Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/lgvPF3xe7WoLgnjekKy9_Sk8dIo.roa
File: lgvPF3xe7WoLgnjekKy9_Sk8dIo.roa (raw, json)
Hash identifier: JliSzQCV44dPOVRXaowcK7sDFCMtui8vrGlXi4SdEUM=
Subject key identifier: 96:0B:CF:17:7C:5E:ED:6A:0B:82:78:DE:90:AC:BD:FD:29:3C:74:8A
Certificate issuer: /CN=64fa66fb84a781a0584fd0d1c2df39bda4760519
Certificate serial: 01852E94DF7E7066D7147E802D4A7A1889A6
Authority key identifier: 64:FA:66:FB:84:A7:81:A0:58:4F:D0:D1:C2:DF:39:BD:A4:76:05:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/lgvPF3xe7WoLgnjekKy9_Sk8dIo.roa
Signing time: Tue 20 Dec 2022 08:09:46 +0000
ROA not before: Tue 20 Dec 2022 08:09:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 77.81.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2e:94:df:7e:70:66:d7:14:7e:80:2d:4a:7a:18:89:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64fa66fb84a781a0584fd0d1c2df39bda4760519
Validity
Not Before: Dec 20 08:09:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=960bcf177c5eed6a0b8278de90acbdfd293c748a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:07:f5:aa:b9:9c:a3:81:95:53:70:ae:de:a2:
35:ab:89:a8:e8:96:9f:27:84:91:92:2a:ff:a6:a9:
67:b1:d7:6c:db:49:82:21:19:96:1e:46:d2:85:38:
7f:a2:17:dd:7e:5b:60:75:ea:96:36:71:42:30:ed:
80:15:6e:f6:24:69:f3:9a:6b:69:c2:af:81:60:36:
b1:71:50:32:cd:4b:a6:29:bd:e0:5a:fa:76:0f:d8:
63:3b:da:78:d0:ba:f2:dc:d5:a5:5e:72:0c:d7:aa:
ca:26:4c:06:c5:0a:72:44:d9:4f:a3:90:ff:6b:c9:
ef:5c:5a:cc:7f:c3:c0:fd:13:ce:97:50:a9:d0:f9:
cb:d3:91:e9:9b:08:6a:fe:96:9d:cf:72:40:6b:18:
8b:ac:31:f2:9d:07:3b:26:09:0b:3a:a9:45:10:5d:
f4:92:6d:45:b4:74:ea:93:1d:95:f6:e0:5a:7e:95:
76:b7:a4:4f:6a:58:6c:a8:91:41:0c:6c:a0:59:72:
d6:23:3b:a8:c9:f5:3e:4f:92:62:a3:2e:99:2b:05:
d4:39:f8:46:f1:5a:f2:16:4a:89:56:34:ab:40:b5:
0e:d0:c0:f6:90:7f:2f:1b:83:06:d0:d2:cf:96:eb:
ca:a0:cf:58:2e:e4:49:fa:1b:9c:b6:8e:96:9d:8d:
2e:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:0B:CF:17:7C:5E:ED:6A:0B:82:78:DE:90:AC:BD:FD:29:3C:74:8A
X509v3 Authority Key Identifier:
keyid:64:FA:66:FB:84:A7:81:A0:58:4F:D0:D1:C2:DF:39:BD:A4:76:05:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/lgvPF3xe7WoLgnjekKy9_Sk8dIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/ZPpm-4SngaBYT9DRwt85vaR2BRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.103.0/24
Signature Algorithm: sha256WithRSAEncryption
40:f4:fd:e9:05:4d:2b:ca:77:b2:ad:73:0b:34:aa:d7:82:04:
ca:b1:9e:9e:f5:2c:e3:56:53:b5:39:73:f2:7b:d9:a5:71:2d:
76:cd:05:28:94:03:d6:1f:b2:63:13:40:f9:ed:55:14:36:0c:
e8:1c:e2:52:46:de:4b:00:b8:71:3f:11:70:4e:a2:e4:5b:61:
a7:c2:69:96:d4:d3:c7:75:e5:f6:98:a9:e4:c2:22:0c:94:24:
7b:73:e6:5a:0b:fb:c8:b4:c6:ae:8e:72:3e:cc:b7:9b:a0:0a:
2d:a8:d3:09:bd:a1:49:2d:ae:05:a6:00:9b:3f:85:8d:9d:fc:
14:c0:5d:8c:0a:52:5a:0c:4b:ee:a0:2e:b4:7a:e0:d5:eb:3c:
92:89:f3:aa:eb:95:76:48:24:de:46:7f:6c:82:be:43:8b:0f:
39:2e:4a:0b:90:38:ba:03:e2:52:16:70:06:4d:e9:0f:7b:5b:
c8:e3:79:ac:54:15:fa:76:a5:0c:07:bc:76:39:5a:4d:3d:8d:
c9:90:df:43:49:0c:1c:f7:c1:94:2c:d2:21:58:d2:5d:04:18:
ac:a6:ec:c8:cf:64:fa:a7:6b:be:c5:40:94:6d:a6:5a:65:55:
98:76:ff:4a:27:df:c4:a6:13:f6:69:96:a3:e0:35:26:40:c5:
50:c7:77:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:12 2024 by rpki-client on console-fra.rpki-client.org