Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/LbFa_TVJbZkdGAl2JKzj7NOQ3T0.roa
File: LbFa_TVJbZkdGAl2JKzj7NOQ3T0.roa (raw, json)
Hash identifier: 8Ikl/AmSyHoJ4zL+jpV0SROTwNXWAtVBFxj4I61rnJE=
Subject key identifier: 2D:B1:5A:FD:35:49:6D:99:1D:18:09:76:24:AC:E3:EC:D3:90:DD:3D
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 0464E6B5
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/LbFa_TVJbZkdGAl2JKzj7NOQ3T0.roa
Signing time: Sat 15 Jan 2022 17:15:42 +0000
ROA not before: Sat 15 Jan 2022 17:15:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 193.233.132.0/22 maxlen: 22
193.233.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73721525 (0x464e6b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 15 17:15:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2db15afd35496d991d18097624ace3ecd390dd3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:81:fd:51:1f:3b:e6:75:99:f3:0c:5a:6b:a4:
3c:9b:fc:5a:fd:02:fe:1e:92:f2:2f:20:21:45:c7:
92:35:24:0b:84:4b:61:c3:1e:ad:e3:3b:2d:11:8f:
cc:84:db:3e:22:d0:40:63:4a:a6:91:3a:15:10:b9:
9b:18:47:8f:36:77:22:4d:f0:95:16:de:e1:8a:c8:
3f:a3:67:45:ee:c9:02:48:b2:90:80:79:bc:22:c6:
fa:e9:8a:62:95:f6:34:62:cf:f9:d5:10:fe:4b:54:
f0:16:38:a1:49:43:6f:c1:65:18:2b:f3:78:68:20:
d1:75:7c:aa:98:66:3d:d5:57:a2:36:73:52:73:f0:
39:e0:9e:e2:27:26:64:ba:9e:7e:af:f3:4c:3e:4a:
9b:6f:47:99:25:0d:b3:b4:7d:24:14:14:ce:df:25:
8e:63:b4:9e:8b:0a:73:f7:28:d1:44:a3:6c:e5:83:
1c:b7:69:14:91:fd:24:ba:7d:0e:a7:1b:01:14:11:
49:ad:a5:c0:c0:4d:3f:55:17:d8:1e:2f:ce:1b:68:
a4:9f:ac:b0:20:9c:f2:10:a6:f6:fb:b2:36:1e:d3:
d7:55:4c:72:91:2e:64:1c:04:cd:c7:68:da:30:af:
27:f2:51:9b:8f:10:dd:dd:b3:f0:ed:73:ea:e8:20:
66:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:B1:5A:FD:35:49:6D:99:1D:18:09:76:24:AC:E3:EC:D3:90:DD:3D
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/LbFa_TVJbZkdGAl2JKzj7NOQ3T0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.132.0/22
193.233.236.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:0d:2b:df:e4:6e:31:75:98:e7:1e:86:8d:ab:31:4f:34:eb:
ea:57:7b:ce:ce:0b:ac:be:b0:03:da:bd:3c:18:f7:34:39:43:
d7:d1:61:5f:b1:05:6b:d4:40:0a:c1:e8:eb:c4:1f:12:54:7d:
c8:73:60:d4:ab:51:c3:1a:fd:31:c6:5f:ab:58:ad:02:84:c8:
02:68:59:98:26:85:af:e9:73:ff:49:cf:5b:ef:61:a5:29:87:
a6:50:88:fd:6e:52:a0:5d:6e:5c:f6:17:a7:14:0f:53:57:1f:
1f:e8:ea:c6:b6:d7:8e:9e:24:c2:ca:8c:42:a5:bc:35:f8:15:
63:51:2a:0b:6b:8b:71:0e:bc:95:74:30:92:75:3f:9d:f1:1b:
70:79:c9:d7:f4:66:92:09:ec:e1:85:f5:53:67:b7:62:bf:6d:
dc:99:ba:fb:07:a9:be:42:31:a2:ad:e1:4b:fb:22:92:39:f8:
cd:14:5e:a4:a8:39:2f:77:6e:42:be:e6:2e:e0:64:ce:bf:da:
45:74:20:8e:7c:b0:a4:35:40:63:12:69:81:41:43:c8:16:85:
de:7f:82:24:9c:70:65:86:34:a7:14:af:9a:6c:eb:bc:70:18:
22:24:40:ff:e7:0b:dd:43:6a:a7:8f:b1:12:69:8e:f5:b7:71:
de:f6:07:ed
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBGTmtTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NmQ2NDhiZGJhOTY1NDYxYjFlOGMxMWI5ZGQ0MzZjNjEzODI4NzNjMB4XDTIyMDEx
NTE3MTU0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmRiMTVhZmQzNTQ5
NmQ5OTFkMTgwOTc2MjRhY2UzZWNkMzkwZGQzZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI+B/VEfO+Z1mfMMWmukPJv8Wv0C/h6S8i8gIUXHkjUkC4RL
YcMereM7LRGPzITbPiLQQGNKppE6FRC5mxhHjzZ3Ik3wlRbe4YrIP6NnRe7JAkiy
kIB5vCLG+umKYpX2NGLP+dUQ/ktU8BY4oUlDb8FlGCvzeGgg0XV8qphmPdVXojZz
UnPwOeCe4icmZLqefq/zTD5Km29HmSUNs7R9JBQUzt8ljmO0nosKc/co0USjbOWD
HLdpFJH9JLp9DqcbARQRSa2lwMBNP1UX2B4vzhtopJ+ssCCc8hCm9vuyNh7T11VM
cpEuZBwEzcdo2jCvJ/JRm48Q3d2z8O1z6uggZnMCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQtsVr9NUltmR0YCXYkrOPs05DdPTAfBgNVHSMEGDAWgBSG1ki9upZUYbHo
wRud1DbGE4KHPDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2h0Wkl2YnFXVkdHeDZNRWJuZFEyeGhPQ2h6dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGMvYWM1OGVhLWM0NTktNDhjYS1iODJiLTRkZWM0ZGFmZWU0OS8x
L0xiRmFfVFZKYlprZEdBbDJKS3pqN05PUTNUMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGMv
YWM1OGVhLWM0NTktNDhjYS1iODJiLTRkZWM0ZGFmZWU0OS8xL2h0Wkl2YnFXVkdH
eDZNRWJuZFEyeGhPQ2h6dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAsHphAMEAsHp7DANBgkqhkiG9w0B
AQsFAAOCAQEAPA0r3+RuMXWY5x6GjasxTzTr6ld7zs4LrL6wA9q9PBj3NDlD19Fh
X7EFa9RACsHo68QfElR9yHNg1KtRwxr9McZfq1itAoTIAmhZmCaFr+lz/0nPW+9h
pSmHplCI/W5SoF1uXPYXpxQPU1cfH+jqxrbXjp4kwsqMQqW8NfgVY1EqC2uLcQ68
lXQwknU/nfEbcHnJ1/Rmkgns4YX1U2e3Yr9t3Jm6+wepvkIxoq3hS/sikjn4zRRe
pKg5L3duQr7mLuBkzr/aRXQgjnywpDVAYxJpgUFDyBaF3n+CJJxwZYY0pxSvmmzr
vHAYIiRA/+cL3UNqp4+xEmmO9bdx3vYH7Q==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:38 2023 by rpki-client on console-fra.rpki-client.org