Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/LQTFuXSGQQqrdBStm6DREQFrys0.roa
File: LQTFuXSGQQqrdBStm6DREQFrys0.roa (raw, json)
Hash identifier: Kz7YrpL9/+nT069kX/M/MA+esLj+DzfXKU7yuOrGRQA=
Subject key identifier: 2D:04:C5:B9:74:86:41:0A:AB:74:14:AD:9B:A0:D1:11:01:6B:CA:CD
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 01837AAE06E653245AF29F6C11C2D73418B2
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/LQTFuXSGQQqrdBStm6DREQFrys0.roa
Signing time: Mon 26 Sep 2022 16:42:48 +0000
ROA not before: Mon 26 Sep 2022 16:42:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209896
IP address blocks: 95.214.152.0/22 maxlen: 22
45.86.20.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7a:ae:06:e6:53:24:5a:f2:9f:6c:11:c2:d7:34:18:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Sep 26 16:42:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d04c5b97486410aab7414ad9ba0d111016bcacd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:4f:c3:a3:53:1c:1a:d3:d6:6c:8f:89:04:29:
43:45:9d:44:75:e6:a6:d3:08:ee:77:b5:3b:bb:ad:
bf:d1:60:00:46:37:ea:59:26:42:69:5e:03:e4:f3:
d7:8d:3d:13:b6:df:1a:42:9f:a6:75:3d:a0:76:fd:
5c:14:10:40:91:a6:eb:a5:79:b0:19:c0:9c:90:fa:
15:57:5c:90:a3:85:db:cd:ac:46:e7:e8:d3:0b:5d:
b1:9b:a0:60:f5:38:34:08:6e:fc:54:19:27:8d:82:
a4:8f:1f:a7:3a:1b:eb:0e:4e:82:21:f3:36:18:f1:
92:37:38:8c:cf:21:11:6c:a1:c2:75:6d:c9:79:a6:
eb:aa:7b:e4:eb:b2:7e:bf:0a:58:51:ef:68:8c:db:
bd:d1:e0:0f:7e:dd:03:6b:52:36:72:5f:69:4c:7c:
8f:ff:f6:91:fd:c4:f9:ba:06:b4:28:05:2a:45:2d:
7b:13:97:e2:8d:a4:2f:26:a2:5f:24:a4:2a:ae:90:
47:57:59:32:ae:28:3f:c8:9f:36:ae:f7:f5:84:c8:
6f:ed:41:70:68:b6:e6:84:2d:82:63:60:07:a8:3e:
50:da:ec:63:b8:e0:12:8d:52:1f:39:48:c4:0f:08:
7c:fd:a7:87:f2:43:77:49:78:a1:6e:67:1e:ea:5c:
9d:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:04:C5:B9:74:86:41:0A:AB:74:14:AD:9B:A0:D1:11:01:6B:CA:CD
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/LQTFuXSGQQqrdBStm6DREQFrys0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.20.0/22
95.214.152.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:83:61:76:c3:0d:57:c3:2b:42:95:a5:a2:8f:de:28:79:8e:
04:71:f5:61:ae:9f:0c:6e:7f:d7:8e:0d:75:9f:48:44:ed:e8:
7b:fc:c0:80:76:da:d6:30:11:42:d5:f0:0b:d0:28:60:44:fc:
ba:87:31:48:13:8b:7e:09:5b:f1:e9:c7:c9:4d:8f:d9:a6:60:
cd:f7:21:f1:20:64:e0:1a:f4:1d:28:f7:e3:40:25:4f:51:5a:
e9:57:66:7f:5a:87:5b:be:2d:d4:eb:e4:cb:94:27:83:ce:86:
a0:51:47:de:94:35:67:f2:a6:65:42:32:02:73:26:6d:88:5f:
a1:32:bb:4a:5b:08:84:1f:8e:31:de:2b:8c:92:ae:0b:5d:ae:
1e:84:58:4f:59:1c:f8:03:80:83:c6:2e:8c:24:10:7f:52:27:
65:53:89:58:07:7f:23:a3:36:62:15:a3:ce:47:84:50:73:11:
b5:9b:5a:cf:14:8d:c3:db:27:26:44:72:ab:2f:19:1b:7e:2d:
be:b2:c3:b1:f8:ae:2c:ae:56:4f:38:87:fe:fb:71:19:9f:f0:
1d:2c:e4:db:8b:fb:96:83:7a:b2:a6:a1:6f:81:ae:43:58:cd:
b8:4c:20:85:88:01:e1:f4:73:fe:59:b6:8c:15:ab:ad:df:ee:
eb:64:00:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:41 2024 by rpki-client on console-fra.rpki-client.org