Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ltoagQLNYVIKZBJz4iVXo__jJ-I.roa
File: ltoagQLNYVIKZBJz4iVXo__jJ-I.roa (raw, json)
Hash identifier: HGLEWdoOEVGyBYBWxDwSGL/ax61D4AYOF9qAUaUt4lA=
Subject key identifier: 96:DA:1A:81:02:CD:61:52:0A:64:12:73:E2:25:57:A3:FF:E3:27:E2
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0181D752FB77E7493C4E4FABC3DE62163A4D
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ltoagQLNYVIKZBJz4iVXo__jJ-I.roa
Signing time: Thu 07 Jul 2022 06:22:28 +0000
ROA not before: Thu 07 Jul 2022 06:22:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47670
IP address blocks: 94.249.152.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d7:52:fb:77:e7:49:3c:4e:4f:ab:c3:de:62:16:3a:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jul 7 06:22:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=96da1a8102cd61520a641273e22557a3ffe327e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:91:9e:31:4b:82:5b:c7:a0:55:dd:34:42:82:
f4:ce:eb:71:62:64:6c:13:ab:8e:73:f6:1b:d1:38:
88:78:ab:79:d7:31:5e:56:d1:5f:0f:d2:64:39:de:
ec:03:09:68:07:42:c6:ee:3c:e7:37:bd:b2:20:3d:
6a:a4:a6:d2:7f:d9:fe:8f:c0:81:ad:10:0f:c3:50:
70:7c:91:24:13:f3:92:19:af:9a:dc:e4:9f:ea:f7:
91:3c:3f:a2:34:b1:9c:6d:0a:42:77:7b:1a:26:c0:
cd:97:2b:b1:fc:dc:a6:82:aa:14:40:b4:62:6a:b6:
6e:af:74:14:17:9e:14:2f:5d:bc:e4:8a:82:98:bc:
50:b3:57:6a:e6:8c:35:a3:18:bb:d8:d5:36:40:55:
94:7f:e9:04:cd:b1:df:44:57:33:fe:93:29:98:5e:
e6:dd:be:7e:a1:82:9e:21:48:e2:2c:fb:f5:65:f0:
11:6e:92:32:d1:b2:80:4f:af:c7:5b:9d:f0:ce:54:
c4:73:e4:59:ea:7e:22:4d:d3:bd:ce:ea:d8:88:18:
78:c6:1c:31:b5:72:60:28:22:49:e3:88:05:fb:c3:
36:3c:e0:1f:1f:3c:96:29:bb:5f:7b:af:22:10:77:
21:f6:ff:0f:bc:dd:e8:d6:2e:62:8c:24:52:91:2c:
cf:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:DA:1A:81:02:CD:61:52:0A:64:12:73:E2:25:57:A3:FF:E3:27:E2
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ltoagQLNYVIKZBJz4iVXo__jJ-I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.249.152.0/24
Signature Algorithm: sha256WithRSAEncryption
88:a7:92:53:49:5a:5f:42:aa:a7:7e:d6:db:69:c2:84:64:df:
31:ed:b1:72:9a:e9:e8:a9:48:e7:23:24:ea:ba:70:62:db:9a:
82:91:38:4b:a1:ec:49:5a:66:b8:00:32:45:cb:4a:c3:a1:2d:
10:21:e0:4a:7f:2a:b7:89:cd:a8:d2:93:92:3e:d2:33:ff:66:
2c:2f:42:f2:8f:5a:09:34:cb:fd:92:35:a7:b6:6f:10:a5:dc:
c7:69:7f:31:a0:2d:25:df:bc:c2:f6:db:52:46:05:56:53:11:
59:b4:28:7e:fd:94:3b:50:4d:12:87:93:ab:57:ca:10:46:be:
25:83:3e:29:f3:6f:c5:66:da:fc:12:80:1f:c1:06:f0:b2:8e:
26:9d:be:6c:e8:a2:54:16:cc:94:86:f9:f1:f8:68:c0:72:39:
bd:fa:58:bf:0d:b3:d6:7a:63:65:5b:db:14:dc:7d:f3:f0:f0:
4c:61:d5:aa:51:19:3e:b8:0c:d5:59:15:74:60:88:74:a8:74:
3a:ea:c8:22:ef:3c:60:db:4a:ca:44:b1:c2:99:5f:f9:d0:48:
1a:21:01:d6:da:b1:54:cd:3a:84:92:c5:6e:2e:21:49:fb:25:
89:dc:47:2d:9d:7c:87:ab:55:b4:9e:c9:d3:05:cb:23:e2:e3:
16:18:2b:44
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYHXUvt350k8Tk+rw95iFjpNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjIwNzA3MDYyMjI4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NmRhMWE4MTAyY2Q2MTUyMGE2NDEyNzNlMjI1NTdhM2ZmZTMyN2UyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgJGeMUuCW8egVd00QoL0zutxYmRs
E6uOc/Yb0TiIeKt51zFeVtFfD9JkOd7sAwloB0LG7jznN72yID1qpKbSf9n+j8CB
rRAPw1BwfJEkE/OSGa+a3OSf6veRPD+iNLGcbQpCd3saJsDNlyux/NymgqoUQLRi
arZur3QUF54UL1285IqCmLxQs1dq5ow1oxi72NU2QFWUf+kEzbHfRFcz/pMpmF7m
3b5+oYKeIUjiLPv1ZfARbpIy0bKAT6/HW53wzlTEc+RZ6n4iTdO9zurYiBh4xhwx
tXJgKCJJ44gF+8M2POAfHzyWKbtfe68iEHch9v8PvN3o1i5ijCRSkSzP4wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJbaGoECzWFSCmQSc+IlV6P/4yfiMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvbHRvYWdRTE5ZVklLWkJKejRpVlhvX19qSi1JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXvmYMA0G
CSqGSIb3DQEBCwUAA4IBAQCIp5JTSVpfQqqnftbbacKEZN8x7bFymunoqUjnIyTq
unBi25qCkThLoexJWma4ADJFy0rDoS0QIeBKfyq3ic2o0pOSPtIz/2YsL0Lyj1oJ
NMv9kjWntm8QpdzHaX8xoC0l37zC9ttSRgVWUxFZtCh+/ZQ7UE0Sh5OrV8oQRr4l
gz4p82/FZtr8EoAfwQbwso4mnb5s6KJUFsyUhvnx+GjAcjm9+li/DbPWemNlW9sU
3H3z8PBMYdWqURk+uAzVWRV0YIh0qHQ66sgi7zxg20rKRLHCmV/50EgaIQHW2rFU
zTqEksVuLiFJ+yWJ3EctnXyHq1W0nsnTBcsj4uMWGCtE
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:54 2024 by rpki-client on console-ams.rpki-client.org