Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/laQ1F0LcIUVVcirM4a2RMM1JfIg.roa
File: laQ1F0LcIUVVcirM4a2RMM1JfIg.roa (raw, json)
Hash identifier: Kmc2Jr6ZfVsUab20JqPH80dzakR/siRcpClpyJL65+E=
Subject key identifier: 95:A4:35:17:42:DC:21:45:55:72:2A:CC:E1:AD:91:30:CD:49:7C:88
Certificate issuer: /CN=ab8c6c58b607ff23ae7175a61682c75480f1e214
Certificate serial: 03BE0E07
Authority key identifier: AB:8C:6C:58:B6:07:FF:23:AE:71:75:A6:16:82:C7:54:80:F1:E2:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4xsWLYH_yOucXWmFoLHVIDx4hQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/laQ1F0LcIUVVcirM4a2RMM1JfIg.roa
Signing time: Sat 01 Jan 2022 14:05:06 +0000
ROA not before: Sat 01 Jan 2022 14:05:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60993
IP address blocks: 128.0.57.0/24 maxlen: 24
128.0.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62787079 (0x3be0e07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab8c6c58b607ff23ae7175a61682c75480f1e214
Validity
Not Before: Jan 1 14:05:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95a4351742dc214555722acce1ad9130cd497c88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f5:9c:f9:b8:54:19:0b:1c:dd:9b:1a:87:87:
e4:da:a0:37:3b:12:20:b5:90:02:80:a3:2b:f0:54:
69:32:12:82:df:7e:7d:01:7b:91:70:77:4a:f3:10:
b2:d9:19:84:8e:76:38:e1:26:bc:ee:26:9e:b2:30:
d7:53:1b:ab:88:71:22:b3:52:f6:e7:a4:a3:a3:3b:
b1:fe:74:8b:3b:a2:d3:cd:48:c5:4e:93:a4:e1:01:
ee:f1:5f:98:95:e1:8c:bb:39:cf:ba:a6:3e:a3:c3:
f1:f5:3f:66:5c:33:e9:88:d3:15:9f:b1:fa:4d:6d:
e2:c0:68:c8:8c:f5:6d:ae:64:79:3a:66:4f:1f:98:
b4:ec:8f:bc:71:f0:0b:a3:fd:9d:76:0b:6e:5a:ea:
12:6b:8d:17:9b:60:26:ef:62:9b:40:1e:ea:ca:0e:
3b:1d:66:86:d8:02:11:65:d3:fa:0b:8a:4a:fa:3a:
1c:25:54:30:a3:21:c2:39:47:08:39:f1:75:84:46:
4c:ff:c1:cd:e3:06:6d:da:ec:f6:8b:ce:99:a2:ba:
16:e7:6f:7f:55:58:15:0b:38:1f:a2:37:34:d9:5d:
10:7f:32:8b:ba:db:e4:73:53:f7:f8:ed:36:a0:a9:
25:76:97:73:43:a0:45:ef:26:b7:45:fe:db:1c:ed:
4a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:A4:35:17:42:DC:21:45:55:72:2A:CC:E1:AD:91:30:CD:49:7C:88
X509v3 Authority Key Identifier:
keyid:AB:8C:6C:58:B6:07:FF:23:AE:71:75:A6:16:82:C7:54:80:F1:E2:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4xsWLYH_yOucXWmFoLHVIDx4hQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/laQ1F0LcIUVVcirM4a2RMM1JfIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/q4xsWLYH_yOucXWmFoLHVIDx4hQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.0.53.0/24
128.0.57.0/24
Signature Algorithm: sha256WithRSAEncryption
51:94:85:7a:b0:8d:25:28:0e:90:13:2e:e2:c3:03:84:f2:42:
de:0e:c6:13:aa:b1:74:a0:16:fd:bb:12:98:7b:ae:83:f5:dc:
50:8c:33:4b:4f:52:e8:0d:09:ed:40:6a:ae:16:d9:da:79:d3:
bb:a8:91:df:12:0f:48:0e:3b:e7:77:22:26:b2:a6:f8:37:be:
04:60:89:48:53:f0:7f:8b:e5:52:38:da:81:aa:33:87:00:12:
ab:a4:cc:6f:30:f7:17:47:3a:17:da:61:81:5d:73:96:1f:1a:
74:a9:f4:32:2b:71:f4:b5:88:56:14:23:66:1d:4f:bb:f3:28:
2a:99:cf:01:46:ac:4e:25:5b:c2:c7:f5:dd:c1:20:cb:86:ad:
b6:fc:de:81:74:b2:09:5b:81:66:57:7c:d0:32:2e:78:68:97:
1b:7c:b0:36:a8:93:4c:80:e0:fa:cd:58:95:5a:93:d2:5f:c3:
a1:9d:1b:e6:f7:a5:ca:61:6e:51:9a:60:0d:38:de:4f:b8:a5:
cc:be:22:a8:7b:ec:c9:7e:0f:54:2e:c5:80:96:ef:b6:6c:d9:
d7:25:69:7d:5d:90:be:77:19:8b:6b:e0:37:bc:a1:f0:84:4d:
38:f0:47:59:a6:51:7d:40:11:09:35:80:b8:71:47:a9:47:b2:
8d:6b:bb:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:23 2024 by rpki-client on console-fra.rpki-client.org