Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/Lg4SIZYElukc-rChCBMYhigwy2E.roa
File: Lg4SIZYElukc-rChCBMYhigwy2E.roa (raw, json)
Hash identifier: 4yta20TbZuI8HwaIJ2MwvnWORncZdy/rY6CZllq63E0=
Subject key identifier: 2E:0E:12:21:96:04:96:E9:1C:FA:B0:A1:08:13:18:86:28:30:CB:61
Certificate issuer: /CN=f879988e0f49971a326f419e5cfacbfddcc993e7
Certificate serial: 03E0D61B
Authority key identifier: F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/Lg4SIZYElukc-rChCBMYhigwy2E.roa
Signing time: Mon 09 May 2022 11:52:12 +0000
ROA not before: Mon 09 May 2022 11:52:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 83.136.208.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65066523 (0x3e0d61b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f879988e0f49971a326f419e5cfacbfddcc993e7
Validity
Not Before: May 9 11:52:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e0e1221960496e91cfab0a1081318862830cb61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:97:9e:c5:5a:ca:88:7a:23:80:74:39:79:54:
4e:fa:61:02:43:6b:0c:dc:3f:a6:fd:08:66:40:bc:
3d:e6:a3:e7:95:29:0e:fc:2f:7a:c0:17:4d:68:63:
16:ae:0f:52:c2:c4:cf:de:e7:14:c2:83:9d:7d:1e:
9d:05:89:3c:99:a8:f9:7f:bb:71:30:c9:d2:05:a6:
82:e7:37:a8:39:29:87:6b:00:37:eb:29:22:e7:f3:
34:1a:7b:1d:94:1c:58:03:2d:79:4e:40:48:30:93:
55:0a:9d:2e:8c:f0:35:1d:7e:9f:de:02:ed:f5:29:
6c:62:96:bf:8a:48:12:04:5f:0c:1f:52:14:40:c3:
bf:c4:ea:cd:6f:f4:1a:f5:a7:b2:50:1d:7f:06:44:
1b:2b:4a:db:bb:11:f9:88:e9:ae:c0:d5:65:5a:aa:
2b:6d:06:88:9a:6f:a8:03:12:ac:0f:26:09:70:b4:
b8:8d:ff:f3:02:6e:44:4f:4c:7e:22:7c:1c:f6:64:
d8:26:56:0e:be:75:a3:8d:e9:83:49:2d:4d:49:31:
41:52:a6:af:ff:1e:92:fa:54:d8:df:a2:58:ea:fa:
b5:cd:39:71:c5:9a:a6:ac:ce:6f:9e:b7:27:30:4a:
d2:c8:30:e3:36:46:ae:f2:fb:b0:0d:ec:70:d6:fc:
40:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:0E:12:21:96:04:96:E9:1C:FA:B0:A1:08:13:18:86:28:30:CB:61
X509v3 Authority Key Identifier:
keyid:F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/Lg4SIZYElukc-rChCBMYhigwy2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.136.208.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:f7:43:e6:ee:78:11:00:1d:37:8c:9d:74:ee:2a:0e:35:5f:
ab:3e:97:ad:83:3e:f8:e4:d7:c6:a5:ee:84:a8:63:fb:43:58:
8d:71:2d:59:6d:f0:92:e2:ae:cf:4d:69:02:12:fe:84:98:8e:
63:20:d1:18:5d:59:7e:ab:d0:62:0d:88:2e:f3:f7:03:c1:61:
d0:ae:e3:60:96:72:e7:8d:93:46:cc:98:a9:d9:24:fa:9e:06:
01:af:39:b4:55:ce:c7:0c:33:5d:ac:31:ab:05:f1:f1:52:45:
cb:cd:c7:05:65:6f:42:be:45:dc:cd:6f:bd:a0:8c:46:41:3d:
f0:2d:19:fb:83:de:1e:77:69:0a:5a:56:66:44:5f:d2:3e:6e:
fb:3b:d3:8d:6d:54:25:df:44:f4:c6:99:b7:fc:05:ad:10:a3:
35:9e:10:b2:09:3f:de:90:c7:06:23:b5:1d:cd:d7:2b:50:a9:
36:67:bb:28:8f:a3:d5:aa:af:61:1d:ae:37:d1:61:d8:a5:3d:
1f:c3:ba:49:b7:15:ac:f3:c8:73:9c:cf:c0:43:bd:07:51:58:
8e:ed:46:50:84:2d:90:db:15:ed:41:7c:98:8d:07:fa:0b:9c:
92:fb:49:09:88:99:a2:c7:cc:3f:33:01:36:63:bb:64:99:e1:
0c:c2:b1:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:00 2023 by rpki-client on console-fra.rpki-client.org