Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/cbe695-d2d9-4d6f-87e2-a1cce6f80ca3/1/LkkUwZLGNc9iQ_vj3PZBKfi9J6M.roa
File: LkkUwZLGNc9iQ_vj3PZBKfi9J6M.roa (raw, json)
Hash identifier: cfbA8UkPJjgrk+AWO5aBllLfTCPbbD5hYT3+DIzt35U=
Subject key identifier: 2E:49:14:C1:92:C6:35:CF:62:43:FB:E3:DC:F6:41:29:F8:BD:27:A3
Certificate issuer: /CN=513bdfec55b048b0d2f03b43bf66e3e67e86553f
Certificate serial: 041BE6DF
Authority key identifier: 51:3B:DF:EC:55:B0:48:B0:D2:F0:3B:43:BF:66:E3:E6:7E:86:55:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UTvf7FWwSLDS8DtDv2bj5n6GVT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/cbe695-d2d9-4d6f-87e2-a1cce6f80ca3/1/LkkUwZLGNc9iQ_vj3PZBKfi9J6M.roa
Signing time: Sat 01 Jan 2022 12:03:29 +0000
ROA not before: Sat 01 Jan 2022 12:03:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41768
IP address blocks: 193.37.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68937439 (0x41be6df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=513bdfec55b048b0d2f03b43bf66e3e67e86553f
Validity
Not Before: Jan 1 12:03:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e4914c192c635cf6243fbe3dcf64129f8bd27a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:62:e9:30:7d:a0:9e:db:10:1d:69:71:c4:0e:
9d:b7:80:1a:d3:9d:19:27:ca:95:35:ca:62:0b:7c:
cb:c9:3d:b7:34:0d:ab:79:19:34:92:81:b7:8c:0d:
c5:72:0c:53:7e:bd:a4:41:00:a3:f2:33:d7:7a:e6:
cc:9e:89:aa:e0:e0:21:79:e4:5d:64:f4:a8:c8:b4:
ee:e3:00:68:cd:2a:f7:0f:eb:35:71:4f:64:5c:db:
e7:3d:b0:00:21:b8:36:9d:e0:c8:10:7a:af:8b:42:
a4:50:0b:5a:84:aa:a5:56:a9:82:d3:62:d5:5d:46:
d0:5f:34:24:df:36:fb:d1:91:cd:11:7f:95:d5:85:
b1:a7:f7:6d:61:f5:38:47:c4:70:29:8a:e3:2e:25:
2c:ab:33:40:56:3a:20:b0:58:ea:aa:75:d2:f6:50:
ef:e0:6e:86:56:a2:31:03:af:dd:bf:cc:95:7c:7a:
89:33:9f:36:4d:d4:f7:9e:fb:fd:d7:49:2b:6c:57:
70:90:e2:6d:aa:bd:c7:41:54:73:23:f9:49:f6:15:
82:d1:81:a6:61:1f:31:76:ad:ab:db:50:73:57:32:
e8:59:ba:f6:09:08:31:8c:4b:7c:90:de:24:80:cf:
ce:e3:40:8f:fa:6a:1f:8a:04:3b:0d:78:df:f0:df:
97:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:49:14:C1:92:C6:35:CF:62:43:FB:E3:DC:F6:41:29:F8:BD:27:A3
X509v3 Authority Key Identifier:
keyid:51:3B:DF:EC:55:B0:48:B0:D2:F0:3B:43:BF:66:E3:E6:7E:86:55:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UTvf7FWwSLDS8DtDv2bj5n6GVT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/cbe695-d2d9-4d6f-87e2-a1cce6f80ca3/1/LkkUwZLGNc9iQ_vj3PZBKfi9J6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/cbe695-d2d9-4d6f-87e2-a1cce6f80ca3/1/UTvf7FWwSLDS8DtDv2bj5n6GVT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.159.0/24
Signature Algorithm: sha256WithRSAEncryption
72:04:44:73:17:95:0d:1a:a7:89:48:0d:7e:00:a3:bd:c5:22:
bc:3d:35:3d:31:43:95:95:f5:81:1e:1b:2e:05:04:08:ca:9d:
ae:af:e1:87:d3:cb:14:72:b9:08:ed:9f:de:bf:9a:2b:4f:79:
32:0b:f5:02:1a:08:0c:e2:40:51:88:0f:89:52:59:ca:b0:64:
50:ba:f7:84:ff:b6:3d:69:c5:79:0c:60:3b:09:d3:8e:c7:6f:
ba:a3:3c:22:cb:87:41:64:5b:0b:1c:2e:70:d4:58:5e:a7:e7:
91:83:10:2d:e4:66:c5:62:b7:46:5b:14:a2:37:28:3c:ce:9b:
c1:36:87:8c:f8:25:d1:5c:ca:1e:25:01:7c:4d:68:e4:ab:72:
b4:8b:58:c8:76:f9:56:56:59:06:13:7b:07:38:63:b4:ae:0f:
c2:7b:ad:bd:cc:61:4c:7f:3b:4f:c3:da:fc:51:7d:28:41:84:
81:0a:1e:31:04:b7:3e:75:a1:77:63:60:db:68:23:ed:6d:1f:
4f:18:bb:b5:c6:d3:03:1d:3a:4b:a4:ec:fa:f0:ae:e4:e6:42:
26:74:7a:6e:cf:de:b5:33:92:51:ff:b9:89:3d:d6:c1:08:a2:
c9:eb:d6:15:e2:fb:d2:39:87:d8:c8:4d:52:e1:e3:cc:38:13:
27:a5:a3:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:54 2025 by rpki-client