:03:69:c3:f9:e7:55:0d:19:8b:6d:51:52:fd:ae:f7:bc:9f:
05:3f:ab:e2:75:c0:23:90:a9:c9:46:db:8f:99:72:9a:51:53:
4f:fc:4d:51:fb:fc:8a:b0:dc:8a:75:74:63:a2:bb:92:0b:d0:
00:2a:58:a2:ad:13:7c:0a:d4:b4:67:d2:50:b2:81:e1:a5:27:
4e:f9:c5:48:7f:88:f3:8d:46:f3:88:50:33:31:76:64:2e:2f:
10:b3:56:fa:77:75:6b:2a:cf:c7:d9:da:06:a4:e8:06:39:6d:
de:00:f0:77:d3:7e:c2:d9:eb:bc:dc:35:ed:63:d1:3a:0f:f3:
28:57:90:4b:d5:e6:3a:ec:2b:f1:39:54:36:a9:5f:10:46:b1:
7a:3e:1e:26:cb:a3:ea:59:a9:4b:1e:78:a8:5c:dc:1e:fc:07:
b5:fa:e6:a5
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEFbFPgDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
NzlmYmU4MmFmY2I0ZTU0YzdkNDk3MTIzYTVjODM3MTE0YzU3MTYyMB4XDTIyMDEw
MTEyMDIwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmQ2MzdjOGNjM2Nh
MGIyMWM0MjE4NmZjMWNiNTJmMDRiZTliYjRjMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPg06JlH8O+x+9YO/93Q8ccYNau0o9XjalqzbmacgU1XNAar
y6fJz4WiTt3o3rqjntcTNg+KUqit74s8uzLR3p1Yr7tA8l5MCtcIpRNp4qgF2YCF
XChscdQ7E4O2EXotzBlbCYF1sfy+NWcy41IHDOy9Uam5MwTd3k9Fxi5Vmyrb1nyf
70JjDxJ6A3ZjLFHL+YCkIJZkCJi/habeMTkT4k17FrqnD3mBTHl7glBPWp4ZjQtP
MT9icCWgOeY2SBLEg1+ZJKoe7v8CVDG+sa9g8IP11Jjf0UOyuiegEq+SzHk8wp1v
Xs3QPRL3Wt/kgdsh1cPzoJc8A10HGnWrV5yzMzECAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBQtY3yMw8oLIcQhhvwctS8Evpu0wzAfBgNVHSMEGDAWgBQXn76Cr8tOVMfU
lxI6XINxFMVxYjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0Y1LS1ncV9MVGxUSDFKY1NPbHlEY1JURmNXSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2IvY2NjMWNiLTA3MjEtNDU0Mi05ZDY1LTdlNjEwYmFiODE3OC8x
L0xXTjhqTVBLQ3lIRUlZYjhITFV2Qkw2YnRNTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Iv
Y2NjMWNiLTA3MjEtNDU0Mi05ZDY1LTdlNjEwYmFiODE3OC8xL0Y1LS1ncV9MVGxU
SDFKY1NPbHlEY1JURmNXSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArk0QDANBAIAAjAHAwUDKgTFADAN
BgkqhkiG9w0BAQsFAAOCAQEArFHu9aW6a8Kc2Kxs3vRCLIMilQd+rYVXplOXfjP8
cTfIzW4ao0eAe6iNVPFG2eGrAyGROEuetPIuQ/NhRsW8UChhtSMM77YVh8k6a5Dr
6kLavlEMAljxT3keugNpw/nnVQ0Zi21RUv2u97yfBT+r4nXAI5CpyUbbj5lymlFT
T/xNUfv8irDcinV0Y6K7kgvQACpYoq0TfArUtGfSULKB4aUnTvnFSH+I841G84hQ
MzF2ZC4vELNW+nd1ayrPx9naBqToBjlt3gDwd9N+wtnrvNw17WPROg/zKFeQS9Xm
Ouwr8TlUNqlfEEaxej4eJsuj6lmpSx54qFzcHvwHtfrmpQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:04 2024 by rpki-client on console-fra.rpki-client.org