Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/LhJeQKhi0F48RlNnuIIj2q5yhRU.roa
File: LhJeQKhi0F48RlNnuIIj2q5yhRU.roa (raw, json)
Hash identifier: /KSbkWclR4nPluWpp8mDi9dBMIl5r/yYg4ualaXM29I=
Subject key identifier: 2E:12:5E:40:A8:62:D0:5E:3C:46:53:67:B8:82:23:DA:AE:72:85:15
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2B0AA7BD
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/LhJeQKhi0F48RlNnuIIj2q5yhRU.roa
Signing time: Sat 01 Jan 2022 13:58:06 +0000
ROA not before: Sat 01 Jan 2022 13:58:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201801
IP address blocks: 193.192.186.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 722118589 (0x2b0aa7bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:58:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e125e40a862d05e3c465367b88223daae728515
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:76:63:14:a1:d1:13:2e:4c:2d:d0:f4:83:48:
6d:84:89:94:6e:05:07:db:d9:07:76:58:d2:7d:0a:
d5:8c:31:97:5f:11:2a:24:e1:c1:ea:97:61:7c:fd:
d2:ad:0c:1d:86:68:3d:d5:48:9a:4e:78:d0:57:31:
50:15:c1:15:47:d4:57:73:df:2e:b7:f0:84:c9:87:
ed:fa:e8:64:c1:0d:5f:dd:b5:31:e4:1d:11:9f:3b:
15:0d:94:f9:32:9d:d6:02:a1:ef:6c:75:40:49:70:
25:a1:76:a6:74:b9:f4:4f:5d:d1:aa:41:c6:63:0f:
f1:76:9f:0d:7e:0c:c7:9d:4c:e0:3d:1c:a3:7e:53:
d8:e8:21:7e:4e:91:8a:9d:80:36:13:07:9b:e9:90:
f2:73:f2:4a:e1:c6:24:ce:f3:d0:8c:ab:06:5f:62:
12:c2:29:14:e2:65:16:33:df:44:b5:7a:f9:e3:c9:
ef:e8:f3:14:d0:7a:d5:a4:94:fa:c5:42:d0:56:14:
0b:87:ac:9a:cd:00:94:61:d6:57:04:94:e8:47:46:
03:19:0f:ed:49:7c:06:d7:cf:08:ac:b3:fa:e1:0f:
40:46:80:07:ed:c4:0a:60:9d:7a:1d:99:a2:40:a4:
20:8e:51:ea:b3:07:a2:c8:18:19:09:05:de:88:43:
ad:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:12:5E:40:A8:62:D0:5E:3C:46:53:67:B8:82:23:DA:AE:72:85:15
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/LhJeQKhi0F48RlNnuIIj2q5yhRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.192.186.0/24
Signature Algorithm: sha256WithRSAEncryption
65:b6:91:7e:1d:62:20:e7:04:06:7c:60:ee:6a:59:7c:56:9c:
a3:c1:fc:d9:7e:15:79:1f:75:c9:d7:e9:e7:32:d2:bc:15:a3:
e0:73:70:cc:af:5c:ca:dd:50:9d:81:b2:24:ed:9a:fc:f2:20:
c7:77:3e:2c:92:98:52:ac:01:f8:68:c1:85:da:17:66:91:47:
4a:f8:31:68:43:f6:5e:7c:66:f1:4d:c0:b6:0e:e8:ce:ce:36:
58:a2:cb:1c:38:44:3f:b5:df:15:ff:93:f7:ce:c4:2c:c8:3a:
0e:99:3a:cc:80:0b:ce:8c:19:7c:db:11:14:ba:1f:9c:f6:a3:
1f:56:46:37:ae:4a:39:94:1e:e7:44:cf:b3:68:f2:a5:a5:32:
9e:ad:b3:e1:bb:2b:86:d7:78:b7:27:09:10:92:8d:de:79:74:
39:f4:55:59:3b:ab:c8:61:06:1e:bf:19:cc:66:cd:d8:c1:aa:
71:91:b7:7c:74:8e:3c:f7:ea:ec:26:91:d5:dc:c3:4a:31:a1:
7b:28:ef:6e:86:64:cf:27:5e:60:5d:4c:27:3d:82:c0:4b:be:
09:14:9d:07:00:34:b3:ec:c5:5d:56:8c:89:57:86:00:c8:81:
0b:5c:8c:d4:de:61:74:17:76:b0:cc:35:63:45:8d:b2:ef:91:
f1:9f:d3:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org