Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/117b96-fe6d-4ac3-b499-23399b128639/1/Lh_ShMEhItleaL5oT91tZqOiqw8.roa
File: Lh_ShMEhItleaL5oT91tZqOiqw8.roa (raw, json)
Hash identifier: kmCjJjcPOScGYayqUuU0m/sc/1hjtlAiMrEMXD1KCXU=
Subject key identifier: 2E:1F:D2:84:C1:21:22:D9:5E:68:BE:68:4F:DD:6D:66:A3:A2:AB:0F
Certificate issuer: /CN=b236f231f35beef1bc6c2fc241750b4460f468c3
Certificate serial: B4F930
Authority key identifier: B2:36:F2:31:F3:5B:EE:F1:BC:6C:2F:C2:41:75:0B:44:60:F4:68:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sjbyMfNb7vG8bC_CQXULRGD0aMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/117b96-fe6d-4ac3-b499-23399b128639/1/Lh_ShMEhItleaL5oT91tZqOiqw8.roa
Signing time: Sat 01 Jan 2022 08:54:07 +0000
ROA not before: Sat 01 Jan 2022 08:54:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25193
IP address blocks: 194.150.233.0/24 maxlen: 24
194.150.232.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11860272 (0xb4f930)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b236f231f35beef1bc6c2fc241750b4460f468c3
Validity
Not Before: Jan 1 08:54:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e1fd284c12122d95e68be684fdd6d66a3a2ab0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:04:32:77:f5:df:39:6b:5a:61:47:c0:90:9f:
90:42:38:59:cd:5d:78:b2:53:24:10:7d:06:1e:25:
e2:6e:2d:ca:b7:75:0d:bb:d7:3b:ad:d5:50:4a:5b:
bb:ec:0b:a4:3d:d1:ad:38:a2:9a:34:e9:f8:75:1e:
bb:fb:da:95:d2:a8:62:7a:21:54:e1:f5:2a:7f:eb:
e6:b7:d4:29:c7:c9:32:bb:87:1a:bb:e0:63:51:d3:
04:c5:28:86:29:51:dc:1e:b9:42:f4:62:61:fb:59:
f3:21:0a:41:72:b4:c4:ae:a7:d0:2d:15:b5:75:1a:
7f:10:ff:a0:b7:fe:8c:e7:a4:b8:7b:0d:d5:04:d4:
b3:fe:c0:33:d9:c3:2c:0a:28:d5:14:cd:94:04:a6:
99:d1:e4:42:af:91:9e:e5:0c:a6:aa:01:ca:98:ff:
10:a5:e5:0c:c3:71:10:2c:8d:6a:88:6d:ea:f8:b6:
5b:f2:6c:25:34:da:4c:b0:da:b6:8c:f3:45:51:01:
c3:c3:16:5c:4d:ef:2d:b4:fd:12:bc:ea:98:4a:37:
5a:f7:a7:b4:b6:86:1b:e2:5d:f0:95:5d:90:5e:ac:
06:6b:9f:2f:1c:f2:f4:57:6f:43:00:61:5d:63:c5:
66:30:05:32:4f:d0:62:e7:cc:c4:9d:28:f5:5c:69:
e2:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:1F:D2:84:C1:21:22:D9:5E:68:BE:68:4F:DD:6D:66:A3:A2:AB:0F
X509v3 Authority Key Identifier:
keyid:B2:36:F2:31:F3:5B:EE:F1:BC:6C:2F:C2:41:75:0B:44:60:F4:68:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sjbyMfNb7vG8bC_CQXULRGD0aMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/117b96-fe6d-4ac3-b499-23399b128639/1/Lh_ShMEhItleaL5oT91tZqOiqw8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/117b96-fe6d-4ac3-b499-23399b128639/1/sjbyMfNb7vG8bC_CQXULRGD0aMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.150.232.0/23
Signature Algorithm: sha256WithRSAEncryption
56:a4:75:a2:36:df:a6:dc:91:37:05:4c:0f:5a:f5:3f:5c:b1:
55:12:61:0e:fd:d5:3e:ee:15:57:e8:e9:e5:49:b5:14:86:75:
1a:0b:ce:35:5d:71:44:ef:89:e0:45:44:64:9f:32:d3:f1:23:
89:d4:0f:a0:5e:6a:25:2f:83:18:46:84:ce:3b:fa:23:0d:7e:
ca:5b:ed:12:ca:64:08:b1:ed:a2:e0:f3:3e:66:80:f6:5e:61:
5a:11:17:a6:d1:d6:a6:cc:73:4d:85:b4:e7:46:2b:9c:e3:c2:
0d:50:8e:b6:e3:ae:ad:24:87:70:1b:03:04:fb:4d:33:35:4a:
13:ac:99:53:2c:7f:14:5c:87:fc:a9:e8:5b:57:f7:c7:0d:65:
61:cf:98:4b:14:1b:0c:62:cf:33:ee:7e:4d:e9:4d:f4:46:7e:
38:92:3c:5f:b8:a2:2b:c9:a8:95:53:81:93:bc:d2:a5:0a:b9:
2b:2c:7b:27:b1:ca:9c:da:a5:4c:58:65:ff:dc:d5:99:b2:44:
c6:91:dd:2e:75:b7:bd:56:df:b5:82:e9:c0:64:b3:2e:28:c8:
27:d8:12:aa:af:07:5d:17:68:9a:58:a1:8c:8d:38:3a:32:07:
c5:49:84:bc:82:b1:fa:23:ba:ae:e8:32:e1:f6:bc:a5:4c:e4:
63:52:9d:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:11 2023 by rpki-client on console-fra.rpki-client.org