Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/80c387-b20b-430a-a5e6-6e3074c6c663/1/lwMtoUi5Qoc4dPNdK5liMC-9ECo.roa
File: lwMtoUi5Qoc4dPNdK5liMC-9ECo.roa (raw, json)
Hash identifier: 2heUFxTMaEHqnxqg8FzIisSPRrp+2uW6FNKut8PJmdo=
Subject key identifier: 97:03:2D:A1:48:B9:42:87:38:74:F3:5D:2B:99:62:30:2F:BD:10:2A
Certificate issuer: /CN=4722aea0ef4c0667db819f5d5a3daea6399f038c
Certificate serial: 109C3DCB
Authority key identifier: 47:22:AE:A0:EF:4C:06:67:DB:81:9F:5D:5A:3D:AE:A6:39:9F:03:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RyKuoO9MBmfbgZ9dWj2upjmfA4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/80c387-b20b-430a-a5e6-6e3074c6c663/1/lwMtoUi5Qoc4dPNdK5liMC-9ECo.roa
Signing time: Mon 04 Jul 2022 09:07:25 +0000
ROA not before: Mon 04 Jul 2022 09:07:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62292
IP address blocks: 95.140.33.0/24 maxlen: 24
94.199.178.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 278674891 (0x109c3dcb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4722aea0ef4c0667db819f5d5a3daea6399f038c
Validity
Not Before: Jul 4 09:07:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97032da148b942873874f35d2b9962302fbd102a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:34:05:71:11:15:d5:ec:f7:0c:23:43:7b:33:
3d:ce:a9:77:c9:96:6e:40:41:7c:2c:3d:a7:46:bd:
8d:8b:8d:6e:23:ee:77:26:5b:a7:03:d7:a0:55:61:
8c:d6:9a:68:7f:90:0d:46:ab:3f:3b:87:55:d2:eb:
d7:42:36:28:13:91:f7:9f:d4:98:08:07:ac:36:00:
a8:b4:93:74:f2:c7:af:69:e1:d0:2e:f1:76:72:ab:
1c:bd:d8:8c:f2:17:46:96:0a:13:0b:2b:7f:30:d6:
cf:ec:61:85:6f:b1:ae:db:9b:0b:ff:1e:42:ca:84:
37:ba:8f:15:c1:cf:28:2b:77:23:4d:4e:e7:51:16:
1f:34:9d:72:c8:ad:35:7c:91:90:15:a0:db:e6:8f:
5f:93:b8:23:8f:01:31:c1:98:36:32:6b:02:2e:7a:
90:75:b5:30:13:21:54:a1:5f:de:e5:c9:7f:33:ef:
09:56:1e:42:c0:aa:f0:c8:9d:4b:17:fb:00:29:62:
01:db:e9:70:17:f6:79:32:9b:8c:e6:42:b2:59:1b:
d7:b8:6f:c8:72:08:06:62:f9:37:9f:41:56:ab:d6:
67:ae:0c:13:c5:0d:12:50:68:58:fb:4e:2a:35:14:
5b:13:5d:7d:de:aa:c6:53:31:0d:8c:d1:ba:7a:dc:
5e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:03:2D:A1:48:B9:42:87:38:74:F3:5D:2B:99:62:30:2F:BD:10:2A
X509v3 Authority Key Identifier:
keyid:47:22:AE:A0:EF:4C:06:67:DB:81:9F:5D:5A:3D:AE:A6:39:9F:03:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RyKuoO9MBmfbgZ9dWj2upjmfA4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/80c387-b20b-430a-a5e6-6e3074c6c663/1/lwMtoUi5Qoc4dPNdK5liMC-9ECo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/80c387-b20b-430a-a5e6-6e3074c6c663/1/RyKuoO9MBmfbgZ9dWj2upjmfA4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.199.178.0/24
95.140.33.0/24
Signature Algorithm: sha256WithRSAEncryption
ec:c7:91:05:19:a0:df:13:c7:68:75:a6:46:d3:d5:e8:8d:36:
42:f3:1b:02:87:0a:d9:fe:e8:53:45:5e:a0:02:96:1e:e5:b2:
f1:e9:4c:e6:95:52:f3:57:b0:4b:d6:80:c6:eb:62:05:34:84:
d5:07:3b:38:1a:55:48:8d:ab:64:66:35:62:2a:2c:10:0a:ce:
0e:0b:d7:5a:f4:11:c0:d0:b7:98:d2:ee:d2:e5:05:dc:00:39:
42:0a:90:05:b8:95:bc:4b:f1:d5:8c:08:6d:a1:d5:b6:81:40:
d5:22:d0:f6:0d:3b:2a:20:08:a2:8a:26:17:70:cd:08:a6:9b:
6e:d6:40:74:1f:8e:79:20:75:36:c0:c8:e0:1b:c3:67:60:6c:
11:9a:1b:53:62:3b:15:c2:06:87:13:df:38:d0:dd:23:d5:d1:
ab:39:6b:c6:fe:9f:4e:97:35:7b:7e:75:c1:3d:1b:c5:50:e5:
a8:44:5e:1c:dd:5c:78:be:86:81:47:c7:73:52:58:87:63:8a:
14:9e:1d:6c:bd:e9:a9:6a:45:9c:f8:75:90:2b:01:12:ad:38:
47:8d:4a:6e:5c:42:7b:3b:bd:89:2f:12:71:f8:ca:0f:50:32:
92:0a:10:15:52:38:7f:b7:6f:6a:50:a4:4c:48:42:51:e0:fd:
dc:08:96:89
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEEJw9yzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
NzIyYWVhMGVmNGMwNjY3ZGI4MTlmNWQ1YTNkYWVhNjM5OWYwMzhjMB4XDTIyMDcw
NDA5MDcyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTcwMzJkYTE0OGI5
NDI4NzM4NzRmMzVkMmI5OTYyMzAyZmJkMTAyYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKo0BXERFdXs9wwjQ3szPc6pd8mWbkBBfCw9p0a9jYuNbiPu
dyZbpwPXoFVhjNaaaH+QDUarPzuHVdLr10I2KBOR95/UmAgHrDYAqLSTdPLHr2nh
0C7xdnKrHL3YjPIXRpYKEwsrfzDWz+xhhW+xrtubC/8eQsqEN7qPFcHPKCt3I01O
51EWHzSdcsitNXyRkBWg2+aPX5O4I48BMcGYNjJrAi56kHW1MBMhVKFf3uXJfzPv
CVYeQsCq8MidSxf7ACliAdvpcBf2eTKbjOZCslkb17hvyHIIBmL5N59BVqvWZ64M
E8UNElBoWPtOKjUUWxNdfd6qxlMxDYzRunrcXoMCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSXAy2hSLlChzh0810rmWIwL70QKjAfBgNVHSMEGDAWgBRHIq6g70wGZ9uB
n11aPa6mOZ8DjDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1J5S3VvTzlNQm1mYmdaOWRXajJ1cGptZkE0dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGIvODBjMzg3LWIyMGItNDMwYS1hNWU2LTZlMzA3NGM2YzY2My8x
L2x3TXRvVWk1UW9jNGRQTmRLNWxpTUMtOUVDby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGIv
ODBjMzg3LWIyMGItNDMwYS1hNWU2LTZlMzA3NGM2YzY2My8xL1J5S3VvTzlNQm1m
YmdaOWRXajJ1cGptZkE0dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAF7HsgMEAF+MITANBgkqhkiG9w0B
AQsFAAOCAQEA7MeRBRmg3xPHaHWmRtPV6I02QvMbAocK2f7oU0VeoAKWHuWy8elM
5pVS81ewS9aAxutiBTSE1Qc7OBpVSI2rZGY1YiosEArODgvXWvQRwNC3mNLu0uUF
3AA5QgqQBbiVvEvx1YwIbaHVtoFA1SLQ9g07KiAIooomF3DNCKabbtZAdB+OeSB1
NsDI4BvDZ2BsEZobU2I7FcIGhxPfONDdI9XRqzlrxv6fTpc1e351wT0bxVDlqERe
HN1ceL6GgUfHc1JYh2OKFJ4dbL3pqWpFnPh1kCsBEq04R41KblxCezu9iS8ScfjK
D1AykgoQFVI4f7dvalCkTEhCUeD93AiWiQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:22 2024 by rpki-client on console-ams.rpki-client.org