Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/LP9vJbDbVHRzEGD3zSqM8SJQzic.roa
File: LP9vJbDbVHRzEGD3zSqM8SJQzic.roa (raw, json)
Hash identifier: PCs90TQQ4qJgZPln26mJrzxKl+xz3lWR7AsaZsmA1Mg=
Subject key identifier: 2C:FF:6F:25:B0:DB:54:74:73:10:60:F7:CD:2A:8C:F1:22:50:CE:27
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 03E90779
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/LP9vJbDbVHRzEGD3zSqM8SJQzic.roa
Signing time: Sat 01 Jan 2022 13:04:13 +0000
ROA not before: Sat 01 Jan 2022 13:04:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209919
IP address blocks: 171.22.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65603449 (0x3e90779)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 13:04:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2cff6f25b0db5474731060f7cd2a8cf12250ce27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c4:72:e9:97:b4:f9:10:08:0b:a7:65:79:d8:
3b:27:c2:ef:03:80:2a:e1:49:b3:1c:4d:58:75:46:
58:a6:dc:bb:9c:31:33:77:3d:5c:53:04:82:ca:a7:
14:98:14:14:ce:15:b6:00:16:7f:5d:c2:3d:89:a6:
8a:d3:ad:30:64:5f:aa:3a:6e:26:55:b1:31:43:c5:
d5:04:56:68:7b:db:e4:1f:81:a8:1d:94:3a:a1:fd:
85:cb:d3:a8:ef:6e:bf:d7:69:0b:2e:a1:d9:7b:18:
fb:36:f1:63:b0:2f:86:21:e7:78:d7:cd:96:84:62:
6a:24:c5:d6:e1:30:ba:8e:10:c0:4f:54:5f:96:d1:
fa:8a:84:bd:7a:f3:3e:cb:47:d5:26:19:cf:d2:71:
4b:19:f2:da:8e:fc:74:33:24:0b:6c:14:54:ce:65:
3b:bc:04:65:8e:8c:da:a6:31:7e:2c:4d:41:a7:17:
6e:e9:8d:fd:31:66:ab:d0:7b:e9:84:6f:4b:0a:e8:
83:d2:ed:48:ba:95:b8:4a:b6:73:4c:fb:2e:77:d2:
2d:cd:3e:ba:0c:b8:46:c1:a5:81:9c:83:5f:16:6f:
5c:93:28:47:9a:0c:d2:ea:b2:d1:d9:d7:43:75:00:
92:00:69:22:0e:89:fe:5e:49:c7:84:92:39:4a:7e:
47:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:FF:6F:25:B0:DB:54:74:73:10:60:F7:CD:2A:8C:F1:22:50:CE:27
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/LP9vJbDbVHRzEGD3zSqM8SJQzic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.22.167.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:b6:79:ad:6a:57:82:5b:53:b0:f8:c0:40:73:a6:7a:c3:08:
70:d4:7c:6e:95:97:08:60:fa:b4:3b:ce:91:b1:0d:d1:be:05:
a1:55:72:f3:0c:ac:09:46:69:f7:d3:86:9f:2c:51:4c:2f:ab:
dd:c4:bd:15:9b:a7:2c:90:b5:d9:65:13:4c:04:6c:df:83:65:
8b:54:36:e8:3f:c8:58:49:d2:68:56:95:1f:4d:ed:1d:10:5a:
a6:99:46:c8:4c:90:4e:59:76:a5:a6:69:18:cb:91:b8:04:bd:
8d:5e:b2:6d:a4:70:ba:81:20:4c:dd:40:c2:56:50:90:d5:44:
46:f3:8d:f3:9a:1a:62:0c:de:ec:e6:2d:f0:d8:42:78:4c:4c:
a0:c4:d4:e7:48:ec:70:ea:23:35:38:1a:70:b4:0b:db:2c:98:
eb:ba:63:8b:40:94:29:87:24:c4:6d:f9:bc:da:5e:83:08:aa:
ab:7e:db:06:22:08:bd:89:ad:4c:b9:be:75:99:90:a4:80:c5:
4b:96:84:82:36:30:6c:ad:20:91:8b:a4:c1:05:63:59:c7:46:
6e:c1:e1:51:5d:00:c4:7e:e3:17:d0:4d:12:61:b6:84:a9:8c:
6d:68:7d:54:80:03:1c:f0:a0:f2:ab:43:be:1e:cc:2a:e7:ea:
14:5b:ab:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:49 2023 by rpki-client on console-fra.rpki-client.org