Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/lmTCdvN0-WHOnVX5h7JaBGdRh78.roa
File: lmTCdvN0-WHOnVX5h7JaBGdRh78.roa (raw, json)
Hash identifier: EV2GJoSBswjVGWx2bFeTemq+WFXPtcFAyOy/IVoWSCw=
Subject key identifier: 96:64:C2:76:F3:74:F9:61:CE:9D:55:F9:87:B2:5A:04:67:51:87:BF
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 03067AFC
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/lmTCdvN0-WHOnVX5h7JaBGdRh78.roa
Signing time: Fri 24 Jun 2022 14:25:32 +0000
ROA not before: Fri 24 Jun 2022 14:25:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 109.105.192.0/24 maxlen: 24
109.105.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50756348 (0x3067afc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Jun 24 14:25:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9664c276f374f961ce9d55f987b25a04675187bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d7:13:07:88:7d:1f:86:d4:51:8e:1b:57:25:
af:ff:81:b9:4b:c4:a9:36:9f:bc:5e:b7:5c:20:71:
dc:66:83:30:42:38:c9:42:ae:55:b9:2d:1e:03:72:
42:cb:8c:14:e4:82:8d:97:26:2f:3a:43:8d:24:a7:
a4:5d:69:1a:75:4a:61:02:64:b1:a1:8c:11:cd:3b:
51:d1:ba:02:0f:e5:93:d9:51:15:ae:e2:fa:42:70:
13:e9:14:99:d5:59:98:f9:75:d0:60:ae:6e:8a:61:
26:3a:0b:9f:8d:97:ff:77:0a:da:cd:99:a9:5d:b4:
58:a4:43:f2:e1:d4:ca:bf:2d:a7:37:85:88:ca:2b:
83:40:72:a1:43:4a:54:48:8f:87:76:3c:53:37:71:
de:be:16:36:f9:d8:2a:8e:82:68:95:40:02:7a:53:
29:01:26:d2:f8:19:85:76:36:84:4a:74:bf:de:31:
21:a7:13:81:7a:63:e1:76:5e:f1:ad:a3:67:c5:97:
63:07:35:65:35:23:7e:32:83:72:3e:63:c0:96:a3:
79:a6:b9:3f:8f:eb:6b:08:74:7c:c3:fc:58:bc:7f:
a5:a1:69:26:17:5b:14:07:b4:39:67:08:3b:86:74:
84:fe:b7:b1:84:92:c5:a6:8f:fb:43:11:79:d3:4e:
8f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:64:C2:76:F3:74:F9:61:CE:9D:55:F9:87:B2:5A:04:67:51:87:BF
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/lmTCdvN0-WHOnVX5h7JaBGdRh78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.105.192.0/24
109.105.197.0/24
Signature Algorithm: sha256WithRSAEncryption
06:b2:84:ec:4e:5c:dc:f5:77:d6:ab:6a:6e:c9:a9:e5:9e:9e:
c2:8d:09:55:4f:67:b1:57:0e:9a:d4:03:86:5c:ac:36:04:04:
0a:fe:92:63:74:61:97:af:7d:78:5f:cb:ea:2f:0c:57:b4:15:
36:da:0d:44:91:e1:e1:c3:a6:fb:79:0e:b7:00:be:92:d0:ec:
f7:e9:89:00:a2:ea:90:a1:bf:68:4c:94:41:0e:27:97:4f:fb:
92:99:59:87:c3:05:74:a6:5a:38:8d:b4:ab:20:8d:41:02:16:
f6:24:fe:c7:5f:d7:bb:49:1f:c5:c9:36:d9:11:ac:af:f2:b1:
ad:a8:af:25:04:87:d2:bc:44:a9:21:25:84:99:ef:fd:6a:cf:
7a:1d:58:9b:ca:ed:c6:3e:cc:64:ca:08:54:9a:82:31:42:45:
f9:4d:49:12:fe:30:82:c2:6d:a8:2a:bb:2a:69:55:c1:37:49:
39:b7:c9:89:d4:34:ab:c3:0c:01:93:78:57:69:d0:49:47:ee:
ed:c7:06:ac:7c:ad:99:d2:ba:04:43:1e:e1:a5:48:3f:88:b9:
b5:86:53:29:4e:40:ab:12:95:1f:d7:ac:0a:10:f6:dc:4f:b8:
9f:53:d8:52:34:61:ff:12:5e:8e:e3:95:2a:f6:db:e2:9f:42:
60:99:c5:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:36 2024 by rpki-client on console-fra.rpki-client.org