Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/LhK3g8tlEKo7T5Z_k_yeL4d6Kik.roa
File: LhK3g8tlEKo7T5Z_k_yeL4d6Kik.roa (raw, json)
Hash identifier: NsWO9nrPAP9Lix9UI7yNNsdoG3cL/K6HC0jtHaKypBA=
Subject key identifier: 2E:12:B7:83:CB:65:10:AA:3B:4F:96:7F:93:FC:9E:2F:87:7A:2A:29
Certificate issuer: /CN=869035c317734f661bbf85c2184155a1f3616add
Certificate serial: 0294F7BC
Authority key identifier: 86:90:35:C3:17:73:4F:66:1B:BF:85:C2:18:41:55:A1:F3:61:6A:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpA1wxdzT2Ybv4XCGEFVofNhat0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/LhK3g8tlEKo7T5Z_k_yeL4d6Kik.roa
Signing time: Sat 01 Jan 2022 14:08:16 +0000
ROA not before: Sat 01 Jan 2022 14:08:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41530
IP address blocks: 195.138.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43317180 (0x294f7bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869035c317734f661bbf85c2184155a1f3616add
Validity
Not Before: Jan 1 14:08:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e12b783cb6510aa3b4f967f93fc9e2f877a2a29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:af:80:dd:86:40:a7:db:0f:5b:26:3b:b4:d0:
76:5c:49:f0:9d:8f:e3:d5:f7:f1:14:d9:45:7a:50:
8e:be:f4:d5:6c:73:a4:31:12:ae:68:e4:02:ca:ac:
0c:bc:4c:70:bf:05:4b:29:36:f1:0b:75:06:d2:4c:
c9:9e:92:62:7b:67:38:b8:82:d9:d6:09:b8:08:39:
6f:1b:c7:51:7b:4a:0b:21:4a:42:90:94:41:d1:f8:
dc:36:b8:c8:95:b4:b9:a3:72:16:70:e7:9a:eb:8f:
35:fa:4b:07:19:94:e9:dc:e9:3e:a8:1a:7b:8c:dc:
11:c6:5f:f9:35:3a:c3:29:d4:a7:97:7d:d1:1b:11:
29:96:43:fc:f5:b0:d1:4c:3c:82:bc:7c:4c:40:f2:
fd:f6:81:61:e6:3e:c5:7a:16:21:c2:00:25:68:4b:
aa:71:c5:f5:a0:1c:35:c6:3d:48:52:9c:b1:04:4a:
fb:34:dc:32:0c:9c:82:a3:99:20:40:2a:ba:dc:bd:
6f:ac:cb:f8:ea:d1:96:e3:3e:39:84:04:cb:1d:10:
55:29:49:e5:9f:52:52:c2:77:86:bf:4e:ee:0f:25:
1f:08:4b:6a:1e:a5:63:3b:6e:a3:e1:8e:5a:15:ff:
6b:69:8e:e0:34:af:d5:86:98:17:21:42:c7:69:78:
2d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:12:B7:83:CB:65:10:AA:3B:4F:96:7F:93:FC:9E:2F:87:7A:2A:29
X509v3 Authority Key Identifier:
keyid:86:90:35:C3:17:73:4F:66:1B:BF:85:C2:18:41:55:A1:F3:61:6A:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpA1wxdzT2Ybv4XCGEFVofNhat0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/LhK3g8tlEKo7T5Z_k_yeL4d6Kik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/hpA1wxdzT2Ybv4XCGEFVofNhat0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.138.192.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:5f:06:b3:d4:8d:5d:14:56:8a:cf:0e:1e:ce:00:6b:a0:85:
97:b1:6a:75:b6:3d:b8:90:10:d2:d2:60:29:ae:a3:25:94:11:
ee:a2:34:77:b4:76:dd:08:64:40:bf:3f:15:0d:7e:a0:11:07:
1b:73:5e:f4:31:08:e7:5e:2a:92:88:9a:9e:6f:61:ed:ad:27:
28:f3:76:aa:02:a1:7d:76:ff:07:ea:9e:97:b7:dd:21:32:6e:
65:35:ca:63:32:8b:1b:43:0e:e7:c3:b3:a9:93:0c:02:c4:97:
32:18:a8:4b:89:b2:b4:c7:3a:b2:70:47:4e:a5:10:99:98:a1:
25:a6:b0:e4:6f:21:a9:44:83:32:58:f0:58:38:58:cf:2d:77:
b8:86:70:a7:d9:92:62:8c:38:cb:7c:b3:b7:44:f4:02:16:b4:
75:29:a6:f0:ef:a0:21:60:8d:0e:1f:4d:f2:ae:45:f4:b1:af:
21:2f:a6:e7:6c:59:9d:f2:3c:26:a8:0d:1b:93:8e:9b:3b:8c:
11:1c:21:8a:97:bd:b9:72:2f:92:ac:70:a7:c7:30:af:16:a4:
7e:32:b2:45:f1:90:c3:b4:91:53:f2:f4:33:db:21:d9:30:6a:
da:8a:57:58:b2:9f:4a:79:af:8f:46:29:9d:a1:95:98:e2:0e:
0f:84:13:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:34 2024 by rpki-client on console-fra.rpki-client.org