Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/LwJxq5RZibBb1WOt3K91ihQoq84.roa
File: LwJxq5RZibBb1WOt3K91ihQoq84.roa (raw, json)
Hash identifier: haMgWGizkFgSrdIqLusLqWA54khYlRSeAdChoyneil4=
Subject key identifier: 2F:02:71:AB:94:59:89:B0:5B:D5:63:AD:DC:AF:75:8A:14:28:AB:CE
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 295C01E8
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/LwJxq5RZibBb1WOt3K91ihQoq84.roa
Signing time: Mon 04 Apr 2022 09:07:31 +0000
ROA not before: Mon 04 Apr 2022 09:07:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207154
IP address blocks: 93.170.220.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 693895656 (0x295c01e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Apr 4 09:07:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f0271ab945989b05bd563addcaf758a1428abce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e8:e0:41:9e:21:58:7c:e3:cc:50:5d:e2:59:
45:d8:9a:40:b4:e8:b2:55:01:80:9f:af:78:62:95:
2b:54:a7:a2:7d:3e:2a:a1:bd:52:1f:84:95:8a:83:
64:be:06:ea:02:73:08:12:10:f6:3a:29:41:ef:f9:
af:8c:47:66:c3:ba:96:7a:90:5d:ef:f3:c0:18:e4:
00:26:14:58:e4:07:b7:23:59:51:79:1b:18:21:2c:
41:9e:21:ed:08:92:8c:e5:65:0a:3c:95:ca:f4:97:
6c:21:38:88:5f:12:6f:83:fb:28:0e:d8:2a:c5:81:
de:9f:37:2a:0f:a8:37:81:3d:a9:1f:66:73:ea:fb:
84:7d:cb:f1:cb:1d:f0:c4:c5:af:6a:e0:03:cd:a7:
01:9c:47:0b:b0:e4:ca:bf:c7:4b:9d:d1:16:05:b3:
22:e4:60:04:50:2b:94:3b:c7:6c:6c:cd:23:4c:24:
30:09:9a:e5:64:da:c0:7c:4c:bf:51:50:1f:0f:67:
d2:94:3d:80:d1:d3:c1:b6:6c:61:76:75:a4:fc:41:
5c:3b:76:26:38:f6:55:80:57:ee:1a:9b:91:10:5b:
7c:2c:3f:23:dd:07:5c:79:75:61:bf:5b:d3:45:c6:
c1:53:da:3a:68:69:d2:55:ab:d9:2d:b5:dd:62:8f:
2d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:02:71:AB:94:59:89:B0:5B:D5:63:AD:DC:AF:75:8A:14:28:AB:CE
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/LwJxq5RZibBb1WOt3K91ihQoq84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.220.0/22
Signature Algorithm: sha256WithRSAEncryption
77:53:ab:92:92:04:dd:f7:ce:72:a4:77:12:ef:3f:69:9d:e0:
2b:64:8f:9d:8c:bd:42:1f:99:92:97:ef:dc:95:79:63:6a:a5:
03:c9:1b:6d:d0:d5:c9:a5:90:39:1e:2f:d6:0e:26:6d:f0:2c:
92:c2:96:90:9d:ee:75:57:7e:d9:90:39:7c:56:e5:af:a9:8e:
ab:17:56:87:fa:00:73:84:f7:08:c5:2e:68:df:7f:0e:a5:30:
df:ed:8e:26:28:d8:91:1c:ab:dd:dc:f7:77:46:63:e8:d4:17:
56:f8:42:a2:3c:5b:b8:72:60:df:30:ad:f9:d9:c6:46:b1:2d:
b5:fb:06:2e:dd:fc:d5:a0:bc:9d:58:d9:14:6f:7b:2f:e4:87:
ea:da:7f:02:cd:a1:68:f2:51:a8:ed:73:d5:a4:58:4f:01:24:
23:79:77:cf:32:cf:c0:99:db:26:c2:0c:29:ba:bc:79:82:18:
95:58:32:e4:51:b7:88:8f:7a:c0:1e:a4:e6:b4:1b:dc:52:a7:
69:4a:a3:e9:44:bf:7f:96:f3:d4:6d:95:1b:7b:62:6e:0c:6f:
11:29:6c:c1:71:9c:79:c8:bd:8d:8d:60:e4:6c:08:51:a7:cb:
f9:0c:ea:26:94:d8:8c:83:d3:b7:2b:0b:a8:14:0a:65:78:5a:
59:3d:78:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:50 2024 by rpki-client on console-ams.rpki-client.org