Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/LISA-JecVSb3A0rC1BITBb9UehQ.roa
File: LISA-JecVSb3A0rC1BITBb9UehQ.roa (raw, json)
Hash identifier: VfdsmgQfKbGL9mjxf+3Vm+D04sx2oiSCuDiTXG06bME=
Subject key identifier: 2C:84:80:F8:97:9C:55:26:F7:03:4A:C2:D4:12:13:05:BF:54:7A:14
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 08C23F0C
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/LISA-JecVSb3A0rC1BITBb9UehQ.roa
Signing time: Sat 01 Jan 2022 07:04:29 +0000
ROA not before: Sat 01 Jan 2022 07:04:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34941
IP address blocks: 185.236.10.0/24 maxlen: 24
194.110.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146947852 (0x8c23f0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 1 07:04:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c8480f8979c5526f7034ac2d4121305bf547a14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a1:b8:84:99:86:4c:ce:7b:79:42:ec:34:97:
e6:fc:4e:bb:1d:da:04:6a:77:51:aa:9c:a4:ac:9e:
bb:fb:b6:65:9f:db:c5:7c:9e:69:69:fa:1f:16:28:
94:4e:8c:ea:6c:88:ed:6e:cc:30:0b:5b:a7:35:c5:
3e:3c:55:4e:21:9b:59:40:61:44:3a:73:8c:3d:61:
d5:40:32:82:cf:47:24:7b:84:4b:78:a1:ff:17:84:
fd:db:bb:3f:95:f8:cd:10:7f:d7:81:2a:ab:b0:ef:
69:b7:0c:d9:85:01:b6:67:76:13:f5:46:66:ee:95:
0b:3b:15:c7:4a:63:0b:6a:c0:1e:61:b5:a2:cc:32:
4a:f5:df:88:36:84:d7:c9:26:4a:a0:a8:eb:b2:29:
b6:a8:22:be:3c:28:e5:03:9d:01:1b:e2:ba:54:40:
72:a2:7e:72:be:6e:ec:1d:97:0b:8a:5d:18:e2:4e:
ed:8e:62:3d:ef:25:0a:b4:7a:1e:37:77:2f:b7:e2:
2b:94:7b:86:bb:0e:7b:a8:20:cd:d8:e3:57:f2:06:
f1:91:fb:b1:6b:37:99:bb:d8:50:2b:6f:d3:54:9f:
e1:8c:28:5b:18:f3:c3:27:be:0d:f9:06:df:b1:f3:
a5:b0:e7:e5:22:eb:51:fb:90:85:48:e9:a4:c9:e3:
84:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:84:80:F8:97:9C:55:26:F7:03:4A:C2:D4:12:13:05:BF:54:7A:14
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/LISA-JecVSb3A0rC1BITBb9UehQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.10.0/24
194.110.174.0/24
Signature Algorithm: sha256WithRSAEncryption
20:ad:e6:67:a0:f0:be:34:cd:ee:be:d0:7b:b9:49:ec:1e:a9:
fb:55:b9:bc:b8:77:ad:87:c6:b6:9f:f3:8e:49:5a:b9:6b:57:
17:7b:99:5e:43:81:1a:51:39:01:09:cd:b5:5e:64:c0:dd:26:
42:64:82:2f:25:cd:66:80:c4:95:20:d6:a0:3d:b9:bd:73:4d:
68:ca:ab:aa:b5:be:ec:8b:0d:f6:a8:64:52:e1:71:e3:a2:69:
5a:d6:46:2b:3c:bb:bb:d7:92:ec:7b:ad:f3:2f:c1:ed:81:0b:
82:77:23:6c:e9:45:80:22:a7:a1:72:5f:4a:6d:de:00:a5:f8:
ff:d8:3f:4d:c0:61:f0:7f:c5:58:38:7d:f3:c7:5d:1d:d9:6b:
a0:f9:0e:c2:ce:d5:80:3d:0e:e9:8e:12:28:26:31:b9:f0:33:
28:99:79:41:9c:9f:c0:22:c6:ff:c0:6a:48:ce:30:e4:5f:11:
a3:6f:62:51:2e:27:43:7c:63:17:8f:ad:80:e1:99:2d:43:5a:
65:0c:c5:0d:a5:b2:bf:9e:6c:01:58:48:73:a6:83:4b:8b:95:
2c:ab:36:9a:1b:de:87:53:05:ab:f9:1b:69:25:12:cf:2c:eb:
a7:cf:33:b7:d8:d6:a5:d1:a6:52:f5:fb:62:5f:02:41:ab:79:
8c:9b:de:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:34 2023 by rpki-client on console-fra.rpki-client.org