Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/95d71d-f41b-4171-8350-e0892a28aac9/1/LaTRX35Ga-0_AM2_HZxyfRh6ihY.roa
File: LaTRX35Ga-0_AM2_HZxyfRh6ihY.roa (raw, json)
Hash identifier: JiPneHOlevfjEOH99OteVjL9duOvZtlmiDclVKF8o24=
Subject key identifier: 2D:A4:D1:5F:7E:46:6B:ED:3F:00:CD:BF:1D:9C:72:7D:18:7A:8A:16
Certificate issuer: /CN=7400d5013c12852242343093cbf5148d4eaeaaf9
Certificate serial: 0882AC4F
Authority key identifier: 74:00:D5:01:3C:12:85:22:42:34:30:93:CB:F5:14:8D:4E:AE:AA:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dADVATwShSJCNDCTy_UUjU6uqvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/95d71d-f41b-4171-8350-e0892a28aac9/1/LaTRX35Ga-0_AM2_HZxyfRh6ihY.roa
Signing time: Sat 01 Jan 2022 05:59:33 +0000
ROA not before: Sat 01 Jan 2022 05:59:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213377
IP address blocks: 185.112.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142781519 (0x882ac4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7400d5013c12852242343093cbf5148d4eaeaaf9
Validity
Not Before: Jan 1 05:59:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2da4d15f7e466bed3f00cdbf1d9c727d187a8a16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:6f:72:dc:ab:a5:41:f3:fc:e8:b7:32:d8:94:
66:7f:5e:e8:53:6e:95:6c:9d:7d:54:b7:db:74:be:
6d:c8:44:43:fe:f0:77:97:76:14:64:cb:c1:e5:89:
d4:e8:84:16:af:e4:5b:e0:38:2e:da:79:98:68:39:
f9:a3:b2:c0:06:44:5f:47:f7:09:fe:bb:86:98:97:
54:13:54:b5:e5:b9:8e:34:ba:5b:b9:00:bd:6e:46:
f0:ea:a5:13:00:8c:40:b6:3f:c9:76:61:55:fa:86:
a2:ea:b0:34:4a:6f:9b:7b:af:e7:32:00:57:4c:be:
4d:21:64:fb:a4:97:83:55:4f:64:97:10:09:e7:e9:
f6:e0:da:81:43:e8:08:ea:d4:27:51:32:4b:7e:78:
e3:93:9c:a2:b7:82:6e:20:7f:a6:a7:4e:93:4e:17:
31:03:88:ed:46:23:c9:8f:65:06:91:84:92:b3:80:
be:0c:58:5c:6c:ac:cf:70:54:00:96:99:b9:d2:1e:
ca:0c:af:8f:f3:60:13:45:46:eb:bf:7f:c5:0f:d2:
1e:c7:27:ae:7d:71:a0:04:b1:53:21:9c:59:60:b7:
e7:5d:be:71:9b:54:60:c2:68:41:2a:d9:ef:9c:90:
a2:65:fc:ba:93:49:10:13:1b:82:8f:db:6c:a1:61:
0f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:A4:D1:5F:7E:46:6B:ED:3F:00:CD:BF:1D:9C:72:7D:18:7A:8A:16
X509v3 Authority Key Identifier:
keyid:74:00:D5:01:3C:12:85:22:42:34:30:93:CB:F5:14:8D:4E:AE:AA:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dADVATwShSJCNDCTy_UUjU6uqvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/95d71d-f41b-4171-8350-e0892a28aac9/1/LaTRX35Ga-0_AM2_HZxyfRh6ihY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/95d71d-f41b-4171-8350-e0892a28aac9/1/dADVATwShSJCNDCTy_UUjU6uqvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.181.0/24
Signature Algorithm: sha256WithRSAEncryption
39:b7:08:35:d6:cc:cd:ac:19:40:85:6f:61:d3:de:d6:91:ad:
1c:6f:9f:71:1b:94:86:45:6b:3d:1c:d9:3a:69:a1:d4:1f:dd:
97:f9:6e:cb:d0:d3:cc:f9:0b:84:ed:a5:ea:32:69:a8:e1:90:
5a:26:02:84:fa:72:c8:3d:61:66:c3:a0:7d:99:a1:03:c5:58:
9e:22:89:79:f7:d2:89:a0:e1:9d:9c:00:83:89:33:55:6b:d5:
76:43:62:63:95:22:68:69:ef:dd:09:c1:5d:ae:39:4c:5c:c9:
df:21:db:a1:26:15:07:08:44:bb:c2:df:50:f9:08:37:8e:71:
05:ac:22:95:6a:ff:3e:29:a9:55:91:64:b5:4d:1c:86:16:35:
f1:8a:1c:97:74:ad:0d:b0:c5:a2:e8:1b:3b:54:3d:d5:a9:77:
a4:e6:17:80:82:da:ae:e1:fc:9b:e1:c8:46:a6:08:30:c6:3a:
e0:99:3b:39:ea:36:19:68:57:cb:cf:ac:41:ec:fb:98:91:19:
0c:8c:da:c5:91:cf:ac:2f:9c:46:28:54:7b:06:30:7b:2e:a5:
2c:a7:84:92:df:48:e9:ca:c5:15:d7:b6:e6:54:2f:c2:c5:61:
c5:81:de:64:02:96:42:38:e8:c1:1a:3a:ed:09:2e:be:f7:ce:
2e:e2:64:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:59 2023 by rpki-client on console-fra.rpki-client.org