Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/Lp98WPy21Pr1sSBeJB5VwiE2cRg.roa
File: Lp98WPy21Pr1sSBeJB5VwiE2cRg.roa (raw, json)
Hash identifier: bmrokqEFr0fpmYojMj2odexh304sRbGmTovJzGbbykQ=
Subject key identifier: 2E:9F:7C:58:FC:B6:D4:FA:F5:B1:20:5E:24:1E:55:C2:21:36:71:18
Certificate issuer: /CN=4292b5da4b4ffeaf720649518fbaaa10c5cb2811
Certificate serial: 01822FE04543E9382170F5096346BBB4407D
Authority key identifier: 42:92:B5:DA:4B:4F:FE:AF:72:06:49:51:8F:BA:AA:10:C5:CB:28:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpK12ktP_q9yBklRj7qqEMXLKBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/Lp98WPy21Pr1sSBeJB5VwiE2cRg.roa
Signing time: Sun 24 Jul 2022 11:03:23 +0000
ROA not before: Sun 24 Jul 2022 11:03:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6424
IP address blocks: 93.114.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:2f:e0:45:43:e9:38:21:70:f5:09:63:46:bb:b4:40:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4292b5da4b4ffeaf720649518fbaaa10c5cb2811
Validity
Not Before: Jul 24 11:03:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e9f7c58fcb6d4faf5b1205e241e55c221367118
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f5:7b:39:da:15:5b:b5:80:36:c5:c8:45:90:
76:f4:41:6d:d2:c5:30:28:5b:9d:97:bd:55:95:3b:
de:20:6e:9e:c0:09:b9:45:23:b6:bb:34:3b:4d:3c:
e6:aa:e0:a5:51:58:25:96:73:28:84:b5:1e:87:a4:
20:8f:91:97:5d:15:cd:4e:50:c6:58:80:93:84:87:
ca:6a:07:16:09:0f:3f:e5:28:ba:6d:9d:e1:4c:82:
0e:a8:2a:18:ae:ec:85:62:18:04:db:63:5d:53:c3:
2b:59:32:67:14:a4:a4:e2:84:e9:99:39:2b:41:b1:
8c:af:71:08:eb:68:f9:e9:96:63:62:04:0a:f8:9a:
3c:6d:4f:13:59:28:78:cb:63:2e:a6:05:17:f1:66:
8a:52:48:85:be:85:59:f2:9a:18:08:a4:f9:d5:47:
a4:9f:36:48:6c:98:a2:42:1d:6f:f7:b0:e9:e0:3f:
33:44:90:d3:1a:4d:39:bf:47:b8:d7:6d:ca:f8:f1:
88:bb:19:37:82:46:b3:ed:2b:6b:b6:9e:f5:e7:58:
a1:76:50:93:04:ab:c0:4f:31:45:26:15:18:43:39:
cd:9c:7c:d6:56:2e:da:48:0c:e2:6b:61:53:a2:98:
70:ab:4e:a4:83:41:4a:bf:0d:18:97:71:1e:85:de:
46:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:9F:7C:58:FC:B6:D4:FA:F5:B1:20:5E:24:1E:55:C2:21:36:71:18
X509v3 Authority Key Identifier:
keyid:42:92:B5:DA:4B:4F:FE:AF:72:06:49:51:8F:BA:AA:10:C5:CB:28:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpK12ktP_q9yBklRj7qqEMXLKBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/Lp98WPy21Pr1sSBeJB5VwiE2cRg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/QpK12ktP_q9yBklRj7qqEMXLKBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.114.181.0/24
Signature Algorithm: sha256WithRSAEncryption
88:60:a4:01:73:41:69:1d:d7:bc:76:63:83:ce:02:01:34:d3:
5f:62:8a:b0:5b:9e:13:62:ee:b9:96:a4:b8:c7:a9:83:4b:41:
d7:a0:4f:dc:1b:b3:80:8f:0d:a9:0a:cb:1b:86:83:0b:5a:82:
44:c3:07:61:95:a6:0b:30:82:5e:45:14:91:70:8a:37:b6:01:
c3:92:08:90:17:0c:75:75:aa:12:7f:b8:aa:27:ad:46:da:af:
07:c9:5c:6e:16:1b:55:c2:b4:69:3f:d3:41:08:ad:51:9a:c5:
09:af:8e:c8:7c:95:d7:62:3f:2b:70:fa:32:27:07:1f:04:74:
d7:f5:68:51:48:22:aa:0d:6a:b4:36:a3:67:13:c4:6d:ac:5c:
fa:17:87:df:e5:20:1b:ed:53:99:ed:42:ad:6c:67:3c:a2:16:
77:cf:63:e3:0c:a6:8a:a3:bf:30:a0:ec:5e:cf:6b:e9:76:3a:
a4:2b:5b:ed:5d:e1:bc:44:0d:0a:3e:94:51:ca:c3:53:b7:22:
c9:a7:27:a3:1c:8a:56:2c:ad:bc:a1:aa:07:6b:2c:f2:de:d4:
31:9c:2d:c5:e2:10:89:42:58:b5:4b:cd:c6:d3:18:e6:df:6d:
e8:8e:5c:95:1c:f4:f7:ff:24:25:b6:31:66:58:22:73:f3:31:
dc:23:07:65
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYIv4EVD6TghcPUJY0a7tEB9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyOTJiNWRhNGI0ZmZlYWY3MjA2NDk1MThmYmFhYTEwYzVj
YjI4MTEwHhcNMjIwNzI0MTEwMzIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZTlmN2M1OGZjYjZkNGZhZjViMTIwNWUyNDFlNTVjMjIxMzY3MTE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkPV7OdoVW7WANsXIRZB29EFt0sUw
KFudl71VlTveIG6ewAm5RSO2uzQ7TTzmquClUVgllnMohLUeh6Qgj5GXXRXNTlDG
WICThIfKagcWCQ8/5Si6bZ3hTIIOqCoYruyFYhgE22NdU8MrWTJnFKSk4oTpmTkr
QbGMr3EI62j56ZZjYgQK+Jo8bU8TWSh4y2MupgUX8WaKUkiFvoVZ8poYCKT51Uek
nzZIbJiiQh1v97Dp4D8zRJDTGk05v0e4123K+PGIuxk3gkaz7Strtp7151ihdlCT
BKvATzFFJhUYQznNnHzWVi7aSAzia2FTophwq06kg0FKvw0Yl3Eehd5G1wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC6ffFj8ttT69bEgXiQeVcIhNnEYMB8GA1UdIwQY
MBaAFEKStdpLT/6vcgZJUY+6qhDFyygRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXBLMTJrdFBfcTl5QmtsUmo3cXFFTVhMS0JFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS80NTIyZmItYzFkYS00Y2NjLWE3Yzct
YTA0M2UxYjY3Yjk0LzEvTHA5OFdQeTIxUHIxc1NCZUpCNVZ3aUUyY1JnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS80NTIyZmItYzFkYS00Y2NjLWE3YzctYTA0M2UxYjY3Yjk0
LzEvUXBLMTJrdFBfcTl5QmtsUmo3cXFFTVhMS0JFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXXK1MA0G
CSqGSIb3DQEBCwUAA4IBAQCIYKQBc0FpHde8dmODzgIBNNNfYoqwW54TYu65lqS4
x6mDS0HXoE/cG7OAjw2pCssbhoMLWoJEwwdhlaYLMIJeRRSRcIo3tgHDkgiQFwx1
daoSf7iqJ61G2q8HyVxuFhtVwrRpP9NBCK1RmsUJr47IfJXXYj8rcPoyJwcfBHTX
9WhRSCKqDWq0NqNnE8RtrFz6F4ff5SAb7VOZ7UKtbGc8ohZ3z2PjDKaKo78woOxe
z2vpdjqkK1vtXeG8RA0KPpRRysNTtyLJpyejHIpWLK28oaoHayzy3tQxnC3F4hCJ
Qli1S83G0xjm323ojlyVHPT3/yQltjFmWCJz8zHcIwdl
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:15 2024 by rpki-client on console-ams.rpki-client.org