Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8c7935-2eda-43ac-8d0f-799525be7215/1/leCLt_JwqCkjQSmJS78qvR2oafY.roa
File: leCLt_JwqCkjQSmJS78qvR2oafY.roa (raw, json)
Hash identifier: ylSie+6cTe32PREP5ZGB5+8Gfzl1BxPxx1LtU5Tmc40=
Subject key identifier: 95:E0:8B:B7:F2:70:A8:29:23:41:29:89:4B:BF:2A:BD:1D:A8:69:F6
Certificate issuer: /CN=3014b8c7f509e10051b0cd29fd8d69f285508d87
Certificate serial: 03C1A61E
Authority key identifier: 30:14:B8:C7:F5:09:E1:00:51:B0:CD:29:FD:8D:69:F2:85:50:8D:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MBS4x_UJ4QBRsM0p_Y1p8oVQjYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8c7935-2eda-43ac-8d0f-799525be7215/1/leCLt_JwqCkjQSmJS78qvR2oafY.roa
Signing time: Sat 01 Jan 2022 15:02:51 +0000
ROA not before: Sat 01 Jan 2022 15:02:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42547
IP address blocks: 193.106.100.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63022622 (0x3c1a61e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3014b8c7f509e10051b0cd29fd8d69f285508d87
Validity
Not Before: Jan 1 15:02:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95e08bb7f270a829234129894bbf2abd1da869f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b1:7a:55:be:89:a3:6e:7a:9e:81:73:8a:b8:
1c:30:26:92:2b:bd:95:26:17:7c:b0:a4:47:d6:f9:
c2:7e:51:d0:83:8e:2d:45:5d:c4:0b:60:e4:dd:2f:
4e:13:26:4f:85:3f:bb:b7:90:c8:2d:ae:09:b5:b8:
07:c5:c4:64:48:e5:8d:26:76:8d:13:d0:63:6e:45:
28:db:49:70:e2:ef:70:2e:f3:6f:41:39:36:2a:dc:
fa:bd:13:a2:23:e8:41:3b:da:cc:73:66:77:5f:5c:
5a:e7:6e:ec:ca:29:c8:72:18:44:9d:25:2c:6a:d3:
f2:b4:74:87:a4:74:f7:cf:25:dd:7a:d7:d7:04:a4:
1e:1d:0a:d0:f0:e0:7f:b6:ca:a7:e5:fc:1b:5f:1f:
39:04:07:91:4f:18:35:be:35:6d:4b:91:98:a8:37:
f1:79:58:df:08:27:e7:93:b5:55:d4:c9:d5:1e:5a:
af:28:ed:05:4f:de:49:a4:a7:f7:4a:87:b4:1e:74:
71:61:31:ba:36:5b:1d:8c:d6:69:b0:7a:fe:37:4d:
59:bd:75:1d:03:3d:3f:49:77:d0:8c:2d:d8:2b:4f:
91:4d:18:ac:e1:5b:54:e5:a4:01:fa:ce:58:11:c1:
99:0c:07:fc:17:a2:42:65:5e:66:93:33:76:b5:af:
05:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:E0:8B:B7:F2:70:A8:29:23:41:29:89:4B:BF:2A:BD:1D:A8:69:F6
X509v3 Authority Key Identifier:
keyid:30:14:B8:C7:F5:09:E1:00:51:B0:CD:29:FD:8D:69:F2:85:50:8D:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MBS4x_UJ4QBRsM0p_Y1p8oVQjYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c7935-2eda-43ac-8d0f-799525be7215/1/leCLt_JwqCkjQSmJS78qvR2oafY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c7935-2eda-43ac-8d0f-799525be7215/1/MBS4x_UJ4QBRsM0p_Y1p8oVQjYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.106.100.0/22
Signature Algorithm: sha256WithRSAEncryption
c0:17:dd:55:77:14:bf:df:49:31:29:f9:26:46:3a:91:d1:01:
19:94:92:0d:7b:67:0c:dd:3e:15:45:a0:24:89:a4:7b:7f:c4:
53:91:d2:fd:74:90:6d:30:9a:c7:7a:56:0e:fd:5c:64:29:dc:
f3:72:16:c4:3b:29:b6:cf:c7:09:81:52:2a:29:98:55:d2:71:
f7:f6:69:2d:20:6e:b5:1a:2e:de:dd:01:d1:27:32:8a:7c:cc:
35:92:c1:2b:ef:34:29:0d:28:e5:4a:7f:8f:30:aa:f4:1f:d6:
43:fa:dd:a6:fa:53:78:0f:57:57:aa:10:e5:67:1f:f1:45:c5:
ef:28:5f:c0:4d:48:25:eb:b4:5c:68:d5:80:40:7e:4c:26:75:
72:32:40:a5:e7:d7:c1:ff:2b:09:7c:36:ad:4c:9a:b4:b7:c6:
2b:7f:e0:cd:3c:d1:93:17:ff:ab:a6:97:ed:d3:8c:27:66:d4:
d9:2f:67:41:15:85:1a:a3:e9:2e:ef:53:38:da:a7:e3:80:b1:
2f:40:29:f8:90:0c:b8:a1:c4:aa:48:9f:5d:0d:cb:8c:2e:2d:
33:47:2c:9d:2e:b8:7c:e5:00:3b:d4:36:f0:f2:fb:f8:e3:71:
89:b5:5f:dd:88:53:68:06:5f:a5:75:a6:55:86:69:c1:c1:4f:
ce:6b:46:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:31 2024 by rpki-client on console-ams.rpki-client.org