Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/LQbDnH_5QXT5FidSX9tKieKmtrM.roa
File: LQbDnH_5QXT5FidSX9tKieKmtrM.roa (raw, json)
Hash identifier: tuKfqkDI3xwWRqqprHDyMLn+U3kMmH5OPTBgIE7lspo=
Subject key identifier: 2D:06:C3:9C:7F:F9:41:74:F9:16:27:52:5F:DB:4A:89:E2:A6:B6:B3
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 018847B2314662935E5B6ADD8C8BCAC65363
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/LQbDnH_5QXT5FidSX9tKieKmtrM.roa
Signing time: Tue 23 May 2023 08:20:40 +0000
ROA not before: Tue 23 May 2023 08:20:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24723
IP address blocks: 206.252.228.0/23 maxlen: 23
206.252.230.0/24 maxlen: 24
206.252.236.0/22 maxlen: 22
206.252.252.0/22 maxlen: 22
206.252.253.0/24 maxlen: 24
195.238.184.0/22 maxlen: 22
77.79.255.0/24 maxlen: 24
85.232.240.0/24 maxlen: 24
85.232.243.0/24 maxlen: 24
46.229.158.0/24 maxlen: 24
46.229.158.0/23 maxlen: 23
46.229.159.0/24 maxlen: 24
77.79.198.0/24 maxlen: 24
2001:1a68:3::/48 maxlen: 48
2001:1a68:34::/48 maxlen: 48
2001:1a68:37::/48 maxlen: 48
2001:1a68:2c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:47:b2:31:46:62:93:5e:5b:6a:dd:8c:8b:ca:c6:53:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: May 23 08:20:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2d06c39c7ff94174f91627525fdb4a89e2a6b6b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:8f:1f:70:9d:82:64:2f:f3:2a:fc:21:c4:ed:
d9:5c:73:63:ca:04:da:fc:d7:37:f0:63:85:da:d5:
9d:54:cb:85:ee:a4:92:94:85:b5:2c:b6:d9:db:cf:
f6:01:6f:64:d6:3a:cc:fa:02:84:29:6e:97:00:be:
ca:5a:bc:eb:5c:39:e0:cb:a2:ac:68:5d:f9:3d:a8:
b2:31:7d:3f:2f:f6:88:54:e5:c4:a4:c0:79:b0:a1:
c5:70:e7:c9:2e:f5:60:8d:c5:51:b8:cb:dc:bf:66:
95:8c:63:b4:58:3b:3c:37:2a:3e:ba:21:f4:1f:5c:
01:da:8a:19:59:fe:d6:93:97:61:5d:bc:f3:7c:9c:
6a:01:e0:87:5b:5d:94:79:36:4c:18:46:06:d2:38:
6c:9c:f7:b9:db:a0:c9:3d:cc:cc:19:0d:15:d9:ea:
c1:c2:b0:54:3f:aa:d7:2c:15:59:83:bf:8b:74:5e:
76:2d:77:4a:48:b0:1f:4a:17:63:6f:1f:23:11:1b:
aa:a3:7f:a5:ac:22:49:5e:6a:79:19:7f:f9:03:90:
50:e6:bb:dd:37:ff:02:27:11:88:0b:e1:27:f3:77:
30:43:90:1a:38:c2:af:2c:78:81:e7:b2:e8:bc:b8:
ef:67:42:d5:0f:d8:d9:ca:6d:f0:d7:5a:0f:ea:30:
58:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:06:C3:9C:7F:F9:41:74:F9:16:27:52:5F:DB:4A:89:E2:A6:B6:B3
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/LQbDnH_5QXT5FidSX9tKieKmtrM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.229.158.0/23
77.79.198.0/24
77.79.255.0/24
85.232.240.0/24
85.232.243.0/24
195.238.184.0/22
206.252.228.0-206.252.230.255
206.252.236.0/22
206.252.252.0/22
IPv6:
2001:1a68:3::/48
2001:1a68:2c::/48
2001:1a68:34::/48
2001:1a68:37::/48
Signature Algorithm: sha256WithRSAEncryption
65:3c:38:d1:4b:db:a3:2c:cf:20:a8:54:a1:9a:fb:26:7d:d1:
52:79:75:f0:d2:df:e7:13:fa:e5:21:04:2c:73:61:0f:9d:be:
74:ba:20:5d:1c:fb:9d:7b:f3:e3:d7:ea:c7:1c:28:8d:06:2a:
57:44:ee:b6:51:24:41:5c:56:ac:15:0f:ac:c7:67:13:04:df:
78:61:b8:08:ca:fe:6a:9e:7b:39:92:83:6e:6f:ff:c7:0c:89:
f3:dd:06:45:6d:57:d1:71:d2:69:53:20:d2:a2:97:4c:01:83:
87:99:bb:91:3f:b6:de:85:72:f4:4c:e2:af:39:c3:b5:9e:e5:
09:4d:92:7e:f6:57:86:40:c2:c3:6f:03:f9:97:b5:6f:da:5d:
23:33:82:2a:5f:d9:fb:7e:53:38:81:3f:5d:fc:01:26:52:ad:
36:bb:a0:cb:df:c3:0d:c9:b4:fb:aa:1b:57:b6:17:dd:d7:74:
8b:72:d2:82:8d:81:60:07:01:19:4e:9e:62:47:8b:d9:92:57:
f9:6f:a7:bd:9f:3a:f6:eb:23:8e:87:07:bc:8e:3e:c7:76:59:
f8:b5:0c:8d:13:0b:4b:bf:dc:c7:64:a5:c9:ed:fe:ed:a9:bf:
bb:64:09:26:7f:10:b7:e8:75:a0:21:71:cc:ac:ab:74:5c:63:
27:6d:c3:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:04 2025 by rpki-client