Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/5423c1-871f-461c-9970-4db3f188f5b6/1/lu9KSXPUIK6ZtIXA1MVgjDxwz-Y.roa
File: lu9KSXPUIK6ZtIXA1MVgjDxwz-Y.roa (raw, json)
Hash identifier: 4kNtQEsFcJl6HdxwZEtf2WiAVN3VclINTp1/j6cS46s=
Subject key identifier: 96:EF:4A:49:73:D4:20:AE:99:B4:85:C0:D4:C5:60:8C:3C:70:CF:E6
Certificate issuer: /CN=137837d5d17969d2bc0d44e5634a94bf7d34e90b
Certificate serial: E95DE3
Authority key identifier: 13:78:37:D5:D1:79:69:D2:BC:0D:44:E5:63:4A:94:BF:7D:34:E9:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E3g31dF5adK8DUTlY0qUv3006Qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/5423c1-871f-461c-9970-4db3f188f5b6/1/lu9KSXPUIK6ZtIXA1MVgjDxwz-Y.roa
Signing time: Sat 01 Jan 2022 03:51:43 +0000
ROA not before: Sat 01 Jan 2022 03:51:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207286
IP address blocks: 185.80.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15293923 (0xe95de3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=137837d5d17969d2bc0d44e5634a94bf7d34e90b
Validity
Not Before: Jan 1 03:51:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=96ef4a4973d420ae99b485c0d4c5608c3c70cfe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:6f:a3:d4:e2:98:c5:0d:9e:77:96:5e:5e:1a:
97:65:9f:ee:6d:95:e5:da:5a:33:e6:2d:2a:9f:6c:
e1:ff:ed:1c:99:57:72:f6:71:62:83:90:4c:57:56:
9a:40:59:22:de:d5:98:f2:c0:06:af:9b:cd:b5:75:
aa:c3:25:cb:e0:2a:af:0e:b8:ce:6a:10:c5:6e:95:
a3:51:3f:39:27:71:81:1c:4d:c1:8e:06:d0:73:bb:
3c:6f:5c:29:3a:1a:2c:52:c1:3e:37:bc:c1:89:1d:
f8:e6:f2:fd:37:7f:64:e9:45:99:85:0c:7f:a8:8e:
c3:bd:44:81:d0:01:b8:1f:14:7b:ae:90:b4:8b:a8:
74:db:4b:6f:14:67:b8:76:fa:47:43:f9:bd:19:a6:
e7:88:29:2d:db:9e:c4:dd:6c:74:4d:08:87:db:81:
f1:3a:02:4b:33:ff:bc:a5:b7:17:e2:5e:4d:a1:a6:
a4:90:1e:88:5c:0e:28:bb:42:fc:e4:95:6a:74:d7:
ae:15:d2:1c:74:86:4a:66:80:88:3d:fa:77:1b:f4:
7e:d4:cb:d5:f8:e1:b7:7a:4d:2d:0e:c0:e9:67:8d:
33:19:a1:e2:fb:10:93:e4:cf:2c:42:53:74:77:00:
c4:c0:d6:07:c6:62:20:06:2d:f9:e3:81:0b:04:4d:
be:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:EF:4A:49:73:D4:20:AE:99:B4:85:C0:D4:C5:60:8C:3C:70:CF:E6
X509v3 Authority Key Identifier:
keyid:13:78:37:D5:D1:79:69:D2:BC:0D:44:E5:63:4A:94:BF:7D:34:E9:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E3g31dF5adK8DUTlY0qUv3006Qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/5423c1-871f-461c-9970-4db3f188f5b6/1/lu9KSXPUIK6ZtIXA1MVgjDxwz-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/5423c1-871f-461c-9970-4db3f188f5b6/1/E3g31dF5adK8DUTlY0qUv3006Qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.80.29.0/24
Signature Algorithm: sha256WithRSAEncryption
77:38:65:5b:fd:64:30:f9:7d:52:84:99:03:b4:71:8b:ce:98:
6d:21:3f:c2:3a:cf:f3:15:53:29:9f:94:be:87:2e:07:1c:b2:
c3:62:84:ac:f8:7e:82:76:17:67:fb:1b:33:52:ae:2e:0c:62:
9a:8b:50:ec:39:bf:f7:1c:6d:0d:b4:c3:50:cd:03:df:a3:05:
7b:ee:81:2c:db:29:a9:57:d6:df:84:a4:b1:ad:a0:9a:43:6b:
2b:40:1d:72:a4:3f:c9:80:82:c6:b0:11:ee:80:98:bd:37:30:
15:5b:38:c5:52:41:f3:f6:2b:8b:40:4c:7e:28:f6:c1:e8:50:
cd:80:92:17:28:9b:bb:cb:96:9c:50:ee:81:02:6e:8d:55:ac:
d1:cc:15:78:d5:a5:6a:0b:26:40:6a:51:c9:2e:01:df:b5:59:
d4:47:a9:32:1f:82:08:2c:8e:51:bd:59:d4:6e:b8:92:5c:7d:
76:64:f9:7c:3d:8e:47:9b:d0:be:39:8a:90:45:76:b5:79:26:
cc:3a:3f:77:4c:99:8f:cb:6a:5f:e0:9d:4a:77:42:c2:5e:94:
61:be:cc:b2:8e:a0:f2:60:08:7a:b6:c9:3c:45:66:de:67:e2:
22:0c:35:cb:a2:4f:19:da:49:7e:e8:90:d3:1b:8e:6d:51:09:
96:a5:57:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:29:05 2025 by rpki-client