Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/194c1e-9710-4d35-823b-5dd33994a241/1/LPwUbnf1aGDW6zq_Mwty6C6_95Q.roa
File: LPwUbnf1aGDW6zq_Mwty6C6_95Q.roa (raw, json)
Hash identifier: SiZb8nSeJNR1YbC1KZ2MFaElXpLxnDq/0NogsCHARk8=
Subject key identifier: 2C:FC:14:6E:77:F5:68:60:D6:EB:3A:BF:33:0B:72:E8:2E:BF:F7:94
Certificate issuer: /CN=d629010cdb0b312c32e07aaf9b720d73d3bcd3ab
Certificate serial: 062E7783
Authority key identifier: D6:29:01:0C:DB:0B:31:2C:32:E0:7A:AF:9B:72:0D:73:D3:BC:D3:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ikBDNsLMSwy4Hqvm3INc9O806s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/194c1e-9710-4d35-823b-5dd33994a241/1/LPwUbnf1aGDW6zq_Mwty6C6_95Q.roa
Signing time: Tue 18 Jan 2022 09:53:17 +0000
ROA not before: Tue 18 Jan 2022 09:53:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206757
IP address blocks: 195.10.218.0/24 maxlen: 24
185.218.236.0/22 maxlen: 24
45.147.16.0/22 maxlen: 24
193.16.151.0/24 maxlen: 24
193.16.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103708547 (0x62e7783)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d629010cdb0b312c32e07aaf9b720d73d3bcd3ab
Validity
Not Before: Jan 18 09:53:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2cfc146e77f56860d6eb3abf330b72e82ebff794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d9:3d:38:33:38:e3:84:e5:23:88:51:a8:93:
5a:74:4b:58:7f:d3:35:f2:0f:42:72:75:01:16:de:
1e:84:8d:c7:61:ef:d4:fd:8a:c8:c4:e0:9d:9d:7f:
7f:f2:7d:80:1c:ef:e3:cf:9e:c3:38:23:a0:cf:05:
10:c9:af:a5:18:d4:5a:3b:00:d1:e3:a5:63:73:55:
1f:98:54:47:36:a8:92:d0:cf:14:35:bd:42:9e:34:
4a:f5:70:a8:ed:d5:6b:89:c3:e3:10:22:b0:b3:e0:
2b:13:69:fe:6e:8c:8e:9c:65:86:ad:4a:a2:68:39:
27:91:a5:da:21:7a:74:38:a7:d3:d5:b8:9a:98:65:
5d:11:d1:3a:04:1d:ce:0a:a5:22:f0:e2:17:3f:70:
57:7a:76:3e:d5:d6:07:80:0d:f0:a1:d4:6a:71:43:
ca:48:32:ed:d2:0d:33:80:38:31:39:f7:b1:b7:cb:
d9:22:35:49:3d:2b:46:9e:33:29:46:67:a8:33:7e:
dc:a2:f7:36:7b:3d:38:54:92:ab:34:91:28:a4:ec:
72:10:c9:68:cf:4c:bf:2f:64:c9:2d:cd:28:32:f4:
ae:6c:94:6c:a6:bf:10:f8:4f:0c:3d:15:95:95:ed:
a5:f8:2f:b2:f5:69:6a:8f:46:29:fd:d4:90:c7:b0:
7c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:FC:14:6E:77:F5:68:60:D6:EB:3A:BF:33:0B:72:E8:2E:BF:F7:94
X509v3 Authority Key Identifier:
keyid:D6:29:01:0C:DB:0B:31:2C:32:E0:7A:AF:9B:72:0D:73:D3:BC:D3:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ikBDNsLMSwy4Hqvm3INc9O806s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/194c1e-9710-4d35-823b-5dd33994a241/1/LPwUbnf1aGDW6zq_Mwty6C6_95Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/194c1e-9710-4d35-823b-5dd33994a241/1/1ikBDNsLMSwy4Hqvm3INc9O806s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.16.0/22
185.218.236.0/22
193.16.151.0/24
193.16.156.0/24
195.10.218.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:4f:5f:1a:3e:28:22:d0:30:3f:d5:62:77:db:d4:d5:26:40:
47:98:db:1b:24:6c:8e:05:80:b0:9b:b5:10:69:63:4e:d5:3f:
09:54:4a:3a:5c:10:e9:00:7b:f7:17:86:62:55:12:f3:98:9a:
2f:30:12:2c:3b:69:a4:21:b3:73:ae:83:8a:4e:a8:58:9c:dd:
10:71:ee:1b:f8:83:b4:2f:ce:e6:4d:87:67:df:05:98:3a:73:
4d:af:2c:22:a3:d5:88:b9:66:1e:0c:a7:76:70:cb:03:4c:9e:
95:f4:d9:be:b1:73:09:57:b2:c5:0a:01:6e:c7:0f:5e:1a:1c:
3d:93:57:78:ef:0f:2c:aa:0d:21:f7:e6:2c:b1:8e:73:55:c0:
24:40:82:dc:6f:98:86:e8:58:2c:57:f0:37:39:4b:ee:ab:f8:
9d:ec:b8:15:ee:e4:1e:69:0c:f5:89:6d:12:dd:8c:5f:0c:1c:
68:5a:44:02:cc:85:e4:ea:91:5b:90:ba:50:46:b8:6e:cd:b6:
36:f2:73:ac:c3:a0:db:7b:6b:99:06:b9:85:6a:21:3b:0f:54:
20:1a:8f:e6:4b:4f:b5:c8:5f:0d:5f:8d:2d:35:e4:23:0a:2a:
8c:6a:e6:58:12:fe:10:26:e5:92:90:18:96:62:65:f9:14:88:
ba:71:76:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:43 2023 by rpki-client on console-fra.rpki-client.org