Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/1433ea-1080-46e5-b612-297e282d66a8/1/lxZ8GWD3Wz7zL0n5AGagZzyCE5I.roa
File: lxZ8GWD3Wz7zL0n5AGagZzyCE5I.roa (raw, json)
Hash identifier: cSkhWVrpbd6JO89YVVfdTDLIPW0pKb6CS2KsHUlfX4M=
Subject key identifier: 97:16:7C:19:60:F7:5B:3E:F3:2F:49:F9:00:66:A0:67:3C:82:13:92
Certificate issuer: /CN=26a5aa918cbfeb3e12997f33890feb258907b343
Certificate serial: 04D85ACF
Authority key identifier: 26:A5:AA:91:8C:BF:EB:3E:12:99:7F:33:89:0F:EB:25:89:07:B3:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JqWqkYy_6z4SmX8ziQ_rJYkHs0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/1433ea-1080-46e5-b612-297e282d66a8/1/lxZ8GWD3Wz7zL0n5AGagZzyCE5I.roa
Signing time: Tue 07 Jun 2022 03:16:20 +0000
ROA not before: Tue 07 Jun 2022 03:16:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43962
IP address blocks: 185.123.162.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81287887 (0x4d85acf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26a5aa918cbfeb3e12997f33890feb258907b343
Validity
Not Before: Jun 7 03:16:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97167c1960f75b3ef32f49f90066a0673c821392
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9e:59:e3:82:79:03:e3:6a:f9:66:95:eb:8d:
2c:11:15:30:1c:90:49:da:5d:e1:78:c0:44:4f:b3:
0c:0b:2a:37:8e:5b:2c:ff:93:68:9b:75:6d:11:fb:
f2:47:f4:96:9d:4a:c5:0f:00:57:8e:40:ee:3e:71:
07:fd:fa:08:33:a3:08:63:82:fc:a6:2d:fe:d0:40:
e9:ee:17:e2:a6:b3:06:72:e6:f0:ee:f1:3f:99:07:
c5:bf:90:2f:ab:84:24:ec:51:37:82:6b:9f:81:37:
f7:22:e6:a0:a9:0a:54:a8:a4:47:3b:7c:fc:93:95:
d4:ac:ad:43:09:8e:ce:b5:a4:40:c0:2d:79:41:06:
ab:57:2d:57:60:f8:ab:58:6d:9f:b9:7c:0f:c9:7f:
e8:ca:63:c7:ad:d7:46:e7:b2:aa:e9:60:10:fe:a6:
3f:cc:1f:15:b4:dd:d5:66:9e:db:7a:40:b3:34:ea:
79:6f:72:8a:a1:94:1e:07:a4:d3:8c:18:55:9c:ee:
66:d2:a0:a6:a7:db:b1:63:74:2a:d2:aa:a1:5c:25:
94:13:e3:a7:bf:85:7a:cb:54:f3:d4:2a:d7:aa:1c:
cd:e4:10:27:f1:eb:d7:fc:41:b2:9f:b9:db:b8:51:
38:30:ea:32:b6:34:54:25:11:d4:cf:d2:08:32:37:
44:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:16:7C:19:60:F7:5B:3E:F3:2F:49:F9:00:66:A0:67:3C:82:13:92
X509v3 Authority Key Identifier:
keyid:26:A5:AA:91:8C:BF:EB:3E:12:99:7F:33:89:0F:EB:25:89:07:B3:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JqWqkYy_6z4SmX8ziQ_rJYkHs0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1433ea-1080-46e5-b612-297e282d66a8/1/lxZ8GWD3Wz7zL0n5AGagZzyCE5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1433ea-1080-46e5-b612-297e282d66a8/1/JqWqkYy_6z4SmX8ziQ_rJYkHs0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.123.162.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:94:3d:c3:5a:6e:9f:44:a8:93:5f:de:4e:66:7d:07:83:a5:
69:b7:a7:27:2c:00:7c:d4:c7:21:b6:70:41:66:c1:bc:ef:95:
14:6e:1e:00:04:ac:c7:36:60:fa:dd:a3:da:1a:d0:18:b3:3f:
d4:db:a5:22:79:f0:5c:1c:ed:f0:c2:a4:6a:90:5b:5b:7d:5a:
05:7c:ee:ce:e0:43:2e:7d:a7:e4:0e:6b:16:a3:84:df:83:aa:
78:e0:f6:87:29:d8:57:01:8b:4b:8e:5b:de:f6:aa:2c:25:51:
2a:bd:e0:80:fe:0b:b7:b2:f6:1a:84:5e:77:9b:62:01:96:cd:
f6:30:8b:30:25:df:ed:e9:34:f3:48:7b:c6:1e:30:dd:de:9a:
f5:17:45:51:5a:da:a0:47:5c:2d:b4:e0:5e:da:f0:40:51:ff:
c1:f4:8a:1f:a8:02:1b:69:21:94:8b:b2:bf:ce:63:96:9b:f8:
8e:c1:c7:c2:4a:f5:5e:f9:87:20:10:d0:35:f1:60:f1:f0:c6:
76:70:a8:4e:7c:24:b2:a6:6f:b3:3e:b1:e5:30:73:62:20:8e:
e1:d2:d2:7b:15:b7:bb:f4:14:83:3e:03:47:ac:8f:9d:2f:84:
28:cd:28:31:78:72:e6:4e:eb:bd:f2:08:64:bf:d1:8b:5c:84:
35:70:24:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:45 2023 by rpki-client on console-ams.rpki-client.org