Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/LTNJ67Ai7PE8LfS1JcpOrj6trbU.roa
File: LTNJ67Ai7PE8LfS1JcpOrj6trbU.roa (raw, json)
Hash identifier: oCwZIdUFErO8/7sr4m7E1DWUKoZdDbxjqIDxYtYECcU=
Subject key identifier: 2D:33:49:EB:B0:22:EC:F1:3C:2D:F4:B5:25:CA:4E:AE:3E:AD:AD:B5
Certificate issuer: /CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Certificate serial: 01864951E066BCC5D53EFAF21832858175E2
Authority key identifier: E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/LTNJ67Ai7PE8LfS1JcpOrj6trbU.roa
Signing time: Mon 13 Feb 2023 05:49:08 +0000
ROA not before: Mon 13 Feb 2023 05:49:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205209
IP address blocks: 94.188.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:49:51:e0:66:bc:c5:d5:3e:fa:f2:18:32:85:81:75:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Validity
Not Before: Feb 13 05:49:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2d3349ebb022ecf13c2df4b525ca4eae3eadadb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:59:d8:4d:1a:bd:d1:3f:07:23:22:52:74:24:
d6:45:7b:a3:77:c5:68:f5:f2:e1:e8:00:a0:3c:fd:
20:fe:5a:87:82:61:31:40:47:e6:a7:c3:4f:3c:1a:
c6:97:d7:87:58:e8:b6:e9:80:30:ef:37:0a:35:e8:
e7:fa:82:2f:a7:6f:2c:ae:06:a3:ef:5b:07:eb:96:
6d:05:eb:83:25:70:b3:04:38:c3:dc:f8:5a:1e:f1:
77:87:cc:2a:f5:f5:41:34:de:7a:34:cb:17:22:52:
53:2d:89:ce:00:33:75:2e:eb:db:b3:61:78:1f:f1:
20:bc:d7:be:89:c0:43:a3:3c:78:db:88:b4:fa:df:
ad:4f:8b:fc:0f:06:3c:18:66:d2:35:22:04:fb:81:
3c:c3:fd:ff:71:b0:15:2c:41:32:fa:f1:75:c0:7d:
56:4e:13:ca:7c:86:12:60:b1:e3:6f:a1:8a:0a:5c:
61:92:11:79:81:76:19:c2:b4:5b:c9:0a:be:b5:88:
ed:57:8e:c4:aa:6f:b7:66:55:ff:9d:75:6e:71:87:
6a:1c:aa:5a:68:45:9d:40:ee:d0:da:67:69:d6:b1:
43:0a:d3:34:ad:e2:4d:d1:10:41:66:8f:13:eb:92:
13:b5:2b:ec:ce:af:0f:e7:25:a1:7f:5b:32:b8:a9:
63:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:33:49:EB:B0:22:EC:F1:3C:2D:F4:B5:25:CA:4E:AE:3E:AD:AD:B5
X509v3 Authority Key Identifier:
keyid:E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/LTNJ67Ai7PE8LfS1JcpOrj6trbU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.188.179.0/24
Signature Algorithm: sha256WithRSAEncryption
54:d0:95:c1:1e:a7:e2:d4:89:4d:96:29:69:69:10:7e:af:78:
f9:2b:b6:0a:84:b8:95:fe:aa:b4:d6:9e:47:1b:cb:a5:71:2d:
aa:8b:5f:a8:f8:b3:d2:85:de:b9:6a:9d:5f:82:aa:36:d2:54:
b7:c6:ef:2b:bc:6f:da:3a:ab:3a:89:fc:b9:db:e0:2a:38:21:
d8:86:9e:d3:bb:58:a8:44:42:7c:13:eb:9c:d7:6c:34:ee:20:
50:91:6f:9d:eb:1a:6f:f6:a7:2d:b3:37:15:0e:86:7a:26:29:
46:38:6c:30:87:78:db:ad:2c:2b:ef:c7:59:dc:f5:2e:88:59:
af:df:f9:da:49:51:01:cb:b4:5d:97:85:b8:58:26:6f:15:aa:
8a:67:ac:cd:35:6b:6c:85:23:06:fe:e1:9f:16:bb:eb:22:4a:
c0:db:00:92:f2:a6:ed:38:58:7b:61:27:bf:bc:62:74:15:7d:
af:99:b2:fe:72:e5:03:f3:35:7e:de:f6:b0:54:5c:43:3f:ee:
8e:22:98:4e:4a:88:a8:f7:0d:ac:fb:63:1d:04:a8:1e:85:4a:
ec:b0:94:22:f6:06:e2:91:1d:9e:3d:0c:68:15:b2:a4:b2:a8:
10:87:8b:96:fd:b9:14:6b:a7:66:3b:71:94:f6:87:eb:08:fe:
1b:bd:8a:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:28:02 2025 by rpki-client