Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/e58b40-dde6-4840-810c-31f92945dffd/1/LQL8ZY5Wz7xe-niMGXDBdYj4wZU.roa
File: LQL8ZY5Wz7xe-niMGXDBdYj4wZU.roa (raw, json)
Hash identifier: WKqIe/AoE5xckskerSrxMWR86W7OrHE6PzhhlAWUMek=
Subject key identifier: 2D:02:FC:65:8E:56:CF:BC:5E:FA:78:8C:19:70:C1:75:88:F8:C1:95
Certificate issuer: /CN=ebb2a42550e5e2b4aa1a473b2b371bc28341a16a
Certificate serial: 01ED1C
Authority key identifier: EB:B2:A4:25:50:E5:E2:B4:AA:1A:47:3B:2B:37:1B:C2:83:41:A1:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/67KkJVDl4rSqGkc7KzcbwoNBoWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/e58b40-dde6-4840-810c-31f92945dffd/1/LQL8ZY5Wz7xe-niMGXDBdYj4wZU.roa
Signing time: Tue 15 Mar 2022 14:41:46 +0000
ROA not before: Tue 15 Mar 2022 14:41:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203897
IP address blocks: 91.229.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126236 (0x1ed1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebb2a42550e5e2b4aa1a473b2b371bc28341a16a
Validity
Not Before: Mar 15 14:41:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d02fc658e56cfbc5efa788c1970c17588f8c195
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5b:c0:4a:0e:0e:4f:9d:9c:30:70:63:3a:ee:
b7:db:11:34:01:02:bf:47:bf:33:22:0c:5d:01:6f:
4a:27:a2:3d:4e:ce:a1:2d:d3:97:e5:a8:00:79:8a:
ad:6e:6d:6f:84:87:c9:fc:fc:59:d3:69:99:1a:ea:
f3:5b:31:92:56:c8:f2:e1:bd:dd:15:8e:b6:fa:d3:
53:16:7b:25:3c:b8:fb:1c:75:34:81:17:1b:d9:eb:
be:51:1c:20:4b:2e:03:97:84:96:43:77:1a:a4:18:
80:fc:72:ea:6d:57:3c:f6:c0:6d:d0:61:74:e4:4b:
0f:36:1d:c4:9a:63:f5:d3:93:ce:e7:8b:bd:90:88:
e6:85:92:45:65:99:aa:ad:bc:0b:b2:0c:e3:a7:60:
4b:3e:5c:e5:85:4a:64:fd:23:ff:cb:f3:a4:e6:c1:
35:8a:c1:dc:bd:5a:6e:0b:6f:51:ca:44:08:e9:0c:
6f:fb:ab:62:2d:1e:94:8c:0a:38:68:a6:9c:c4:99:
07:59:0c:0b:43:07:4f:d7:1a:a0:22:9e:2c:60:51:
a4:e3:4f:d1:3e:62:e7:5c:fb:e7:3e:b6:09:c3:7a:
ef:ab:82:71:b8:be:ed:f1:69:d6:00:6e:24:d1:12:
65:b4:25:33:8b:31:c4:1c:d4:64:64:dc:23:5b:dc:
22:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:02:FC:65:8E:56:CF:BC:5E:FA:78:8C:19:70:C1:75:88:F8:C1:95
X509v3 Authority Key Identifier:
keyid:EB:B2:A4:25:50:E5:E2:B4:AA:1A:47:3B:2B:37:1B:C2:83:41:A1:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/67KkJVDl4rSqGkc7KzcbwoNBoWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/e58b40-dde6-4840-810c-31f92945dffd/1/LQL8ZY5Wz7xe-niMGXDBdYj4wZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/e58b40-dde6-4840-810c-31f92945dffd/1/67KkJVDl4rSqGkc7KzcbwoNBoWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.124.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:79:6a:3e:f1:01:98:99:2b:fd:73:5e:f8:dc:4e:19:57:d3:
da:3b:62:72:0b:9b:d5:77:39:b0:e6:2f:8f:26:f0:03:61:7d:
ee:9f:14:26:27:16:84:99:08:59:b2:95:cf:79:e4:8c:a4:66:
13:db:2b:f0:69:f0:2d:69:1e:fc:29:9e:a9:ab:bb:bd:ce:f3:
64:b0:12:92:d2:17:be:ea:71:93:73:de:3e:a6:11:4d:cb:41:
d0:31:47:c5:5a:4c:08:82:04:b3:48:ed:37:0a:c6:4a:d8:25:
df:c5:a7:0a:2f:8f:d9:65:6f:36:0e:f7:ad:74:b9:35:15:6d:
69:5e:f2:b2:67:21:2d:bd:17:4a:5c:9e:9f:8d:de:e7:4d:2f:
f3:83:78:21:15:61:80:a0:16:36:51:ab:e1:de:4a:48:b0:45:
6a:fe:23:8a:6f:53:11:5f:fa:0b:e0:b3:c5:dc:b9:ac:4d:a1:
62:bf:b0:12:46:95:14:97:cd:c9:5c:f5:0c:71:8b:81:e2:88:
20:d2:89:87:1b:57:91:90:b8:10:49:4f:ab:93:25:d7:82:ee:
ae:10:a8:ea:a6:47:31:e0:16:21:94:54:ef:77:7b:45:5a:98:
1c:cb:02:36:b3:a9:cd:51:5d:af:45:2c:b1:3a:78:db:94:68:
b8:f2:ae:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:31 2023 by rpki-client on console-ams.rpki-client.org