Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/b4fab5-aa01-4a70-88d0-fbd9bf622f44/1/LzwdSzUqoSIgsGZjxSbUaxGNvk8.roa
File: LzwdSzUqoSIgsGZjxSbUaxGNvk8.roa (raw, json)
Hash identifier: kpiN7F7o4+IlKqkHEsKN4c//OSKCwsmVGUMthv/qhCo=
Subject key identifier: 2F:3C:1D:4B:35:2A:A1:22:20:B0:66:63:C5:26:D4:6B:11:8D:BE:4F
Certificate issuer: /CN=eb317e1be7bb6f82cb9c34a096dc088f5f8f92ca
Certificate serial: 039BEF7D
Authority key identifier: EB:31:7E:1B:E7:BB:6F:82:CB:9C:34:A0:96:DC:08:8F:5F:8F:92:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6zF-G-e7b4LLnDSgltwIj1-Pkso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/b4fab5-aa01-4a70-88d0-fbd9bf622f44/1/LzwdSzUqoSIgsGZjxSbUaxGNvk8.roa
Signing time: Thu 03 Mar 2022 16:04:33 +0000
ROA not before: Thu 03 Mar 2022 16:04:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39120
IP address blocks: 185.165.124.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60551037 (0x39bef7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb317e1be7bb6f82cb9c34a096dc088f5f8f92ca
Validity
Not Before: Mar 3 16:04:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f3c1d4b352aa12220b06663c526d46b118dbe4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b6:80:95:2e:b2:65:cc:d9:30:31:96:cd:71:
59:f8:43:89:89:1f:cb:02:92:75:b9:a7:18:1d:5e:
7f:5b:f0:7a:47:b7:77:23:df:ab:74:1a:60:76:70:
1a:7f:72:b4:f3:7d:31:d7:e6:38:6e:f4:23:cc:ef:
ce:9c:1c:b8:b2:d6:67:0b:e5:ad:56:0c:1e:c1:a2:
a6:03:28:52:3f:95:a3:71:14:5f:7a:56:57:28:62:
9e:c4:0a:93:03:e6:7c:79:27:45:a5:ed:c0:21:a4:
08:40:de:5d:96:f5:d8:55:d6:d7:4b:ae:15:75:60:
9a:92:80:fd:cd:f0:db:3d:00:18:d2:d6:b1:42:0d:
28:ec:07:d6:e7:99:b8:1a:4f:14:a1:5d:53:a4:c8:
aa:35:fd:eb:6a:fe:e6:b0:91:10:9b:03:f0:fb:1f:
e0:0e:9f:54:dd:d2:fd:6f:a3:90:71:78:e3:be:8c:
7e:bc:42:88:11:0c:bd:3d:13:5a:ea:b9:8e:7a:e5:
d0:61:f9:cc:ac:f4:16:5c:51:76:ee:2a:43:5c:7d:
8a:be:f6:a6:23:4b:61:aa:e0:29:b3:f0:2a:db:f5:
ca:3b:0e:ab:51:fc:a6:b4:58:11:6f:f7:c5:63:2d:
8a:95:bc:dd:e2:00:35:f4:22:3c:c0:0d:15:87:80:
bd:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:3C:1D:4B:35:2A:A1:22:20:B0:66:63:C5:26:D4:6B:11:8D:BE:4F
X509v3 Authority Key Identifier:
keyid:EB:31:7E:1B:E7:BB:6F:82:CB:9C:34:A0:96:DC:08:8F:5F:8F:92:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6zF-G-e7b4LLnDSgltwIj1-Pkso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/b4fab5-aa01-4a70-88d0-fbd9bf622f44/1/LzwdSzUqoSIgsGZjxSbUaxGNvk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/b4fab5-aa01-4a70-88d0-fbd9bf622f44/1/6zF-G-e7b4LLnDSgltwIj1-Pkso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.124.0/22
Signature Algorithm: sha256WithRSAEncryption
8d:a7:37:bf:98:bc:ab:8f:a0:86:c2:6b:4e:08:9c:85:15:8b:
0c:c2:aa:25:77:b8:a0:f0:54:9c:10:8c:33:70:e6:8e:a6:a1:
88:2d:e9:4d:f3:26:ce:f9:b5:b8:db:5a:c9:eb:ac:43:4f:21:
eb:bb:d1:85:04:6d:c0:b4:02:e0:dd:2a:c3:7b:5f:8b:3a:ab:
74:b2:d8:7f:70:3a:66:2f:f9:28:f3:d2:f0:fe:95:14:d3:1c:
6d:15:24:eb:45:a0:fe:b5:0d:ae:d3:88:c0:30:91:a3:dc:61:
ea:8b:69:03:13:5d:87:03:56:13:75:cf:4c:52:81:7a:cb:a2:
e5:df:41:31:81:7f:4c:28:2e:a0:a1:46:85:78:c1:be:92:f3:
ac:b9:50:a8:17:ec:1f:2a:df:bf:45:8d:7d:de:70:d6:7c:1e:
f1:9f:44:7f:13:07:06:ba:9d:55:7b:4a:1e:8a:f3:6b:36:7e:
b6:f5:72:58:45:07:d3:80:de:72:f2:54:08:0e:bd:13:a7:c9:
ac:16:1b:12:38:5a:c6:80:b4:b3:b5:2f:e2:bd:2d:b8:61:bc:
89:c2:01:5a:7b:58:2e:dd:ab:7a:9d:73:06:69:4a:6b:e5:44:
57:d4:74:c7:c6:31:89:be:7e:ac:f9:84:3f:05:e6:f0:3b:84:
fa:f4:f2:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:03 2023 by rpki-client on console-ams.rpki-client.org