Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/LML-uSJXN-yqu2AN7khoG8Q74PE.roa
File: LML-uSJXN-yqu2AN7khoG8Q74PE.roa (raw, json)
Hash identifier: //fNbmb1xLCEqcHYNbL3/FoPp4NO3QG/vBNzNigMDE8=
Subject key identifier: 2C:C2:FE:B9:22:57:37:EC:AA:BB:60:0D:EE:48:68:1B:C4:3B:E0:F1
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 047A78D8
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/LML-uSJXN-yqu2AN7khoG8Q74PE.roa
Signing time: Wed 02 Mar 2022 10:29:12 +0000
ROA not before: Wed 02 Mar 2022 10:29:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49035
IP address blocks: 195.187.158.0/24 maxlen: 24
195.187.156.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75135192 (0x47a78d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Mar 2 10:29:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2cc2feb9225737ecaabb600dee48681bc43be0f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:72:de:6e:21:42:ff:e6:1b:1f:13:ac:28:d8:
00:80:3e:20:e4:fc:6e:e1:4a:0e:d3:38:8b:fd:7a:
71:c8:c8:47:f9:b1:2a:d5:47:fd:16:ff:7e:ca:5e:
d9:e6:84:0a:b7:20:ba:21:89:c7:7b:42:2c:00:8f:
40:73:6e:93:d8:c8:2c:d7:1a:8b:28:a5:2f:51:60:
4e:11:18:ad:ad:db:c8:58:90:c1:8e:41:85:4c:71:
98:ff:a7:30:59:0c:d9:0d:2d:d4:98:fd:88:6b:40:
5e:66:53:24:49:b6:2b:0a:13:f6:9e:ff:4a:f2:f1:
88:fe:b9:f4:92:a6:48:3d:7f:28:a4:ae:95:be:a4:
9b:d1:f3:b5:bb:ec:e6:36:fd:43:e9:a3:e4:51:a6:
0d:bc:91:f2:12:a4:6d:84:d1:03:3f:e2:6f:97:fa:
e2:c5:cd:07:ff:a6:41:36:88:b7:ca:59:eb:62:6a:
e9:c1:b3:8b:90:1c:b4:9d:40:6c:a0:7d:14:23:1e:
88:04:56:be:ed:b0:37:76:de:b1:6d:f3:e7:41:67:
d1:00:84:bf:82:52:f2:04:64:4d:61:60:1e:0d:ac:
70:41:d0:e4:ab:28:db:f7:be:05:52:8d:15:67:a5:
0b:48:c9:56:6f:d8:8a:2e:2e:ee:cf:2d:a4:be:b3:
6f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:C2:FE:B9:22:57:37:EC:AA:BB:60:0D:EE:48:68:1B:C4:3B:E0:F1
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/LML-uSJXN-yqu2AN7khoG8Q74PE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.187.156.0-195.187.158.255
Signature Algorithm: sha256WithRSAEncryption
0f:29:6d:96:1d:af:83:7b:90:4a:4a:04:fb:0e:4b:75:c5:db:
4f:88:41:49:c0:07:a0:ad:fa:f0:23:ca:bf:39:08:92:2e:bd:
d1:5d:49:a0:57:0a:a8:62:8e:84:51:06:48:96:f1:8a:14:47:
4b:78:2d:ad:8b:db:1f:5a:48:6e:07:33:4b:c9:bc:e4:ab:72:
c3:42:ca:cf:74:df:45:1c:20:eb:a4:c5:4a:63:5b:b8:c0:c2:
33:04:7d:ee:9d:44:95:04:0e:5b:25:65:77:9c:7e:a8:4e:44:
38:75:e1:ed:b7:9d:3e:71:85:20:98:41:5c:a4:5a:36:35:5a:
91:39:8c:39:00:48:f8:76:65:e6:42:b4:01:f9:0f:04:b7:08:
a5:08:8e:7f:55:ea:0a:d4:00:20:8b:a8:6a:d3:9e:5c:81:89:
71:1c:27:e6:3a:54:2c:bf:95:79:fd:20:f5:9e:d4:9a:42:d0:
f3:09:c6:a4:c4:87:62:c1:bf:60:2c:01:66:5b:94:a3:01:86:
aa:ee:8b:0e:aa:d2:64:c1:fc:74:0e:de:17:75:67:18:db:d3:
64:8a:47:5c:76:9a:fa:96:d4:c5:77:ee:33:80:67:1e:ae:4f:
16:58:e7:0f:bd:76:78:0e:98:90:76:7c:e9:e1:55:aa:88:79:
11:bd:71:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:05 2024 by rpki-client on console-ams.rpki-client.org