Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/127dfe-dce1-416b-8bd6-e7f458897576/1/lbocEl9vtTuirvTrzCqj0IHAUoE.roa
File: lbocEl9vtTuirvTrzCqj0IHAUoE.roa (raw, json)
Hash identifier: kc+4opH/7VGXwR3dFly9tyRvTtTP31aJzZM6QcxTAio=
Subject key identifier: 95:BA:1C:12:5F:6F:B5:3B:A2:AE:F4:EB:CC:2A:A3:D0:81:C0:52:81
Certificate issuer: /CN=14c6a90bd967d0e6d8a3660673d54e5d058af96c
Certificate serial: 084DB79A
Authority key identifier: 14:C6:A9:0B:D9:67:D0:E6:D8:A3:66:06:73:D5:4E:5D:05:8A:F9:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FMapC9ln0ObYo2YGc9VOXQWK-Ww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/127dfe-dce1-416b-8bd6-e7f458897576/1/lbocEl9vtTuirvTrzCqj0IHAUoE.roa
Signing time: Sat 01 Jan 2022 00:55:53 +0000
ROA not before: Sat 01 Jan 2022 00:55:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202072
IP address blocks: 141.98.98.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139311002 (0x84db79a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14c6a90bd967d0e6d8a3660673d54e5d058af96c
Validity
Not Before: Jan 1 00:55:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95ba1c125f6fb53ba2aef4ebcc2aa3d081c05281
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:60:44:f7:78:c1:cd:62:b8:3d:ba:71:bb:2c:
1e:c3:b9:00:97:cb:d0:79:a8:ab:f6:38:92:2d:ba:
8a:0e:83:87:00:27:78:16:11:3e:de:01:f9:e4:25:
aa:cf:2a:bf:df:ee:d3:15:44:ae:1d:e7:d9:20:bd:
04:b9:18:c3:89:67:39:34:6a:fb:4c:3e:57:36:26:
30:68:ac:12:6a:55:20:d7:78:c3:51:fb:ff:be:d3:
60:8a:a9:ce:1e:da:9c:76:92:ad:3a:28:91:56:73:
3b:d6:c7:49:01:d1:de:af:7b:82:cb:55:fc:af:7f:
4a:82:81:88:ab:85:50:43:cb:05:3a:8f:a6:33:e7:
19:a1:6d:ef:24:f4:7f:d3:61:3f:93:f4:62:e3:db:
4c:41:2d:ac:82:d5:1d:ea:40:19:1f:d9:e6:de:39:
89:1e:0e:09:02:8e:d3:2e:b4:1e:af:80:e3:0b:0a:
4b:db:0d:22:25:81:95:0a:43:8a:2e:10:5c:f0:8c:
46:05:34:e1:57:6e:c3:a7:11:f8:23:b9:63:ae:6f:
10:72:99:c5:cc:9a:91:a6:3b:bf:cf:79:3c:4a:34:
57:81:ad:6d:89:eb:e5:75:4e:bd:ce:76:b6:95:c7:
96:8a:ce:e8:0c:9f:74:ce:9e:23:fa:4c:18:9c:b0:
17:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:BA:1C:12:5F:6F:B5:3B:A2:AE:F4:EB:CC:2A:A3:D0:81:C0:52:81
X509v3 Authority Key Identifier:
keyid:14:C6:A9:0B:D9:67:D0:E6:D8:A3:66:06:73:D5:4E:5D:05:8A:F9:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FMapC9ln0ObYo2YGc9VOXQWK-Ww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/127dfe-dce1-416b-8bd6-e7f458897576/1/lbocEl9vtTuirvTrzCqj0IHAUoE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/127dfe-dce1-416b-8bd6-e7f458897576/1/FMapC9ln0ObYo2YGc9VOXQWK-Ww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.98.0/24
Signature Algorithm: sha256WithRSAEncryption
09:02:96:33:df:00:c3:1a:09:48:49:8a:68:1e:e9:30:6d:45:
0c:1f:de:dd:21:92:59:5f:28:ed:7d:9f:9c:ae:ec:b2:48:6f:
58:6b:53:cc:81:26:75:8f:be:17:00:fa:30:b0:af:1f:d3:22:
d4:9b:71:0a:1d:71:82:fc:fd:37:61:74:cf:c6:32:fc:59:22:
7c:2e:9f:ac:4c:52:bb:ae:b4:89:49:ae:63:fa:d6:a5:8b:40:
75:40:88:24:e9:8c:54:61:50:c3:a0:51:88:71:84:c1:e2:9b:
9d:47:2a:fc:de:47:13:89:70:f1:68:25:5e:c3:e6:ce:9f:b7:
58:3f:8b:8c:0f:b7:3e:34:cc:f8:2a:99:ef:9a:03:33:8d:3c:
b8:11:3c:c1:a8:c3:26:ff:e5:43:8e:cc:21:9e:32:6f:0f:20:
24:c6:bf:c8:52:f3:7f:b1:b5:5a:d7:45:30:92:33:56:fb:9d:
da:7f:1e:b5:f3:31:89:75:11:f6:e7:b1:14:0b:08:f2:32:61:
4d:f8:1e:37:11:db:c1:42:05:d7:93:7c:33:f5:d6:93:0b:ec:
4b:f1:c3:93:13:a5:be:82:d2:31:f3:ca:f0:c1:08:39:b2:5b:
40:61:28:56:10:f4:56:ab:e2:ae:a6:6d:9c:76:36:13:e8:f6:
32:e8:35:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:43 2023 by rpki-client on console-ams.rpki-client.org