Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/LWgziPvF7HA8BKTVhVpOTms64hg.roa
File: LWgziPvF7HA8BKTVhVpOTms64hg.roa (raw, json)
Hash identifier: Nl3o3d77zaxdU8JGNSMXQ0JJFjgFFYHeX5Ug5Wc282c=
Subject key identifier: 2D:68:33:88:FB:C5:EC:70:3C:04:A4:D5:85:5A:4E:4E:6B:3A:E2:18
Certificate issuer: /CN=297364f502534e8771a0c6259794c26e26d4bca4
Certificate serial: 04CC2098
Authority key identifier: 29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/LWgziPvF7HA8BKTVhVpOTms64hg.roa
Signing time: Sat 01 Jan 2022 15:05:52 +0000
ROA not before: Sat 01 Jan 2022 15:05:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198381
IP address blocks: 141.105.162.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80486552 (0x4cc2098)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297364f502534e8771a0c6259794c26e26d4bca4
Validity
Not Before: Jan 1 15:05:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d683388fbc5ec703c04a4d5855a4e4e6b3ae218
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b4:2b:a3:02:08:00:bb:54:48:5c:62:08:0b:
48:e1:a5:f3:2a:06:32:c8:7d:03:db:be:ed:10:5f:
7b:a3:bc:ba:df:ec:83:b2:c6:df:31:85:2f:c9:9c:
b0:0d:ce:da:05:85:16:14:a4:83:3f:c1:93:3d:17:
95:80:e5:7d:d9:d9:6a:ef:dc:8b:9a:70:12:a9:4f:
8a:33:b6:58:e3:fa:bd:0e:c6:cb:a2:60:8f:fb:d9:
30:bb:d0:1b:72:53:65:85:5c:70:b0:ff:ac:ac:37:
52:75:06:6c:16:bc:a5:bb:51:42:57:35:e7:c5:60:
58:e2:84:ad:33:b5:ce:94:2b:4d:0f:3e:a4:af:cb:
6f:87:ca:9f:f5:dd:0f:8c:66:d0:8b:26:12:90:6b:
0c:23:de:f9:a9:39:57:09:c1:62:25:5b:58:9a:56:
f8:6d:20:d4:31:c7:78:56:f1:3c:a8:56:f9:cc:c1:
b3:1b:6b:c0:3f:5c:7e:69:58:e6:29:83:a6:8f:a7:
5d:90:81:70:a8:6b:ee:c5:8e:6c:81:c0:23:59:ce:
fc:a6:20:da:65:68:97:0e:00:93:f8:5b:a2:ba:15:
c1:67:bc:81:4b:90:e7:f9:1c:af:f5:b8:fc:62:d6:
94:c7:88:76:6f:93:17:c4:4a:96:b4:93:2d:ed:77:
9d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:68:33:88:FB:C5:EC:70:3C:04:A4:D5:85:5A:4E:4E:6B:3A:E2:18
X509v3 Authority Key Identifier:
keyid:29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/LWgziPvF7HA8BKTVhVpOTms64hg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.105.162.0/23
Signature Algorithm: sha256WithRSAEncryption
d0:76:07:33:a4:a4:a6:01:4f:93:94:90:8d:26:4f:50:3b:96:
ef:af:c7:ca:a7:11:6c:08:28:24:f8:eb:2c:c8:49:f4:0b:d3:
dd:a7:85:6c:c4:4d:4e:fa:34:14:91:62:61:36:a0:c3:cf:52:
c7:c0:d2:c3:4a:ba:ff:89:61:77:7b:a8:d3:cf:44:76:c4:3f:
91:ef:3f:fc:fa:09:ed:87:4f:3e:35:bc:bf:12:87:f4:56:7c:
2e:f6:77:05:d4:58:51:d3:12:74:7c:31:2c:46:0b:33:c8:45:
71:97:d5:b2:72:5f:ea:70:8c:5a:27:5a:26:fa:13:a7:fa:cc:
32:26:ee:77:44:93:6d:63:d0:89:8f:aa:6b:98:98:bb:32:20:
35:7c:90:2a:0a:61:b3:95:21:f9:7b:39:ba:34:ad:6c:78:25:
35:4c:d5:d6:f9:16:c0:15:da:73:bf:07:fa:93:f5:18:e1:9e:
61:fb:48:46:11:b1:44:a3:14:57:e6:9a:bb:85:89:48:0c:0a:
fa:e9:c1:ab:3f:58:89:97:4a:b6:0a:f7:49:f6:ca:76:c1:98:
a2:db:7b:33:5f:70:81:b3:ca:d6:0b:89:de:38:f1:68:da:47:
cb:3d:db:9f:ae:23:fa:74:09:31:74:32:82:5c:31:03:8b:80:
b2:b3:88:26
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBMwgmDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
OTczNjRmNTAyNTM0ZTg3NzFhMGM2MjU5Nzk0YzI2ZTI2ZDRiY2E0MB4XDTIyMDEw
MTE1MDU1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmQ2ODMzODhmYmM1
ZWM3MDNjMDRhNGQ1ODU1YTRlNGU2YjNhZTIxODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMa0K6MCCAC7VEhcYggLSOGl8yoGMsh9A9u+7RBfe6O8ut/s
g7LG3zGFL8mcsA3O2gWFFhSkgz/Bkz0XlYDlfdnZau/ci5pwEqlPijO2WOP6vQ7G
y6Jgj/vZMLvQG3JTZYVccLD/rKw3UnUGbBa8pbtRQlc158VgWOKErTO1zpQrTQ8+
pK/Lb4fKn/XdD4xm0IsmEpBrDCPe+ak5VwnBYiVbWJpW+G0g1DHHeFbxPKhW+czB
sxtrwD9cfmlY5imDpo+nXZCBcKhr7sWObIHAI1nO/KYg2mVolw4Ak/hboroVwWe8
gUuQ5/kcr/W4/GLWlMeIdm+TF8RKlrSTLe13nT8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQtaDOI+8XscDwEpNWFWk5OazriGDAfBgNVHSMEGDAWgBQpc2T1AlNOh3Gg
xiWXlMJuJtS8pDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tYTms5UUpUVG9keG9NWWxsNVRDYmliVXZLUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTIvMDQ1ODIwLTM1NDYtNDA3Yy04M2E1LTBhMGYzZTc4YTQ5My8x
L0xXZ3ppUHZGN0hBOEJLVFZoVnBPVG1zNjRoZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTIv
MDQ1ODIwLTM1NDYtNDA3Yy04M2E1LTBhMGYzZTc4YTQ5My8xL0tYTms5UUpUVG9k
eG9NWWxsNVRDYmliVXZLUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAY1pojANBgkqhkiG9w0BAQsFAAOC
AQEA0HYHM6SkpgFPk5SQjSZPUDuW76/HyqcRbAgoJPjrLMhJ9AvT3aeFbMRNTvo0
FJFiYTagw89Sx8DSw0q6/4lhd3uo089EdsQ/ke8//PoJ7YdPPjW8vxKH9FZ8LvZ3
BdRYUdMSdHwxLEYLM8hFcZfVsnJf6nCMWidaJvoTp/rMMibud0STbWPQiY+qa5iY
uzIgNXyQKgphs5Uh+Xs5ujStbHglNUzV1vkWwBXac78H+pP1GOGeYftIRhGxRKMU
V+aau4WJSAwK+unBqz9YiZdKtgr3SfbKdsGYott7M19wgbPK1guJ3jjxaNpHyz3b
n64j+nQJMXQyglwxA4uAsrOIJg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:44 2024 by rpki-client on console-fra.rpki-client.org