Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/LKvzEdoUChiJlOWy3ggUwnH318E.roa
File: LKvzEdoUChiJlOWy3ggUwnH318E.roa (raw, json)
Hash identifier: pqhSDshfUZK7VI4OZ7lz9K6DbqyUDnWTtzG2bZUIok8=
Subject key identifier: 2C:AB:F3:11:DA:14:0A:18:89:94:E5:B2:DE:08:14:C2:71:F7:D7:C1
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 01842467298105C3CE21B8873900751E64C5
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/LKvzEdoUChiJlOWy3ggUwnH318E.roa
Signing time: Sat 29 Oct 2022 15:40:51 +0000
ROA not before: Sat 29 Oct 2022 15:40:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13259
IP address blocks: 193.37.70.0/24 maxlen: 24
80.66.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:24:67:29:81:05:c3:ce:21:b8:87:39:00:75:1e:64:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Oct 29 15:40:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2cabf311da140a188994e5b2de0814c271f7d7c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:9e:ae:dd:cf:79:7c:51:6b:2f:05:20:8a:8f:
29:11:2f:8b:ec:b7:54:0f:3d:bf:28:1b:76:ff:e8:
9a:f9:d2:f3:4d:2d:61:7f:58:95:d8:ae:24:45:8a:
78:c5:9d:63:16:6a:9d:ad:30:5f:ff:5c:71:9c:c4:
06:31:6a:e4:f4:d3:4e:69:44:28:89:70:10:bd:66:
df:6e:47:3b:b0:dd:35:0e:27:fa:f4:9f:2c:4f:ef:
0d:91:ac:f9:3f:d9:2b:9e:90:87:6e:ef:da:96:4e:
8b:66:e5:6c:7a:b9:e6:23:6d:30:a8:c7:43:e7:47:
93:86:4c:2d:4b:b6:dc:86:69:49:a4:70:a3:e3:46:
31:de:05:af:c0:14:a2:e1:69:7b:3b:94:a7:82:60:
9b:62:1b:e0:27:76:48:e4:fc:4e:5f:cc:2b:91:c3:
b8:32:03:93:80:f1:c7:9d:b4:e0:e5:b7:bf:b2:05:
86:bf:09:2a:44:e8:fb:bc:81:8b:c7:34:d9:e0:13:
d5:39:ec:e5:17:77:fd:0b:9e:61:1c:ca:ea:63:c4:
d8:7e:5c:21:3e:53:c3:d7:06:5e:2e:61:83:f3:9d:
8b:d2:46:9a:8c:fe:da:2d:10:e6:71:6a:f6:d2:d3:
1d:ec:6b:c3:e6:73:da:e8:3d:d4:b1:94:fb:1e:f7:
ed:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:AB:F3:11:DA:14:0A:18:89:94:E5:B2:DE:08:14:C2:71:F7:D7:C1
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/LKvzEdoUChiJlOWy3ggUwnH318E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.69.0/24
193.37.70.0/24
Signature Algorithm: sha256WithRSAEncryption
89:f6:09:54:ec:b7:e6:bb:63:58:fb:1b:72:14:d2:37:9a:f9:
37:0a:22:1e:83:7c:6d:0b:5c:9c:ae:18:ed:bf:5d:f9:aa:94:
c3:15:cf:66:72:9e:4c:f2:ea:d5:46:dc:86:7c:a1:b5:a6:b6:
fa:49:6b:b5:21:35:94:e2:6e:70:b2:f8:83:db:15:b2:06:cb:
8f:43:36:ad:d5:07:fe:ae:b7:ba:fb:e5:71:82:14:2d:4a:09:
92:ec:0e:85:4f:76:d6:e9:fc:39:b9:bd:f7:e8:a9:0c:e3:65:
7b:a9:09:96:56:84:14:05:6f:08:c1:ed:90:d9:61:df:f1:11:
8d:0c:05:56:08:9e:7d:28:a5:7f:07:8f:71:8e:34:bd:d8:fe:
67:d5:c8:4c:98:22:6f:26:66:de:a8:55:65:0a:34:09:60:d4:
92:28:0f:ab:a2:cf:14:62:5a:a5:c7:2a:97:b9:5e:f3:34:fc:
44:92:01:df:aa:1d:19:62:04:48:69:53:2a:92:cf:6f:94:fb:
4d:78:1a:82:d4:e8:22:e4:00:d3:8f:ae:a7:dc:be:03:77:ab:
fb:80:01:5e:fb:dd:79:be:57:a8:04:4e:46:69:60:6a:a5:61:
c4:d2:20:9c:da:de:c5:4b:ba:0b:5f:6a:9d:31:37:c6:63:98:
48:0c:92:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:38 2024 by rpki-client on console-fra.rpki-client.org