Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/c1765b-e3a5-410c-9cd3-6ca340fa7493/1/LFWD0EO1M6aR_8KxbdBTzh6HzaM.roa
File: LFWD0EO1M6aR_8KxbdBTzh6HzaM.roa (raw, json)
Hash identifier: 3INxT1z8o1ffq7SuJv2gWKJcuwTZuIH5ARNbRDdFBHM=
Subject key identifier: 2C:55:83:D0:43:B5:33:A6:91:FF:C2:B1:6D:D0:53:CE:1E:87:CD:A3
Certificate issuer: /CN=7445ddeedfbd72d313e9ee8cceeae8403cc34146
Certificate serial: 187AFBDF
Authority key identifier: 74:45:DD:EE:DF:BD:72:D3:13:E9:EE:8C:CE:EA:E8:40:3C:C3:41:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dEXd7t-9ctMT6e6MzuroQDzDQUY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/c1765b-e3a5-410c-9cd3-6ca340fa7493/1/LFWD0EO1M6aR_8KxbdBTzh6HzaM.roa
Signing time: Sat 01 Jan 2022 09:03:17 +0000
ROA not before: Sat 01 Jan 2022 09:03:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 88.212.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 410713055 (0x187afbdf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7445ddeedfbd72d313e9ee8cceeae8403cc34146
Validity
Not Before: Jan 1 09:03:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c5583d043b533a691ffc2b16dd053ce1e87cda3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:3d:81:11:b9:72:18:ae:72:99:f4:72:57:b5:
f1:f7:01:3f:7c:b4:22:63:a3:4c:61:0f:41:84:bc:
2d:4b:87:07:fd:53:3e:53:a5:1e:e9:76:d9:d7:f5:
3e:30:0e:df:39:c3:17:5a:80:f2:f4:ee:4b:65:df:
21:a9:d0:b2:eb:a0:c3:7c:f5:27:01:df:e3:af:97:
08:b1:25:a2:00:b3:0b:99:36:df:e6:9b:33:03:a4:
48:9f:ca:4b:e5:f4:08:17:e7:61:4f:10:20:be:ed:
0e:a1:e6:8a:38:ef:50:f4:c5:0a:42:e6:b3:dc:9f:
3e:3f:bf:95:9e:f6:0e:d8:c3:eb:09:62:e6:3d:9c:
c5:33:8b:21:5e:b4:cf:4e:44:fd:3c:ac:e2:98:74:
99:bc:c8:cf:ca:87:46:92:2e:bc:09:23:7f:7a:7a:
33:48:42:53:4c:8c:7a:30:a2:8f:63:13:41:9b:3d:
4c:b6:f6:68:fe:d7:bb:f0:f0:ea:04:5c:85:8b:4d:
ba:25:2d:3e:60:2e:69:16:e4:47:10:23:39:63:d0:
59:4d:cb:28:9f:f2:fc:70:8f:ac:90:c3:58:69:ba:
ce:f8:e3:ac:b5:71:3f:dd:2c:2f:c0:61:7f:cd:af:
c0:c8:fd:f4:69:39:15:e8:fd:4b:f3:f8:a3:90:66:
8d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:55:83:D0:43:B5:33:A6:91:FF:C2:B1:6D:D0:53:CE:1E:87:CD:A3
X509v3 Authority Key Identifier:
keyid:74:45:DD:EE:DF:BD:72:D3:13:E9:EE:8C:CE:EA:E8:40:3C:C3:41:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dEXd7t-9ctMT6e6MzuroQDzDQUY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/c1765b-e3a5-410c-9cd3-6ca340fa7493/1/LFWD0EO1M6aR_8KxbdBTzh6HzaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/c1765b-e3a5-410c-9cd3-6ca340fa7493/1/dEXd7t-9ctMT6e6MzuroQDzDQUY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.212.159.0/24
Signature Algorithm: sha256WithRSAEncryption
76:95:ef:25:c6:af:73:e8:77:e5:e7:4d:96:e6:70:45:97:08:
00:19:85:cf:b6:bb:80:30:c6:b0:66:60:cb:6f:0e:06:e6:0e:
81:e0:99:9a:e7:d2:ce:0b:2e:06:8d:f5:68:39:89:b0:c2:ff:
0b:9f:18:60:37:79:9b:e2:40:4a:e3:22:4b:7c:7d:f3:8b:d7:
15:50:50:ef:95:62:9e:82:cb:40:07:78:c2:ae:f1:9e:26:f7:
95:a9:d0:7a:7c:bc:b6:d3:03:3d:a2:03:e9:61:d7:fb:90:18:
fe:0d:5c:3c:b7:83:ab:ff:57:9c:28:ab:11:68:64:b8:56:9e:
e3:80:33:98:ff:5a:49:e4:eb:b3:b4:f7:eb:f5:01:e9:fd:38:
d8:67:6e:38:b3:16:a0:ee:7b:97:26:21:db:87:70:87:9a:b4:
73:1e:d1:a2:72:8b:99:55:20:ca:bf:e9:92:bf:cb:1a:1e:21:
b4:82:e4:fe:dc:95:67:c3:18:f7:cd:b8:41:e5:25:1c:02:6b:
34:7b:06:45:8c:0d:5c:47:d3:11:18:e5:40:84:5c:e6:f7:4e:
b5:bc:96:54:e3:97:fc:d1:a6:68:18:6b:62:22:56:a2:79:9f:
5b:81:dd:40:30:e9:c1:a0:06:3a:e9:b5:cd:f9:0c:ff:48:10:
66:8e:7b:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:41 2024 by rpki-client on console-ams.rpki-client.org