Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d001ff-8323-4b89-be3d-c2efeb3b32a5/1/LY2aLDWMAdIgaPCnGaqrxCLwHbc.roa
File: LY2aLDWMAdIgaPCnGaqrxCLwHbc.roa (raw, json)
Hash identifier: x/tNUOL08OX9hOj21hlAxOFUSDkTF01Z7EfqniuQ2/c=
Subject key identifier: 2D:8D:9A:2C:35:8C:01:D2:20:68:F0:A7:19:AA:AB:C4:22:F0:1D:B7
Certificate issuer: /CN=9d5138e1facf7b65dbb575fa7d47240c278b34df
Certificate serial: 0A93601D
Authority key identifier: 9D:51:38:E1:FA:CF:7B:65:DB:B5:75:FA:7D:47:24:0C:27:8B:34:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nVE44frPe2XbtXX6fUckDCeLNN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d001ff-8323-4b89-be3d-c2efeb3b32a5/1/LY2aLDWMAdIgaPCnGaqrxCLwHbc.roa
Signing time: Sat 01 Jan 2022 06:54:16 +0000
ROA not before: Sat 01 Jan 2022 06:54:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209275
IP address blocks: 185.174.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177430557 (0xa93601d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d5138e1facf7b65dbb575fa7d47240c278b34df
Validity
Not Before: Jan 1 06:54:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d8d9a2c358c01d22068f0a719aaabc422f01db7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:81:0b:af:76:dd:68:ab:26:07:e7:2f:e3:4e:
53:fe:54:21:7e:b2:45:05:6a:bb:ac:fc:17:c4:f7:
d8:91:cd:79:0c:00:f0:b4:7e:f1:62:e8:78:d6:74:
cb:63:89:70:1a:d7:c2:1f:c6:a3:4c:9b:4b:34:a3:
b0:79:81:ac:8c:59:4b:32:7a:c5:ae:79:d2:c3:bf:
09:23:bc:1a:75:26:07:4e:f7:03:5c:fe:12:b0:8a:
8a:85:29:92:be:1f:97:23:e9:f2:08:d9:7b:45:a1:
6d:74:3e:d7:f0:6e:e0:2f:ef:8c:6c:a3:b3:a1:16:
eb:f3:b7:f1:6b:dd:55:22:12:71:d9:2f:b7:d7:a5:
50:02:86:3c:ff:d4:45:a3:da:aa:00:34:e4:5c:a9:
59:76:d9:da:87:62:a1:a5:b9:16:67:fc:6d:d1:28:
2b:cc:38:c8:7e:0d:8e:57:05:f3:5d:73:4e:0b:ce:
ca:57:4d:74:9f:6b:17:55:93:d8:3d:4e:4f:fd:e4:
6c:46:09:83:f0:b6:cc:de:dd:0b:68:31:8b:29:94:
7f:06:55:7e:b2:3e:d8:fa:4c:eb:8e:f7:cd:bd:83:
3c:1f:da:55:1d:f0:ef:71:2c:dc:61:9e:e4:eb:4d:
c0:da:f4:9a:cb:34:36:b2:84:51:dc:e1:83:68:a7:
14:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:8D:9A:2C:35:8C:01:D2:20:68:F0:A7:19:AA:AB:C4:22:F0:1D:B7
X509v3 Authority Key Identifier:
keyid:9D:51:38:E1:FA:CF:7B:65:DB:B5:75:FA:7D:47:24:0C:27:8B:34:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nVE44frPe2XbtXX6fUckDCeLNN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d001ff-8323-4b89-be3d-c2efeb3b32a5/1/LY2aLDWMAdIgaPCnGaqrxCLwHbc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d001ff-8323-4b89-be3d-c2efeb3b32a5/1/nVE44frPe2XbtXX6fUckDCeLNN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.174.31.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:0b:29:6e:bb:e3:f3:dc:01:7d:59:b7:17:8c:2c:74:4c:49:
2b:15:8b:b6:ab:5e:06:9e:b0:88:69:11:56:7e:7c:4e:f6:e9:
c6:da:09:09:45:c7:46:22:f5:c8:90:59:45:4a:62:bf:c1:7d:
d5:d5:cb:c1:a2:da:e8:d1:21:fd:9f:7d:4c:8f:1b:4d:e5:8c:
db:72:f3:78:06:10:3f:11:08:e6:3b:f4:98:19:3b:ce:6e:d9:
12:ca:f9:fe:d0:69:4a:9c:b3:f0:ef:2c:77:19:45:b6:71:2c:
c2:89:d4:1a:07:61:81:14:ab:e1:1c:6c:94:9d:d5:65:91:2a:
b9:10:43:85:2b:10:58:de:3b:fd:f6:e6:2e:71:a8:46:28:de:
41:fb:84:85:ee:ff:6a:d1:b1:91:ec:ce:68:1f:59:4e:5c:08:
92:b0:4c:29:f1:0d:6f:10:c8:d2:b0:a6:95:96:00:54:82:f6:
f5:16:01:68:d6:7c:0d:9a:54:19:b6:b5:7b:d1:70:20:ee:d9:
46:0c:d5:cf:80:65:dd:89:59:88:62:e7:6f:5f:db:c0:b2:44:
d4:a6:60:ac:13:6c:b0:63:fe:5e:cf:c6:9b:ce:ba:06:2e:2a:
39:c5:c8:41:68:89:44:4b:c1:e2:22:77:10:e0:8a:af:24:c7:
d2:aa:00:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:19 2023 by rpki-client on console-fra.rpki-client.org