Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/LQpW5uhLu-25XM2C-bAKqMYvmqg.roa
File: LQpW5uhLu-25XM2C-bAKqMYvmqg.roa (raw, json)
Hash identifier: sEkko9FGlLNQSlZASmj8SF23sIMB8fkXhiSTfZMAWi0=
Subject key identifier: 2D:0A:56:E6:E8:4B:BB:ED:B9:5C:CD:82:F9:B0:0A:A8:C6:2F:9A:A8
Certificate issuer: /CN=508a9a08abef74dcc51004f4fae0266d620395e3
Certificate serial: 016D1EA2
Authority key identifier: 50:8A:9A:08:AB:EF:74:DC:C5:10:04:F4:FA:E0:26:6D:62:03:95:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/LQpW5uhLu-25XM2C-bAKqMYvmqg.roa
Signing time: Sat 02 Jul 2022 16:49:25 +0000
ROA not before: Sat 02 Jul 2022 16:49:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211197
IP address blocks: 185.7.213.0/24 maxlen: 24
193.223.109.0/24 maxlen: 24
2a03:b680::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23928482 (0x16d1ea2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=508a9a08abef74dcc51004f4fae0266d620395e3
Validity
Not Before: Jul 2 16:49:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d0a56e6e84bbbedb95ccd82f9b00aa8c62f9aa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:fb:6b:38:a5:8c:08:28:18:09:7f:c5:34:dd:
17:00:c1:7c:7e:14:91:16:2b:f9:71:e9:66:46:cf:
62:29:c2:d4:b2:a7:1c:02:50:9d:80:14:5b:30:65:
af:e9:5b:ce:5d:71:d9:c1:b7:2e:6b:f3:17:c1:93:
8b:df:88:8d:7a:7e:ca:be:bf:c0:1f:18:66:21:5c:
d9:95:c6:9a:d2:50:57:1e:a2:99:f3:1d:f8:d6:c9:
d6:3e:ff:8f:9a:13:cf:7c:9d:38:87:8c:d7:7a:b6:
45:56:1a:50:fe:75:bd:8c:a8:9b:27:c5:23:99:ce:
93:5e:d0:7b:50:81:b2:13:80:59:58:0b:2d:0e:71:
30:81:c0:b2:f6:dc:35:cb:be:3e:3e:18:fb:4b:68:
75:6a:6d:96:88:97:10:1b:4e:12:9b:92:c8:7c:4e:
b2:fe:bc:b8:52:eb:cb:71:e3:33:2c:41:b9:c1:92:
27:c7:8d:73:15:d5:b3:7e:8b:0b:27:c5:ca:87:32:
ed:6d:55:1c:5a:d6:f1:57:93:1c:1a:db:10:43:4b:
17:d9:50:0e:89:2d:ff:02:1c:b9:aa:95:c9:17:97:
ec:7c:12:17:4f:83:9f:08:98:81:83:a2:58:49:a8:
76:18:17:6e:d0:0b:a6:ff:1a:82:35:04:75:a8:d8:
46:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:0A:56:E6:E8:4B:BB:ED:B9:5C:CD:82:F9:B0:0A:A8:C6:2F:9A:A8
X509v3 Authority Key Identifier:
keyid:50:8A:9A:08:AB:EF:74:DC:C5:10:04:F4:FA:E0:26:6D:62:03:95:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/LQpW5uhLu-25XM2C-bAKqMYvmqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.7.213.0/24
193.223.109.0/24
IPv6:
2a03:b680::/29
Signature Algorithm: sha256WithRSAEncryption
46:62:e9:38:3b:60:2b:b5:bc:db:51:2b:db:1a:56:ea:a1:30:
b2:75:8c:a0:59:90:1c:8c:4d:67:7c:f8:6f:44:ac:b9:e9:74:
aa:7e:49:22:3c:17:64:f7:f9:01:8d:88:97:31:e1:72:89:2f:
2c:a4:4e:d3:71:d5:40:36:8a:49:d9:fe:ee:f2:c7:40:4c:9a:
7e:92:5f:7d:ce:a6:88:c9:66:cf:2a:37:ba:0a:df:d8:3a:53:
f7:e7:11:08:c8:d9:a7:ec:d2:93:2d:92:ca:f7:da:bf:ad:8c:
50:e8:93:1a:3e:d9:7a:65:05:23:22:e8:be:8e:ea:d7:f8:51:
ff:49:1b:49:2a:da:75:d3:4a:38:b4:80:40:ad:4a:a3:ad:3c:
d2:a1:c7:c7:10:1c:8c:1f:45:48:26:9a:17:96:a6:bf:ed:dc:
2b:df:4c:69:55:b7:89:d2:e8:2f:24:1b:e6:51:c8:7a:86:a6:
8a:83:4c:58:e7:45:d8:cd:45:2f:88:b0:f4:43:14:d5:74:06:
00:15:a4:fa:1e:20:aa:05:53:99:a8:31:34:b0:25:eb:96:df:
1b:41:e2:f0:f4:de:9b:fa:01:b1:b5:0f:55:51:40:7a:38:d1:
63:86:53:b2:31:eb:9a:b7:0b:f2:93:8b:2f:88:98:0f:c7:59:
6a:9e:f7:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:52 2024 by rpki-client on console-ams.rpki-client.org