Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/baef57-c484-4523-b14e-88ebbf99780b/1/LBSKvZPYbthGQVxTY5cRvTCKzHs.roa
File: LBSKvZPYbthGQVxTY5cRvTCKzHs.roa (raw, json)
Hash identifier: OoqDG6FDtDDSc9M2UluTfafFgaWFZBBIXVUtj54ZnGY=
Subject key identifier: 2C:14:8A:BD:93:D8:6E:D8:46:41:5C:53:63:97:11:BD:30:8A:CC:7B
Certificate issuer: /CN=0e91de17437a0025fd1ede10f710f17a3080b3ab
Certificate serial: 03D1F947
Authority key identifier: 0E:91:DE:17:43:7A:00:25:FD:1E:DE:10:F7:10:F1:7A:30:80:B3:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DpHeF0N6ACX9Ht4Q9xDxejCAs6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/baef57-c484-4523-b14e-88ebbf99780b/1/LBSKvZPYbthGQVxTY5cRvTCKzHs.roa
Signing time: Wed 19 Jan 2022 15:51:05 +0000
ROA not before: Wed 19 Jan 2022 15:51:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 185.233.135.0/24 maxlen: 24
185.233.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64092487 (0x3d1f947)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e91de17437a0025fd1ede10f710f17a3080b3ab
Validity
Not Before: Jan 19 15:51:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c148abd93d86ed846415c53639711bd308acc7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:46:98:1f:a3:39:e2:25:c5:8a:13:34:ef:ec:
07:16:d4:c9:32:69:af:86:5f:21:00:b8:9d:43:e5:
b0:15:29:9f:7d:d1:6f:0c:9a:36:a5:e0:14:e9:f6:
f6:a2:20:49:a2:f3:a2:8e:cc:4a:e2:51:af:fe:ef:
59:93:28:d5:df:5e:6b:58:cd:2c:3e:32:a2:13:8e:
99:d7:f4:cb:27:55:2b:86:9b:0f:2f:3c:b7:c8:7e:
cc:0a:c9:87:7a:56:bc:de:7a:72:25:fb:96:5e:5f:
f9:fa:cc:25:28:ed:43:3b:ff:db:bb:b0:de:a2:76:
e6:0f:bc:66:d7:cb:ff:fa:e2:6e:a5:f3:8b:90:07:
7a:d0:8a:f9:38:e8:35:03:51:3f:81:6c:2d:d3:bc:
76:50:cc:ca:3f:cf:24:af:fd:54:7e:d9:a6:36:3f:
3d:4a:77:fe:2c:81:13:e1:b7:b6:f7:f9:a1:a7:12:
69:49:2a:b2:be:b3:7e:17:15:87:4a:22:6d:af:90:
d9:9a:80:e9:17:56:30:5e:b7:74:8e:7f:40:89:03:
20:4f:9b:1f:5a:08:61:4a:59:d5:d9:d9:6e:e7:77:
5e:49:23:e1:6f:cc:fd:12:7a:ef:cd:da:8a:b5:a1:
82:2b:b2:f8:69:f0:9a:41:27:99:56:6f:94:36:25:
ba:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:14:8A:BD:93:D8:6E:D8:46:41:5C:53:63:97:11:BD:30:8A:CC:7B
X509v3 Authority Key Identifier:
keyid:0E:91:DE:17:43:7A:00:25:FD:1E:DE:10:F7:10:F1:7A:30:80:B3:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DpHeF0N6ACX9Ht4Q9xDxejCAs6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/baef57-c484-4523-b14e-88ebbf99780b/1/LBSKvZPYbthGQVxTY5cRvTCKzHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/baef57-c484-4523-b14e-88ebbf99780b/1/DpHeF0N6ACX9Ht4Q9xDxejCAs6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.134.0/23
Signature Algorithm: sha256WithRSAEncryption
28:6d:01:51:38:46:1d:c4:db:f3:6a:72:84:0e:be:0f:9c:ac:
49:dd:14:04:27:e3:fe:1f:93:ba:29:0a:c3:a7:b4:ff:f5:79:
64:2f:c8:b9:99:c7:54:24:f4:8e:10:90:57:49:75:5f:40:ce:
24:27:69:47:5c:db:d9:a6:65:ef:30:56:85:63:3a:f1:95:61:
2c:d6:24:b5:7f:c2:c1:93:40:d0:e5:84:40:30:60:d7:d3:42:
a0:5c:06:8d:23:68:5d:99:e0:e2:a6:51:87:01:f1:80:19:22:
f8:de:e8:f5:b0:a9:bf:de:17:9c:ef:d4:28:cc:48:46:32:ec:
28:9f:2c:c2:ab:91:34:81:2e:2f:a7:05:67:bb:e3:ea:0c:ca:
fa:65:63:00:17:98:4b:15:6b:de:b5:2b:80:f4:43:be:5c:5a:
26:3b:c0:ae:b7:4f:25:77:12:b1:07:29:c6:23:b9:30:1f:28:
24:1d:3c:5e:59:02:02:fc:ce:25:f4:e0:7a:2b:1a:4d:af:b2:
19:b8:04:fc:25:24:0e:27:2e:04:06:3c:77:d8:ee:13:00:19:
36:ca:5f:e3:fc:be:00:c1:24:d5:93:50:2a:95:d1:fd:c0:30:
1e:a3:ac:e0:8e:e7:ca:18:ee:71:7c:7d:8c:f6:68:58:cb:25:
93:4b:d0:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:24 2024 by rpki-client on console-fra.rpki-client.org