Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/32e925-6fe6-4b26-a498-75304f9f5c24/1/LRS5lmgmmujNIEhB-_3ecR1tRu0.roa
File: LRS5lmgmmujNIEhB-_3ecR1tRu0.roa (raw, json)
Hash identifier: VRJ0vD29UpqVzu/AUoAXOQWCfFDtgZiA4j/eAdmXixk=
Subject key identifier: 2D:14:B9:96:68:26:9A:E8:CD:20:48:41:FB:FD:DE:71:1D:6D:46:ED
Certificate issuer: /CN=19f5e04b6555f1e2c92d7a41ac106a75dea928a2
Certificate serial: 04ED65B9
Authority key identifier: 19:F5:E0:4B:65:55:F1:E2:C9:2D:7A:41:AC:10:6A:75:DE:A9:28:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GfXgS2VV8eLJLXpBrBBqdd6pKKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/32e925-6fe6-4b26-a498-75304f9f5c24/1/LRS5lmgmmujNIEhB-_3ecR1tRu0.roa
Signing time: Sat 01 Jan 2022 12:58:33 +0000
ROA not before: Sat 01 Jan 2022 12:58:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204453
IP address blocks: 194.145.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82666937 (0x4ed65b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19f5e04b6555f1e2c92d7a41ac106a75dea928a2
Validity
Not Before: Jan 1 12:58:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d14b99668269ae8cd204841fbfdde711d6d46ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a3:4e:52:10:c0:46:22:6f:dd:7c:ae:69:e5:
79:79:03:6e:9f:c4:40:92:2c:61:09:e9:95:29:c6:
1e:8d:1e:fa:dc:57:fb:ea:d5:dc:53:e5:b5:63:84:
bb:e6:cf:68:e9:5d:e2:79:67:18:1a:05:d3:c3:25:
41:e8:95:b2:26:af:a6:70:7f:72:f3:5e:72:ba:3b:
9f:e6:29:6e:12:43:97:0f:ab:34:9f:74:7c:02:59:
02:29:53:94:ea:0f:b5:8d:93:25:7d:80:0f:e7:b1:
f4:8a:e4:02:55:65:82:db:8f:09:5a:e4:f1:c7:48:
a9:68:c5:10:7a:cd:14:b0:2b:8d:6f:ff:c4:c7:b6:
f3:81:cc:59:9c:74:e4:20:b2:11:13:77:7c:43:af:
4d:e9:a6:f7:a4:87:4d:92:ba:6c:c1:31:1b:75:a9:
86:78:81:23:18:de:f8:e5:3d:00:65:a9:bd:7f:6e:
2f:52:d7:6b:cf:87:16:0d:aa:4e:ca:de:70:98:bc:
37:d6:61:55:6a:22:24:a4:e2:b9:84:90:ad:17:1e:
03:69:f8:6c:c7:01:1e:07:0f:a4:58:10:57:9d:66:
8e:45:9b:b8:92:02:2b:0e:b3:84:fc:ac:3d:54:90:
94:57:b7:a7:3b:43:6d:3c:d9:05:d8:8a:dc:c0:30:
2e:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:14:B9:96:68:26:9A:E8:CD:20:48:41:FB:FD:DE:71:1D:6D:46:ED
X509v3 Authority Key Identifier:
keyid:19:F5:E0:4B:65:55:F1:E2:C9:2D:7A:41:AC:10:6A:75:DE:A9:28:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GfXgS2VV8eLJLXpBrBBqdd6pKKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/32e925-6fe6-4b26-a498-75304f9f5c24/1/LRS5lmgmmujNIEhB-_3ecR1tRu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/32e925-6fe6-4b26-a498-75304f9f5c24/1/GfXgS2VV8eLJLXpBrBBqdd6pKKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.145.202.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:bf:10:3d:98:5b:d3:f2:9d:12:a8:26:5c:88:89:1e:ab:99:
ea:85:f5:c6:a2:4b:94:de:0f:d5:91:d3:e0:1d:1a:5e:ae:6d:
b4:73:6d:94:e4:ad:9c:98:75:06:40:c4:e3:4b:db:84:68:dd:
e3:fa:de:d3:68:b7:5f:04:8b:19:a6:f8:18:42:14:3f:34:d0:
4a:28:b9:1b:1e:de:68:60:80:ef:f3:b1:d9:f2:27:e7:21:d5:
cc:a8:07:de:4c:39:a1:9b:4e:43:a6:58:f3:76:41:30:09:db:
55:19:d8:7d:d3:33:1a:81:af:e4:c1:c5:57:be:37:05:df:e0:
5b:55:83:f8:1d:05:25:67:35:99:b1:1a:1e:f1:5f:4d:26:d3:
e0:6a:4f:6f:ec:9e:93:be:07:37:0d:c6:91:f5:a8:2b:95:48:
cd:8c:ff:ca:fa:47:0f:71:4a:af:0d:43:33:eb:ed:71:b4:c9:
53:98:7c:aa:e0:ea:ca:d4:f2:3b:c8:61:5a:27:d7:02:60:9d:
1d:32:88:0b:f6:48:c8:13:67:9f:86:cb:6e:c1:16:15:21:74:
1f:f4:4a:f3:8e:66:e1:d8:21:e0:ef:5d:61:05:f9:6d:cf:91:
ce:e0:5d:7a:bc:65:fc:fb:68:08:80:0b:1a:95:bf:6e:f8:26:
eb:92:46:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:02 2023 by rpki-client on console-fra.rpki-client.org