Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/LM3ge0XdKQOwpGgCaheKm4b34TI.roa
File: LM3ge0XdKQOwpGgCaheKm4b34TI.roa (raw, json)
Hash identifier: Kk7NSWO93CCZwD1jjuVP+lLi91TPP/KCyS1BmzeRyZo=
Subject key identifier: 2C:CD:E0:7B:45:DD:29:03:B0:A4:68:02:6A:17:8A:9B:86:F7:E1:32
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3A9A1003
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/LM3ge0XdKQOwpGgCaheKm4b34TI.roa
Signing time: Sat 01 Jan 2022 04:52:21 +0000
ROA not before: Sat 01 Jan 2022 04:52:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210587
IP address blocks: 88.220.138.0/24 maxlen: 24
2a00:4120:8005::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 983175171 (0x3a9a1003)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 04:52:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ccde07b45dd2903b0a468026a178a9b86f7e132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:86:05:2c:18:d5:df:77:56:83:f8:54:96:09:
8c:90:88:25:4e:c9:2f:06:3c:49:51:5a:25:b5:72:
7e:8a:b7:b2:7a:f9:81:99:21:b4:24:6a:23:01:c9:
a8:d5:b4:9e:37:6f:b7:2b:44:ef:a9:2c:20:2d:16:
96:2e:e4:91:a4:92:32:1c:1d:5a:66:f3:30:36:77:
d3:cb:e0:b3:16:04:26:dc:d0:b1:37:c6:ca:58:d5:
2b:26:eb:e8:30:b9:20:04:8c:45:35:b1:5a:e9:f1:
a4:a2:52:34:7e:15:dd:49:5e:ec:a8:a0:5d:fa:72:
ea:4a:ae:0f:be:23:e4:f4:e1:87:ae:a0:69:6f:9c:
d4:7f:07:0e:96:b9:a2:ae:30:0d:dc:95:ae:8b:a3:
9e:79:20:3f:75:62:ea:4e:fb:34:bc:e2:80:4d:04:
8e:54:8d:e7:1d:15:1b:31:66:0a:64:95:f0:d8:8e:
6f:d2:30:77:d0:1a:93:b0:ad:c0:30:62:14:07:60:
48:71:20:5b:ee:c6:5d:74:5b:24:9a:9e:20:2e:9a:
74:2e:cf:4d:d9:e4:6f:13:4a:2a:f5:d8:c6:f7:82:
12:bd:7b:7d:fb:f0:0f:81:5d:7f:3a:f5:4b:7e:7d:
c5:c9:31:52:9a:fa:39:c3:10:7b:52:41:a7:9c:3a:
5a:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:CD:E0:7B:45:DD:29:03:B0:A4:68:02:6A:17:8A:9B:86:F7:E1:32
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/LM3ge0XdKQOwpGgCaheKm4b34TI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.220.138.0/24
IPv6:
2a00:4120:8005::/48
Signature Algorithm: sha256WithRSAEncryption
3c:82:e7:1b:52:df:1a:bd:b0:d0:eb:ff:8d:8b:c4:92:89:c7:
7c:21:09:de:12:a6:c4:db:8f:32:a4:75:b4:9a:b3:74:51:c0:
07:f5:07:5a:c9:6a:76:07:1a:bb:07:58:c4:9d:b2:b5:de:42:
a5:5c:8c:6d:84:3f:5d:8f:76:85:2f:57:43:4f:dd:50:ed:8f:
33:d2:df:cf:fc:b3:a0:2c:2b:0e:e5:d2:32:04:6e:36:c8:93:
08:8f:9b:bf:86:84:95:84:b8:d6:55:3d:ab:49:99:61:0e:5c:
6c:00:78:d1:1c:87:5f:bc:9f:fa:ed:02:0c:0b:d6:62:ec:ac:
58:81:6c:27:a9:0c:10:43:3a:d4:d1:b7:66:f1:4c:e5:bc:ce:
a9:9c:10:48:88:1b:35:cf:f1:b9:8d:b1:4a:1f:8a:21:93:7c:
75:d3:b3:94:c6:03:44:4f:b5:9e:7a:d1:9f:b3:cd:fb:84:0e:
d3:0a:83:14:3d:d2:62:c9:c2:b1:8e:55:fb:c4:b8:bd:f7:a5:
66:ea:80:46:40:79:16:09:00:54:79:ac:96:93:31:b1:69:38:
56:92:7e:55:10:fd:6b:d8:be:f4:58:26:d6:03:a3:f0:d7:ad:
a1:50:81:79:55:30:02:84:ec:27:25:2f:7d:27:55:95:f4:a7:
7c:e0:87:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:21 2023 by rpki-client on console-fra.rpki-client.org