Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/LG-BAx6TBuDp8lM06GifTugO8zY.roa
File: LG-BAx6TBuDp8lM06GifTugO8zY.roa (raw, json)
Hash identifier: uVCd8/19AuVgcEOkbNhwriueoy4Zhb3+rsgpXPFdcN4=
Subject key identifier: 2C:6F:81:03:1E:93:06:E0:E9:F2:53:34:E8:68:9F:4E:E8:0E:F3:36
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 0183EEB7472D06934A90E4861C02B52E6AFD
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/LG-BAx6TBuDp8lM06GifTugO8zY.roa
Signing time: Wed 19 Oct 2022 05:28:52 +0000
ROA not before: Wed 19 Oct 2022 05:28:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 85.203.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ee:b7:47:2d:06:93:4a:90:e4:86:1c:02:b5:2e:6a:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Oct 19 05:28:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c6f81031e9306e0e9f25334e8689f4ee80ef336
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:fb:4b:a6:27:c5:aa:d5:06:9b:44:dd:a4:11:
8e:0d:6c:47:8f:4f:75:58:94:88:dc:e0:d3:8a:91:
28:32:d0:b8:05:f6:00:8c:46:ed:4a:8c:0b:f6:4a:
22:c4:16:6f:12:5b:04:5d:6f:55:e8:6b:23:40:5d:
06:df:49:f1:17:24:14:15:29:87:44:3c:85:62:8d:
55:dc:d5:9f:a0:ed:8a:c8:c4:d7:5a:91:bb:5b:73:
93:a1:22:e3:41:a1:95:e0:16:d8:99:4e:c6:b1:3d:
5c:1b:ac:f8:5e:dc:8e:1b:f4:50:03:de:f9:86:1f:
23:44:d4:58:be:14:b9:d4:b4:e2:7c:dd:bc:f9:44:
10:44:78:7a:78:8b:06:74:81:bc:29:77:2f:fd:18:
18:78:37:78:12:88:71:85:b5:42:5d:59:52:88:bb:
97:33:0c:16:b3:8b:52:92:ed:e6:28:bd:1e:79:26:
64:19:80:83:d0:b1:70:ca:f9:33:76:20:a6:02:9e:
23:2d:ea:e7:bb:32:7b:ec:29:5e:a6:70:4c:39:10:
c0:93:61:2f:1f:b5:1f:48:8e:5b:f8:af:8d:4b:d8:
61:f8:04:a2:02:b0:e4:8f:1a:f5:bc:31:aa:06:d9:
85:b4:ef:53:1c:d3:e9:75:a8:91:d0:e5:b2:7e:f2:
db:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:6F:81:03:1E:93:06:E0:E9:F2:53:34:E8:68:9F:4E:E8:0E:F3:36
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/LG-BAx6TBuDp8lM06GifTugO8zY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.39.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:20:1c:a7:45:3c:dd:16:3f:e3:08:2a:5f:3a:7a:b6:e8:42:
e2:61:19:90:37:50:30:df:79:43:7d:85:2c:6a:19:4d:19:a8:
ee:66:73:e2:9e:6c:bc:d0:c6:0d:18:ee:a4:cd:df:ff:88:54:
f8:48:a1:1f:14:d5:a4:89:14:a8:c3:97:80:1c:46:e3:b8:ec:
77:aa:8b:f0:bb:4e:1d:2f:c0:6b:d1:06:23:2e:25:34:6a:a4:
66:0c:ed:a2:0e:87:92:fa:a9:80:41:08:a7:a0:b3:1e:81:d7:
fe:9c:65:d7:e8:5c:77:39:da:c6:0a:1d:43:ca:d6:5c:8b:3b:
6a:39:95:2f:e3:a7:3b:42:d0:25:6c:71:48:66:88:86:8c:94:
cd:38:91:c7:9b:f0:03:bd:72:d3:24:00:9f:c6:e1:91:ad:a3:
7b:5f:93:04:e4:dd:0f:4b:c4:a9:da:1c:45:48:4f:01:84:bb:
a4:d6:d5:de:13:68:21:e7:9c:00:fa:81:15:b0:c1:66:e9:03:
5b:b9:03:6d:d2:1f:11:db:c6:c8:44:77:27:c5:39:21:d2:85:
d0:b8:aa:18:d5:66:a2:f5:d3:1c:21:8b:17:7f:93:06:e0:26:
1a:9c:47:c3:ef:7f:72:47:13:33:0c:5f:f0:ba:44:e1:5f:43:
ca:de:05:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:11:11 2025 by rpki-client