Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/lXZq4qNf_LHRFs5Cqz2Wa1gmCns.roa
File: lXZq4qNf_LHRFs5Cqz2Wa1gmCns.roa (raw, json)
Hash identifier: w8T0WlKcnZR2bNTHttI49tCAyG5eYsyDIFfZZo8MRwQ=
Subject key identifier: 95:76:6A:E2:A3:5F:FC:B1:D1:16:CE:42:AB:3D:96:6B:58:26:0A:7B
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 3A2AAB68
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/lXZq4qNf_LHRFs5Cqz2Wa1gmCns.roa
Signing time: Wed 18 May 2022 14:00:26 +0000
ROA not before: Wed 18 May 2022 14:00:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1199
IP address blocks: 145.102.136.0/22 maxlen: 22
145.124.0.0/16 maxlen: 16
145.111.0.0/16 maxlen: 16
2001:610:5ea::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 975874920 (0x3a2aab68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: May 18 14:00:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95766ae2a35ffcb1d116ce42ab3d966b58260a7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7a:73:ab:af:29:33:a6:f9:c6:34:41:fe:b9:
3b:d2:9e:7a:e6:dd:dd:73:cd:ce:b7:ed:e6:fa:6f:
c1:5c:70:9a:f0:ad:38:7b:b4:0d:07:1b:bd:a7:b6:
4f:04:a9:1c:c8:db:8d:a2:34:a8:60:bb:43:0e:7f:
77:39:a9:16:bc:07:d3:ee:7c:76:a1:93:30:4f:50:
ae:32:fe:67:36:b1:a7:45:7b:90:44:6a:62:59:35:
05:bd:78:de:af:82:77:77:0a:15:70:76:a4:b7:0f:
e1:18:5a:fb:75:a9:5a:47:75:21:bb:df:46:69:54:
5a:78:7c:cf:f2:a0:25:40:d9:ab:1a:67:3d:ea:0e:
fd:c4:2f:6e:7b:af:be:c4:8a:ff:3d:ea:09:6c:a2:
c1:e1:86:6f:94:4f:0f:19:a2:0b:2a:b9:81:c9:b2:
98:57:bd:7d:27:69:5d:5a:d6:da:4c:60:67:67:8c:
a4:b5:ec:d9:5e:32:2c:da:34:b1:db:8c:ca:ad:06:
a9:9a:49:22:43:67:92:59:e2:22:84:c4:f5:6f:bc:
51:83:62:77:4b:e2:4e:6f:c0:dc:d5:09:36:5f:1a:
24:05:74:64:1b:7e:02:3a:00:97:d3:1a:de:d6:7b:
c1:a5:18:a7:03:bb:74:76:d8:d3:01:44:a9:61:95:
a0:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:76:6A:E2:A3:5F:FC:B1:D1:16:CE:42:AB:3D:96:6B:58:26:0A:7B
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/lXZq4qNf_LHRFs5Cqz2Wa1gmCns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.102.136.0/22
145.111.0.0/16
145.124.0.0/16
IPv6:
2001:610:5ea::/48
Signature Algorithm: sha256WithRSAEncryption
22:af:7f:f3:4c:d7:02:0c:3a:02:76:08:c5:1e:12:04:36:35:
4d:f3:d2:10:13:3b:1a:66:00:02:82:96:46:e7:d8:17:ea:5c:
e5:9e:ab:e5:cd:a3:22:6b:51:ae:25:5c:e2:6a:a8:2c:64:eb:
5c:db:08:25:1c:a0:1e:47:af:a7:92:76:3a:fb:28:b5:23:f5:
03:34:da:78:19:13:aa:e0:27:91:61:35:16:0e:9d:95:bd:4f:
9a:0d:2b:9d:8a:1c:1b:a8:09:5d:6e:89:40:cc:04:7c:b2:a9:
6a:e7:17:27:3b:7a:0b:73:6a:00:fa:6f:7d:4e:13:6e:33:12:
a1:4c:60:82:9b:99:eb:c3:77:64:62:e5:f5:da:3e:24:76:a7:
59:12:2e:e8:5c:03:ca:d5:1f:c3:17:63:6b:7c:e4:0a:ee:ed:
ef:03:13:56:f9:af:cd:97:5f:3c:24:48:7a:bd:cc:a2:5a:35:
98:b0:e6:a6:8d:a6:4b:10:8e:fc:dc:95:56:7d:06:28:a9:ab:
92:3c:2a:f6:8d:08:2c:04:ea:a6:9e:4a:08:c9:49:21:19:91:
57:78:7c:c5:41:e3:fc:7a:1f:04:95:c4:39:64:45:0d:52:84:
d8:60:7d:a6:0f:c3:d3:6d:fe:0b:90:86:e1:36:b9:04:12:37:
5f:e1:a9:75
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:09 2024 by rpki-client on console-fra.rpki-client.org