Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/lpflVx_fD1tTyTvWnEfBoanhZrk.roa
File: lpflVx_fD1tTyTvWnEfBoanhZrk.roa (raw, json)
Hash identifier: Bdxs+nopilAdiRIg9GidsKw2e1d7WwRwoNEdwO8reLc=
Subject key identifier: 96:97:E5:57:1F:DF:0F:5B:53:C9:3B:D6:9C:47:C1:A1:A9:E1:66:B9
Certificate issuer: /CN=1319f052bc9e7284888074390c9d0bc127606692
Certificate serial: 177BAA8E
Authority key identifier: 13:19:F0:52:BC:9E:72:84:88:80:74:39:0C:9D:0B:C1:27:60:66:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExnwUryecoSIgHQ5DJ0LwSdgZpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/lpflVx_fD1tTyTvWnEfBoanhZrk.roa
Signing time: Sat 01 Jan 2022 06:55:23 +0000
ROA not before: Sat 01 Jan 2022 06:55:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198949
IP address blocks: 88.157.230.0/24 maxlen: 24
88.157.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 393980558 (0x177baa8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1319f052bc9e7284888074390c9d0bc127606692
Validity
Not Before: Jan 1 06:55:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9697e5571fdf0f5b53c93bd69c47c1a1a9e166b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:2d:bd:3c:95:2c:52:9c:82:7b:93:8f:20:0a:
a0:1f:79:28:54:50:5d:a4:a7:a2:28:0e:8d:26:9a:
0c:98:23:e9:73:6f:2a:eb:ca:52:b7:82:df:f7:66:
aa:ad:59:41:71:ff:78:dd:17:95:7e:0e:97:5a:f1:
00:49:d4:40:4e:57:7f:1c:24:bf:87:c1:52:c3:81:
03:4b:cd:90:61:c5:46:4d:06:9b:0b:a6:88:95:33:
d3:72:d6:79:6f:91:4f:c4:84:2b:da:5d:20:9a:b9:
18:17:eb:05:65:76:2c:60:92:77:ff:d9:86:49:82:
da:33:f7:72:ff:29:8a:16:44:a1:46:63:f7:b8:fa:
91:d4:22:b0:98:f9:47:70:81:51:2d:9b:13:1a:bb:
f8:cf:3e:1b:4e:cb:17:72:e8:90:12:3a:7c:f5:3e:
e3:9d:0b:c2:c2:27:98:30:89:2f:1e:49:34:9b:3d:
6e:61:76:14:6a:e4:c0:e8:22:f2:06:79:76:d9:1c:
be:ab:86:e3:14:d3:30:d6:fa:f0:9a:d6:ec:cf:6f:
4e:c0:2e:d5:ef:eb:a8:13:45:fb:71:f6:40:b1:6c:
40:16:95:d0:a4:a5:f3:bd:a9:2e:14:42:0b:0a:45:
b8:ee:d3:4f:e2:bd:d0:4f:8a:cf:e4:06:8a:cf:c8:
77:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:97:E5:57:1F:DF:0F:5B:53:C9:3B:D6:9C:47:C1:A1:A9:E1:66:B9
X509v3 Authority Key Identifier:
keyid:13:19:F0:52:BC:9E:72:84:88:80:74:39:0C:9D:0B:C1:27:60:66:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExnwUryecoSIgHQ5DJ0LwSdgZpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/lpflVx_fD1tTyTvWnEfBoanhZrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/ExnwUryecoSIgHQ5DJ0LwSdgZpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.157.230.0/23
Signature Algorithm: sha256WithRSAEncryption
45:83:09:ff:a1:92:f5:73:a3:93:84:04:1c:59:78:90:c0:e5:
3f:c7:fa:f4:c6:0e:db:fa:64:d2:ea:6e:1a:ff:28:94:78:5b:
71:88:fa:18:27:91:96:04:e8:e0:3c:b8:89:70:b5:56:bf:44:
fc:3b:f1:43:e1:b8:04:28:6b:2c:8f:0e:ab:5d:ab:bd:48:c1:
c2:65:c8:64:17:77:ad:3b:da:6f:22:00:c9:b8:90:03:b8:e8:
b8:73:5e:98:c6:53:80:a7:c7:54:b6:76:22:e8:87:3b:0a:5c:
90:1e:8a:51:b0:1a:ef:cd:e2:ba:b0:46:83:c6:bc:25:e7:df:
dc:b0:2e:a9:36:1f:67:9a:30:0f:95:68:57:07:9c:f2:2d:45:
3e:8d:9a:f6:7c:d9:bd:01:2e:9f:1c:d3:cb:d9:ef:81:00:42:
bb:13:8e:c6:c3:ed:77:c5:40:20:24:b4:30:90:a6:20:68:06:
e1:ff:c9:b0:7a:1a:c8:7a:de:7b:96:05:1f:f0:39:53:77:80:
f9:c4:78:de:ec:90:7a:f7:ad:11:22:0b:6d:99:cd:53:ff:1f:
9d:98:94:b1:b8:31:b4:6a:ef:43:eb:08:e9:4a:ce:23:d9:03:
7f:d2:8c:68:d2:83:f5:dd:41:e2:25:0f:ee:d1:7b:87:e1:ad:
16:a5:89:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:30 2023 by rpki-client on console-ams.rpki-client.org