Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/40a1e5-7d2a-48d6-a50e-f96fb4ea7e70/1/LiI9Y5dtWgXCe983wsH67jpmFtk.roa
File: LiI9Y5dtWgXCe983wsH67jpmFtk.roa (raw, json)
Hash identifier: HaoGhMmCH4WYlK4XrWeKpqER9H9Q+2fBOujfHO8fEd8=
Subject key identifier: 2E:22:3D:63:97:6D:5A:05:C2:7B:DF:37:C2:C1:FA:EE:3A:66:16:D9
Certificate issuer: /CN=2c75f35d256cc4a5b88319bb7e4bbba329e49341
Certificate serial: 023F98
Authority key identifier: 2C:75:F3:5D:25:6C:C4:A5:B8:83:19:BB:7E:4B:BB:A3:29:E4:93:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LHXzXSVsxKW4gxm7fku7oynkk0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/40a1e5-7d2a-48d6-a50e-f96fb4ea7e70/1/LiI9Y5dtWgXCe983wsH67jpmFtk.roa
Signing time: Thu 13 Jan 2022 17:28:58 +0000
ROA not before: Thu 13 Jan 2022 17:28:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197808
IP address blocks: 195.22.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147352 (0x23f98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c75f35d256cc4a5b88319bb7e4bbba329e49341
Validity
Not Before: Jan 13 17:28:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e223d63976d5a05c27bdf37c2c1faee3a6616d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:03:83:46:81:cf:18:c2:f0:70:61:77:fa:07:
de:bd:0f:a8:71:6a:ef:d3:62:b5:74:04:9f:a7:5e:
2a:ce:c7:5a:77:bc:05:f9:6b:13:6c:ae:ac:84:d3:
d4:67:9d:01:a7:0d:d9:69:24:67:15:16:96:a1:94:
b2:34:7a:e3:3c:e3:92:71:49:f3:3f:45:4c:9b:ec:
3b:f4:59:ae:34:ba:65:8a:15:5a:7b:7f:49:4f:d2:
c2:bd:37:14:38:9f:18:3b:6a:51:b2:a4:b6:4b:3c:
3f:97:10:88:8a:6e:33:aa:91:17:4f:ac:f3:fd:f8:
0f:9c:f4:3e:a5:a9:27:70:e4:21:27:22:e5:87:60:
09:68:6d:ac:ce:df:8a:e5:24:ad:05:84:cc:66:8e:
89:4f:9f:82:35:95:90:5b:51:7e:35:15:ea:c5:00:
f6:89:5b:0a:26:a3:fc:f4:35:ee:b1:74:97:05:2d:
c1:72:4f:00:16:b4:51:c5:4a:72:6e:9f:8f:0a:88:
f9:8a:01:f2:71:18:c0:80:5d:81:44:50:9e:b1:e6:
7f:6d:a2:10:71:19:e0:10:87:b4:9e:e5:67:2a:6f:
1f:1a:0a:aa:dc:02:82:6c:aa:1f:df:38:66:2e:95:
f8:c8:a1:d3:e4:b8:75:83:90:2d:2b:4c:1c:51:6e:
eb:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:22:3D:63:97:6D:5A:05:C2:7B:DF:37:C2:C1:FA:EE:3A:66:16:D9
X509v3 Authority Key Identifier:
keyid:2C:75:F3:5D:25:6C:C4:A5:B8:83:19:BB:7E:4B:BB:A3:29:E4:93:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LHXzXSVsxKW4gxm7fku7oynkk0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/40a1e5-7d2a-48d6-a50e-f96fb4ea7e70/1/LiI9Y5dtWgXCe983wsH67jpmFtk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/40a1e5-7d2a-48d6-a50e-f96fb4ea7e70/1/LHXzXSVsxKW4gxm7fku7oynkk0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.22.123.0/24
Signature Algorithm: sha256WithRSAEncryption
36:08:f7:95:55:60:1b:d7:4c:c2:58:15:dd:a0:0c:5e:d1:b6:
8a:8d:46:e6:97:78:52:11:d9:32:40:d1:c1:5d:44:0c:0c:30:
ac:70:64:12:7d:f6:94:b8:93:29:b4:36:09:a7:35:5a:2a:06:
4b:61:14:3e:5b:f7:7b:b2:eb:cb:fa:99:bf:90:ee:fe:81:ac:
2b:1b:f7:76:2a:5c:ba:fa:60:02:70:5f:b6:a1:8b:16:e7:fd:
0e:06:82:2b:45:b4:9a:d4:82:e1:25:04:6f:fc:68:0c:62:fe:
d2:b7:e8:00:ca:4e:fa:bf:71:2a:44:a4:ad:1d:16:ab:6a:29:
76:1c:13:b3:a0:d7:3f:f9:77:83:e8:98:70:f0:f5:03:6c:fb:
1d:e7:ba:15:74:6b:c6:18:50:c9:28:69:39:4e:07:47:16:eb:
c1:23:8a:57:da:33:46:61:f7:cb:57:f9:0b:4f:b7:be:03:d1:
79:da:1a:eb:4e:d1:1c:7d:bd:fd:51:f9:16:f6:0a:54:ae:d3:
7e:4a:f0:4b:f2:c8:68:b6:ee:28:a8:ee:7a:36:d6:c7:5a:82:
89:da:c5:26:bf:28:2a:c4:b2:30:43:11:f6:82:67:21:68:f0:
15:0e:b6:89:0e:97:66:8c:d8:8e:8e:9a:c0:ec:61:cc:f9:81:
82:b8:79:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:23 2024 by rpki-client on console-ams.rpki-client.org