Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/LxmZAFpEilCTST58QHLTxGRhelc.roa
File: LxmZAFpEilCTST58QHLTxGRhelc.roa (raw, json)
Hash identifier: 52l2ksNjt6/viBMpgs4x8c8HZ0dp7UaYK5vh9Vq4FDg=
Subject key identifier: 2F:19:99:00:5A:44:8A:50:93:49:3E:7C:40:72:D3:C4:64:61:7A:57
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 043ACEC8
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/LxmZAFpEilCTST58QHLTxGRhelc.roa
Signing time: Sat 01 Jan 2022 12:05:05 +0000
ROA not before: Sat 01 Jan 2022 12:05:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206422
IP address blocks: 193.233.150.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70962888 (0x43acec8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 12:05:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f1999005a448a5093493e7c4072d3c464617a57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b6:1a:1e:49:35:1c:6b:5b:8c:28:2e:80:76:
69:c8:b2:10:76:81:42:50:2e:d9:08:24:d0:39:39:
ff:19:5f:67:a0:d0:24:41:5f:a3:4c:91:87:b8:08:
bc:ee:f7:01:7f:5c:10:b6:7b:bd:5d:6e:96:ef:9b:
7c:52:3c:8e:e6:a5:3c:96:43:3d:03:69:36:05:ef:
da:64:c0:1a:ae:24:bd:47:4d:b7:bb:ed:40:b5:26:
ae:58:1d:86:de:0a:69:6a:b1:a7:16:04:07:6b:10:
7f:b7:d5:22:cf:03:c3:ff:19:f4:b3:7a:ce:84:7f:
09:6b:b2:f1:03:0d:1c:22:43:18:7e:26:92:71:69:
91:b0:9c:d8:c9:c8:3f:cd:ea:09:48:56:d5:8d:73:
b4:10:18:44:b9:fa:19:51:ef:7c:21:08:9d:cf:54:
7e:c4:3a:84:bf:63:c8:ee:14:2b:b3:6a:07:9a:09:
91:8e:89:c9:e5:90:e0:51:14:cd:3f:2d:19:ed:05:
03:c5:3d:92:3e:8e:d6:10:99:d5:63:08:84:8d:2d:
a6:a6:63:34:8f:a1:b4:21:3a:b1:97:dd:34:f5:74:
5e:ee:20:69:49:b7:cb:39:3d:e9:f1:62:05:29:98:
a1:0d:c4:9f:10:b5:40:a5:e3:1b:61:19:98:7c:25:
0a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:19:99:00:5A:44:8A:50:93:49:3E:7C:40:72:D3:C4:64:61:7A:57
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/LxmZAFpEilCTST58QHLTxGRhelc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.150.0/23
Signature Algorithm: sha256WithRSAEncryption
39:4b:0c:16:2d:2f:c5:ec:c2:2f:76:3a:3c:05:6c:cb:d6:f3:
e1:c7:15:5e:41:89:66:0e:f5:5e:49:d9:36:c7:a6:ec:0c:d2:
22:00:3d:c8:dc:fb:2f:99:b2:de:ff:91:34:36:aa:70:79:50:
c2:cf:a0:c1:ca:17:ea:13:39:f9:92:13:5f:95:e0:c5:1f:78:
07:e0:09:52:19:c0:25:da:92:c2:80:7f:bf:44:16:9d:6d:cd:
9a:89:d6:c3:ee:62:2d:10:16:53:b3:ae:00:02:24:12:36:c9:
b9:d0:50:2f:c1:65:be:6a:6c:ff:9e:4a:cb:39:1b:dd:2f:47:
34:ae:a6:94:67:30:62:f1:02:85:8a:f9:fb:e6:18:04:d5:93:
0c:5b:66:4d:8d:7d:91:35:16:40:7b:45:54:d2:a1:75:dd:6e:
39:70:ff:78:5b:60:f8:0c:b2:f2:0a:d2:de:2c:bc:15:bf:4c:
55:fe:40:97:08:ed:b8:a2:cc:50:c3:7b:52:3b:0c:fe:c5:2c:
92:63:15:a5:a7:05:43:18:93:70:76:d5:5f:0d:08:6d:75:7c:
0b:ad:1b:51:1b:62:0b:8c:81:2c:4d:7a:a0:69:27:7d:e5:a3:
50:43:50:ac:37:8a:1a:5c:37:6a:00:45:6e:a1:79:1c:3f:8b:
b6:8c:45:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:38 2023 by rpki-client on console-fra.rpki-client.org