Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/Lks4KB3KxPQBrACHIr6MQonCDwo.roa
File: Lks4KB3KxPQBrACHIr6MQonCDwo.roa (raw, json)
Hash identifier: cEMVoediLfx8KPGW2OVDU2Pxbs8OtfyUdbHaAAXdqgw=
Subject key identifier: 2E:4B:38:28:1D:CA:C4:F4:01:AC:00:87:22:BE:8C:42:89:C2:0F:0A
Certificate issuer: /CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d
Certificate serial: 024F602A
Authority key identifier: 68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/Lks4KB3KxPQBrACHIr6MQonCDwo.roa
Signing time: Sat 01 Jan 2022 09:58:46 +0000
ROA not before: Sat 01 Jan 2022 09:58:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396982
IP address blocks: 193.73.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38756394 (0x24f602a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d
Validity
Not Before: Jan 1 09:58:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e4b38281dcac4f401ac008722be8c4289c20f0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ff:8a:80:97:1b:07:fb:97:29:c1:90:86:1a:
5b:87:54:d4:67:a2:ff:c9:37:9f:15:21:57:71:12:
99:ac:57:6a:04:4b:4d:41:19:2f:64:9d:83:63:fa:
3a:ca:6c:12:f6:fb:e4:30:15:a9:f2:d2:e4:e3:c0:
a3:21:97:94:27:bf:59:e5:1f:8d:bc:99:12:f4:bc:
c9:12:10:d8:5c:ac:fd:68:7e:c9:14:b3:f0:59:9d:
da:96:bc:a2:8c:22:29:78:49:87:24:d8:01:7e:a4:
1a:8a:52:14:24:d2:6b:03:ec:e6:19:a2:90:2b:9c:
b8:80:f3:2d:ac:4d:a9:50:9d:06:c9:80:d1:cf:d5:
34:50:f2:11:a5:48:29:10:79:91:f0:9f:9f:11:ff:
dd:2c:bc:64:84:db:7b:33:5f:5d:c8:9a:1c:3b:19:
6b:fa:29:0b:91:bf:07:08:91:0b:1b:8c:ab:38:e0:
83:ce:9b:6b:ff:bb:f9:09:dc:a3:d1:8b:a0:04:0d:
8b:2f:bb:8e:25:bc:fc:5b:c9:49:bf:fd:cf:8d:84:
15:f8:e9:6e:e9:d2:8f:f8:da:83:d8:44:45:f0:ff:
aa:8b:91:6c:50:cc:71:ee:e5:2f:60:55:df:3c:65:
96:ef:af:94:be:84:bf:59:6d:be:5f:9e:ad:5c:93:
90:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:4B:38:28:1D:CA:C4:F4:01:AC:00:87:22:BE:8C:42:89:C2:0F:0A
X509v3 Authority Key Identifier:
keyid:68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/Lks4KB3KxPQBrACHIr6MQonCDwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.73.208.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:b4:a7:96:ec:9c:a6:36:06:9b:f7:08:78:e6:bd:ab:1b:88:
73:cb:72:4e:39:29:a6:68:ff:57:4a:5f:9a:be:f6:60:e6:0f:
81:1c:17:2c:e0:60:ce:ad:37:bf:70:f6:0c:c0:c4:77:56:14:
6b:e7:03:e4:f0:66:12:04:30:94:3a:32:77:4a:58:40:27:a7:
0e:45:df:0b:3c:30:87:4c:5e:b6:f3:7b:6f:04:74:3c:9e:65:
ed:31:3f:38:dd:da:b0:d3:51:a9:e4:65:7e:e8:21:77:e8:cd:
30:4c:98:e7:4c:9a:e6:4a:5b:cd:6d:e8:b5:65:d6:41:bf:d9:
ad:20:cc:91:dd:23:51:24:c5:a9:4e:25:42:3e:00:f5:7b:29:
7b:4c:c9:82:c1:cb:db:07:98:e6:d1:c0:28:a1:8f:c5:45:58:
32:94:a6:b7:32:73:d8:43:69:45:55:3c:4d:8f:9a:6e:00:0f:
33:da:5e:2f:19:af:c8:37:20:5a:e3:ef:6d:39:7b:4f:17:a4:
6f:ad:1a:c5:03:b1:77:8b:b5:7a:66:94:17:e7:bb:1e:10:a4:
dd:a9:be:61:49:65:f4:ac:86:e1:96:ff:fc:1c:c8:33:9b:4a:
2e:13:e1:f7:49:d9:33:f1:88:80:7e:4d:bc:33:e1:08:d9:d7:
f7:43:b0:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:16 2024 by rpki-client on console-ams.rpki-client.org