Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/b17ca4-2e2e-415a-adde-77257e04765f/1/lHR3LVSDKP_8XimiEvlCLP-nSIE.roa
File: lHR3LVSDKP_8XimiEvlCLP-nSIE.roa (raw, json)
Hash identifier: oF6gNrwcTgrADPowfINC9JHcQut5kENwIeh6gSRGWCQ=
Subject key identifier: 94:74:77:2D:54:83:28:FF:FC:5E:29:A2:12:F9:42:2C:FF:A7:48:81
Certificate issuer: /CN=4ee0432f5429d861d7743bfc31d7ad019628a5eb
Certificate serial: 12AF51AC
Authority key identifier: 4E:E0:43:2F:54:29:D8:61:D7:74:3B:FC:31:D7:AD:01:96:28:A5:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuBDL1Qp2GHXdDv8MdetAZYopes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/b17ca4-2e2e-415a-adde-77257e04765f/1/lHR3LVSDKP_8XimiEvlCLP-nSIE.roa
Signing time: Sat 01 Jan 2022 15:02:26 +0000
ROA not before: Sat 01 Jan 2022 15:02:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8757
IP address blocks: 185.144.84.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 313479596 (0x12af51ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ee0432f5429d861d7743bfc31d7ad019628a5eb
Validity
Not Before: Jan 1 15:02:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9474772d548328fffc5e29a212f9422cffa74881
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d2:37:27:29:6e:86:b0:c0:03:ab:b4:55:d4:
de:27:54:aa:36:4d:78:79:07:bd:10:c5:1d:88:ed:
ea:af:3a:2d:30:d0:dc:52:93:49:92:8e:81:6a:40:
aa:8e:12:16:5f:36:cc:bf:3a:eb:33:59:57:a2:68:
7c:0e:dc:45:20:a8:b8:b7:ac:f6:ff:b0:fc:3c:09:
ee:90:4e:bb:a5:a4:f6:01:99:ce:43:a8:a1:d0:af:
e3:e0:7f:d6:74:e1:00:62:be:20:28:50:b5:78:f6:
54:c2:52:21:1f:6f:74:76:25:cf:48:a8:5d:c3:7b:
09:e0:84:7b:48:bd:14:bf:dd:27:64:60:bc:b1:01:
9d:6a:a1:b9:b5:5b:7e:29:c2:48:5f:df:4a:df:09:
cc:eb:0a:0f:2c:69:44:4a:d7:c0:53:92:26:a8:c6:
fe:20:d4:43:46:5d:64:0d:7f:32:c6:4b:9a:5e:33:
3c:eb:b8:a5:25:ab:c9:c1:92:62:57:43:3f:5d:ed:
99:9f:8e:3e:ab:53:24:8a:98:41:3a:94:a3:da:4d:
62:85:c2:ef:2b:b5:b5:57:61:3c:98:4e:03:41:d5:
45:a0:46:19:ef:8a:76:02:a4:b0:cb:f6:6e:13:b2:
91:51:cc:89:62:29:10:be:8a:a0:29:bf:c9:12:61:
17:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:74:77:2D:54:83:28:FF:FC:5E:29:A2:12:F9:42:2C:FF:A7:48:81
X509v3 Authority Key Identifier:
keyid:4E:E0:43:2F:54:29:D8:61:D7:74:3B:FC:31:D7:AD:01:96:28:A5:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuBDL1Qp2GHXdDv8MdetAZYopes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b17ca4-2e2e-415a-adde-77257e04765f/1/lHR3LVSDKP_8XimiEvlCLP-nSIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b17ca4-2e2e-415a-adde-77257e04765f/1/TuBDL1Qp2GHXdDv8MdetAZYopes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.84.0/22
Signature Algorithm: sha256WithRSAEncryption
22:04:6f:92:43:15:0f:a9:42:92:76:f4:ad:e6:6f:eb:7d:4f:
aa:e0:a3:8f:ab:58:3f:2c:59:f3:67:f5:c1:7e:33:37:be:16:
c0:c1:c6:d8:80:32:c6:f4:5c:d0:dd:28:b3:6d:19:24:81:cb:
0f:2c:f0:89:04:c2:d9:e9:64:a8:61:f3:41:0b:00:0c:08:b7:
17:20:0f:5f:03:2d:db:b2:ae:4b:17:10:05:f7:d6:03:73:73:
6d:92:46:d0:fc:6f:86:ad:98:ac:69:37:6d:b9:ac:8a:12:a1:
97:a1:14:56:e2:73:86:5d:ed:96:f8:e1:f8:2d:6f:04:9d:9b:
0e:1a:6d:2c:5f:41:1c:e5:a0:4b:04:37:e2:c1:41:4f:98:15:
b1:f7:8c:1f:fa:06:92:d8:2f:ca:35:76:53:b7:c4:3e:7b:82:
b7:29:e1:2c:ff:26:8d:9c:8e:43:38:57:eb:45:f3:25:e3:e1:
73:d5:c2:64:88:d1:0f:2e:ee:2d:a1:21:d8:b0:cd:5d:0f:67:
25:43:b3:59:da:f1:74:f5:88:c1:0e:ba:57:12:cf:09:f1:c4:
83:62:88:ae:14:50:97:78:71:de:e3:9c:88:94:2b:52:66:0e:
43:5c:41:d7:0b:b7:77:fe:42:c9:98:1c:41:46:1b:c6:aa:f2:
a2:3d:c6:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:33 2024 by rpki-client on console-ams.rpki-client.org