Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/24822b-6184-46a0-bcc5-8f29f3d98214/1/LlbBTJd3bwZ-A8uwZWYlfuhglCM.roa
File: LlbBTJd3bwZ-A8uwZWYlfuhglCM.roa (raw, json)
Hash identifier: 0W6leoI035JhEDQ7oYnSU20Tzjx3s6nkzmJbMUkrQLU=
Subject key identifier: 2E:56:C1:4C:97:77:6F:06:7E:03:CB:B0:65:66:25:7E:E8:60:94:23
Certificate issuer: /CN=10515090f850e337eb3b118a157e4e39083b77a6
Certificate serial: 0874F29A
Authority key identifier: 10:51:50:90:F8:50:E3:37:EB:3B:11:8A:15:7E:4E:39:08:3B:77:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EFFQkPhQ4zfrOxGKFX5OOQg7d6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/24822b-6184-46a0-bcc5-8f29f3d98214/1/LlbBTJd3bwZ-A8uwZWYlfuhglCM.roa
Signing time: Sat 01 Jan 2022 07:03:42 +0000
ROA not before: Sat 01 Jan 2022 07:03:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39260
IP address blocks: 195.238.88.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141882010 (0x874f29a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10515090f850e337eb3b118a157e4e39083b77a6
Validity
Not Before: Jan 1 07:03:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e56c14c97776f067e03cbb06566257ee8609423
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:85:9f:5a:a1:6f:82:40:15:a1:a3:83:26:c2:
f8:2f:e7:39:39:14:af:48:c9:97:57:b4:2e:1d:22:
c3:3a:bb:83:95:8c:54:2b:ae:7f:dd:66:48:21:cb:
a3:b7:2e:47:07:38:bc:8c:95:4a:bb:6c:c4:80:59:
5d:ce:5d:97:30:7b:10:05:23:fe:70:5c:b8:9c:df:
c5:fd:66:2d:38:73:bf:e1:06:e9:b8:f9:5c:38:b5:
99:db:1a:02:0f:39:a1:32:35:81:74:54:7e:ef:0e:
90:fc:5c:d6:af:31:08:61:ea:3e:62:67:e2:ce:49:
fc:05:39:67:53:41:01:57:aa:0f:c4:66:2d:dd:79:
56:4c:fd:c1:1a:39:59:9c:41:c9:d7:3b:bf:8e:53:
3a:af:68:eb:7e:27:19:1d:24:a0:84:53:14:75:bb:
4a:a9:a5:b4:c7:11:bf:1b:00:79:3e:7d:5f:97:46:
22:b1:8b:12:64:e3:30:18:77:f1:b3:c9:28:d6:38:
5d:2b:30:8c:65:bc:a7:5c:2b:52:8a:a4:e7:cf:38:
95:fe:48:1e:ce:1e:b5:f9:ef:ec:18:45:ba:a8:40:
8c:df:46:09:cd:b4:b8:a3:72:cc:c9:06:9c:f2:06:
a7:b0:bc:90:90:d7:fd:0c:27:ad:64:8c:af:24:01:
3e:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:56:C1:4C:97:77:6F:06:7E:03:CB:B0:65:66:25:7E:E8:60:94:23
X509v3 Authority Key Identifier:
keyid:10:51:50:90:F8:50:E3:37:EB:3B:11:8A:15:7E:4E:39:08:3B:77:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EFFQkPhQ4zfrOxGKFX5OOQg7d6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/24822b-6184-46a0-bcc5-8f29f3d98214/1/LlbBTJd3bwZ-A8uwZWYlfuhglCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/24822b-6184-46a0-bcc5-8f29f3d98214/1/EFFQkPhQ4zfrOxGKFX5OOQg7d6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.238.88.0/23
Signature Algorithm: sha256WithRSAEncryption
77:9f:7f:a6:97:d2:b9:2f:09:3e:3b:cf:9e:6e:3e:8b:13:91:
60:bf:5a:92:14:9c:da:fd:14:92:43:ce:b9:01:bc:c0:86:2e:
84:e3:6f:56:a1:b5:82:92:5f:02:78:74:fa:3c:28:a3:e4:ca:
64:c4:40:5e:05:d8:17:0d:98:f7:58:51:ba:4f:ff:6f:61:05:
97:69:d4:93:c4:51:ab:c0:96:b7:21:f3:78:7c:a5:07:d3:b7:
d0:38:9b:12:42:20:0c:e9:64:ae:ef:13:ab:e3:1e:bb:73:1e:
12:d8:da:d6:ae:a2:ab:0a:6a:2c:f3:a3:ce:57:1d:97:f3:45:
20:6f:b0:69:e3:12:fe:39:60:65:40:76:c8:f8:12:77:e2:6b:
9b:69:66:b7:be:b9:bf:25:14:f1:13:aa:79:c3:a3:00:49:0c:
46:70:cc:ba:43:fb:c4:67:8c:56:4f:16:be:6d:11:86:43:cd:
43:47:25:41:9a:20:8b:7a:47:3d:c9:43:05:1a:37:db:2f:ca:
f9:90:b2:57:71:73:d0:37:f9:ad:b2:96:ed:77:e8:3e:fe:50:
ab:63:5c:62:b2:7f:67:5d:6d:b0:ec:f8:91:f5:19:99:13:b4:
e8:0f:15:3e:38:b6:75:e8:01:18:3c:57:9d:61:5b:c1:9c:b3:
26:dd:18:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:38 2024 by rpki-client on console-ams.rpki-client.org