Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/cd820e-a988-48e3-b944-9fe327dabe64/1/lVSW48ASz8qppcqgymgyFzQoO04.roa
File: lVSW48ASz8qppcqgymgyFzQoO04.roa (raw, json)
Hash identifier: QfS+P5XbM1RD66zZB9eK9b3dErjnp0P7reJ3327K9Vk=
Subject key identifier: 95:54:96:E3:C0:12:CF:CA:A9:A5:CA:A0:CA:68:32:17:34:28:3B:4E
Certificate issuer: /CN=17802133d98b655a9f5411b700ec79347e1eb490
Certificate serial: 0183336FD7B130F80B4F48348AD12E1DE247
Authority key identifier: 17:80:21:33:D9:8B:65:5A:9F:54:11:B7:00:EC:79:34:7E:1E:B4:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F4AhM9mLZVqfVBG3AOx5NH4etJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/cd820e-a988-48e3-b944-9fe327dabe64/1/lVSW48ASz8qppcqgymgyFzQoO04.roa
Signing time: Mon 12 Sep 2022 20:41:51 +0000
ROA not before: Mon 12 Sep 2022 20:41:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57428
IP address blocks: 176.97.194.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:33:6f:d7:b1:30:f8:0b:4f:48:34:8a:d1:2e:1d:e2:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17802133d98b655a9f5411b700ec79347e1eb490
Validity
Not Before: Sep 12 20:41:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=955496e3c012cfcaa9a5caa0ca68321734283b4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:8b:dd:fb:4f:35:b8:24:e6:49:d2:f7:b2:f5:
8f:9d:d7:ce:1f:d7:e1:e3:f9:5a:56:0b:cf:52:eb:
a0:4c:8e:1e:33:dc:77:20:51:a5:f4:2e:90:d9:7c:
f5:ce:65:a1:71:b7:12:02:c8:22:c2:01:3f:44:82:
7f:c9:ad:aa:96:02:10:f6:18:27:16:0a:7c:48:f5:
92:1e:93:e5:42:ce:dd:2b:62:c1:ba:b4:c6:51:8d:
6a:c3:c8:96:a8:a4:d1:0a:ab:7d:1d:c3:e5:75:5b:
62:66:d9:0f:ec:6d:bc:1e:f5:c7:f5:f7:47:7c:91:
78:70:ed:24:50:85:cb:f0:7a:b5:fc:06:1a:73:6f:
38:e0:16:f3:f9:44:c9:55:85:d0:c7:a8:9c:f1:6b:
d8:1d:36:6f:c8:ab:8f:5f:91:de:6c:db:33:52:99:
43:13:17:58:6b:23:bc:6f:63:a7:e0:c4:f0:2c:0f:
ec:7c:58:94:77:65:90:3e:59:83:a7:5b:ae:d8:60:
fa:78:f4:86:86:c5:69:8c:4e:95:33:9f:cc:9d:5a:
db:ea:61:a7:d3:b1:c1:04:8e:96:f2:bb:4b:2f:be:
1e:81:b2:23:0a:1c:01:d4:7e:04:ec:b5:56:69:d5:
da:29:4f:36:47:34:f9:6d:40:e7:7e:d1:66:e0:32:
f0:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:54:96:E3:C0:12:CF:CA:A9:A5:CA:A0:CA:68:32:17:34:28:3B:4E
X509v3 Authority Key Identifier:
keyid:17:80:21:33:D9:8B:65:5A:9F:54:11:B7:00:EC:79:34:7E:1E:B4:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F4AhM9mLZVqfVBG3AOx5NH4etJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/cd820e-a988-48e3-b944-9fe327dabe64/1/lVSW48ASz8qppcqgymgyFzQoO04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/cd820e-a988-48e3-b944-9fe327dabe64/1/F4AhM9mLZVqfVBG3AOx5NH4etJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.194.0/24
Signature Algorithm: sha256WithRSAEncryption
63:06:68:40:03:fe:71:60:5c:15:6f:03:2e:cc:ec:32:cc:2e:
69:84:a7:7d:9d:ca:f3:10:0f:08:16:47:61:0f:cc:ad:c1:70:
eb:ee:e1:40:79:12:38:28:0e:26:ad:20:98:36:80:5d:79:dd:
19:2f:45:c5:38:7e:35:2b:2c:32:4f:71:1c:e7:b9:58:a7:d4:
95:0f:7e:c8:07:32:38:f5:8e:12:eb:ea:fe:f6:18:f6:be:19:
83:0c:a6:cc:18:82:29:64:ea:8b:bb:65:c6:75:e6:88:1a:b7:
89:1f:98:6a:5d:1d:aa:12:a6:dc:db:b6:c8:0e:4b:95:c8:c1:
9d:33:92:6f:45:44:1e:00:b3:c2:20:92:c2:61:34:eb:ff:ff:
06:99:32:6e:a6:7c:56:25:e1:4c:5a:b9:87:a7:64:94:46:a7:
18:bf:2a:f2:a5:d7:da:4e:a4:78:77:dc:49:e0:c3:4d:e5:6e:
5f:13:ba:96:e3:65:ce:b5:ad:40:e5:86:ca:c5:b4:b0:98:26:
30:ec:fc:e8:19:5a:53:42:bb:1a:6e:44:4e:d7:56:67:31:e3:
c9:ed:b0:7a:d6:3c:9a:98:e1:c1:60:59:ff:5e:ed:43:a3:ca:
06:f1:9d:28:fd:bb:65:07:d6:01:16:db:25:8c:b1:75:17:59:
dd:48:b8:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:54 2023 by rpki-client on console-ams.rpki-client.org