Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/LkYLrKuMfDWsOiVFf_A7g5vB1EA.roa
File: LkYLrKuMfDWsOiVFf_A7g5vB1EA.roa (raw, json)
Hash identifier: lxn8kGmHGsBlqbER3SnhkHvyR2sasYCXDFqZUzEPQtg=
Subject key identifier: 2E:46:0B:AC:AB:8C:7C:35:AC:3A:25:45:7F:F0:3B:83:9B:C1:D4:40
Certificate issuer: /CN=b1740c4c079f2d1dee85439f82781b9bae756a95
Certificate serial: 032FEAF4
Authority key identifier: B1:74:0C:4C:07:9F:2D:1D:EE:85:43:9F:82:78:1B:9B:AE:75:6A:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXQMTAefLR3uhUOfgngbm651apU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/LkYLrKuMfDWsOiVFf_A7g5vB1EA.roa
Signing time: Sat 01 Jan 2022 10:59:45 +0000
ROA not before: Sat 01 Jan 2022 10:59:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199319
IP address blocks: 185.136.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53471988 (0x32feaf4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1740c4c079f2d1dee85439f82781b9bae756a95
Validity
Not Before: Jan 1 10:59:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e460bacab8c7c35ac3a25457ff03b839bc1d440
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6f:66:37:17:2c:06:0c:9b:e8:b5:b3:bb:ef:
e1:e4:db:38:3f:14:45:4c:5c:47:46:75:28:c9:e8:
48:09:35:a4:76:62:ae:fd:ba:bb:d1:41:e7:be:7e:
1e:1a:47:8b:9f:a2:28:f1:22:d7:c7:9a:3b:ac:d8:
dd:dc:b4:26:15:23:89:7b:c8:d8:25:ad:e1:a7:21:
22:1d:de:b5:fd:1d:af:6d:36:6a:58:13:c0:ef:2e:
0f:1c:46:74:25:0b:18:f5:27:8e:ee:50:f6:73:04:
52:a4:d6:26:7f:e8:20:49:cf:9c:a9:df:e1:59:68:
1a:80:32:c7:af:18:50:5b:1b:b7:43:99:0b:96:4e:
fa:0e:e2:97:5f:9b:61:56:93:fc:1a:17:25:73:2f:
eb:32:47:a5:1f:15:65:a5:d9:c7:ea:d0:34:7e:85:
a2:3d:82:3b:45:0f:bf:c9:bd:6f:74:87:43:93:9f:
45:fa:fb:b8:e0:13:8c:e8:7a:58:17:4f:01:59:4f:
e9:b7:f5:82:29:c3:90:b4:d8:a4:a5:5f:09:4d:a3:
11:54:8e:78:e9:3c:f6:0e:7a:dc:7a:15:0f:90:38:
b8:9f:9b:c5:b9:86:4d:70:93:3c:21:b9:d5:e6:94:
39:b2:9f:52:36:5c:3e:71:8d:bf:9b:52:c3:02:c1:
3e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:46:0B:AC:AB:8C:7C:35:AC:3A:25:45:7F:F0:3B:83:9B:C1:D4:40
X509v3 Authority Key Identifier:
keyid:B1:74:0C:4C:07:9F:2D:1D:EE:85:43:9F:82:78:1B:9B:AE:75:6A:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXQMTAefLR3uhUOfgngbm651apU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/LkYLrKuMfDWsOiVFf_A7g5vB1EA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.136.227.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:cd:9a:62:94:5c:09:64:7e:bc:f9:30:64:3f:a2:fb:11:30:
4f:cc:18:cc:f4:7c:18:ab:c7:00:70:03:da:3c:75:7d:2c:77:
0a:07:08:8b:dc:a0:6a:6e:57:a2:08:d8:09:4c:76:da:0a:2f:
41:bb:de:2d:10:51:c2:11:46:3e:7f:7b:8f:22:b7:f5:78:e8:
a4:42:46:12:0b:0c:75:28:2b:29:59:fc:bf:bb:42:1e:f5:c3:
ce:8e:c4:ba:27:41:10:f5:75:05:31:6f:d8:55:8b:58:6c:80:
62:f6:29:4a:9d:b2:1d:25:ac:1c:b3:0e:61:65:3f:e9:15:f9:
2e:3a:b3:1e:c3:e4:2e:ca:a1:66:27:a3:db:3d:47:fb:c8:ea:
25:9a:1d:a9:cb:b8:c9:15:8f:4f:11:14:bb:13:ec:ec:25:f6:
d3:5c:fa:bb:1c:39:1d:be:ed:08:39:cb:5b:08:02:39:33:16:
2f:01:5b:b9:4b:05:f0:a2:ed:e8:a6:0a:d7:5c:8e:d1:59:1b:
6d:ee:3f:a7:23:9d:e2:9d:5d:9c:29:bb:1c:f5:f9:24:77:1d:
60:18:92:7a:92:95:6e:ee:1c:dc:80:59:3d:da:5b:70:c1:47:
43:ff:5a:2a:31:ac:92:5b:6c:50:04:da:88:bc:bf:5e:b4:c6:
13:bd:92:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:16:06 2025 by rpki-client