Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/LhesO4pKhKrLyxTAH6yZtCosJIY.roa
File: LhesO4pKhKrLyxTAH6yZtCosJIY.roa (raw, json)
Hash identifier: qGIdDXYjYqEleunMslI2Yfa/5u/YjlSppgs5T1luVbo=
Subject key identifier: 2E:17:AC:3B:8A:4A:84:AA:CB:CB:14:C0:1F:AC:99:B4:2A:2C:24:86
Certificate issuer: /CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Certificate serial: 0641E303
Authority key identifier: CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/LhesO4pKhKrLyxTAH6yZtCosJIY.roa
Signing time: Sat 01 Jan 2022 11:01:05 +0000
ROA not before: Sat 01 Jan 2022 11:01:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2874
IP address blocks: 57.79.0.0/16 maxlen: 32
57.86.0.0/16 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104981251 (0x641e303)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Validity
Not Before: Jan 1 11:01:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e17ac3b8a4a84aacbcb14c01fac99b42a2c2486
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:56:85:aa:44:09:7d:88:20:37:00:56:f1:2e:
aa:63:0a:9f:43:b4:9a:2a:3d:ec:c8:59:cf:82:09:
f2:64:c9:33:1a:cc:a4:fa:52:ad:75:a9:11:6f:ac:
bb:51:74:57:1c:f2:86:9c:ef:68:59:52:54:4d:48:
7f:85:21:69:3a:fe:b2:88:6a:32:b1:48:18:58:0c:
d3:70:f6:6a:f1:82:42:e0:3b:f5:8d:17:f4:50:c0:
df:30:a3:cb:19:ec:cc:a5:22:ab:5f:30:43:cc:05:
bf:24:42:86:c1:59:ed:a6:de:06:80:d5:62:45:32:
67:d4:2f:92:78:1a:99:c2:08:21:2d:c5:39:e7:bb:
7a:a9:9e:c1:3b:a9:ca:f5:f8:40:05:04:c1:ad:f6:
b0:93:19:6e:36:0c:65:39:e7:e4:63:2e:93:6a:da:
60:ce:de:02:91:ba:63:db:bd:f3:f1:c8:09:4d:76:
6c:02:9c:e9:78:94:00:c1:6a:3e:f9:95:1f:51:08:
08:a0:51:87:0e:5b:75:39:2d:fa:e2:02:06:a0:1d:
df:41:d9:55:a7:9c:f1:3c:c6:45:a1:8a:0f:6c:27:
8c:2c:9e:01:08:84:54:bc:40:74:49:8b:7a:00:19:
f0:b7:12:dd:6d:8c:59:af:46:0e:82:34:c5:0c:67:
be:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:17:AC:3B:8A:4A:84:AA:CB:CB:14:C0:1F:AC:99:B4:2A:2C:24:86
X509v3 Authority Key Identifier:
keyid:CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/LhesO4pKhKrLyxTAH6yZtCosJIY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/zbg8_lSJg18pTQr03U2249wl8fM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
57.79.0.0/16
57.86.0.0/16
Signature Algorithm: sha256WithRSAEncryption
af:d4:ce:33:6d:b0:6d:c7:80:a9:bd:20:60:11:4c:55:26:96:
23:ae:fd:27:1d:e6:ce:75:d9:97:67:4a:89:c0:fb:8f:39:b3:
75:87:10:15:3c:de:f0:99:6b:a4:ce:e3:03:a1:d6:93:47:30:
91:04:8e:41:a8:9c:25:58:c8:11:3b:b5:2f:a3:8f:6c:52:bc:
66:63:78:39:cc:50:61:f2:23:7d:36:1d:d8:ab:3e:93:49:41:
2f:8b:d0:51:b4:6a:ba:39:c7:5c:76:0b:c8:37:43:b8:66:08:
7b:5c:e5:ab:5e:b7:8f:8e:9d:0b:b1:d5:3a:37:30:d4:aa:b5:
0d:c7:44:e6:cc:54:a5:88:21:1c:a9:8c:55:b8:3d:df:00:a8:
19:85:7e:05:91:f3:1d:25:86:c8:e0:8c:c8:b0:25:83:0f:fb:
67:88:00:d1:e7:ed:47:60:3e:9f:ab:c4:be:e5:17:39:94:b7:
61:40:3e:46:e2:91:f6:15:2c:9f:d6:f7:e6:ef:04:db:04:c1:
b3:93:95:9a:66:2e:15:34:ce:94:1e:c0:b2:a9:d0:8b:e7:a6:
a6:a7:5a:a0:d7:1e:d7:cf:b2:54:28:0a:a7:52:ec:65:36:2c:
2c:9d:6c:55:1e:a5:ea:0f:2c:c0:da:29:f0:46:cf:59:ca:d3:
74:e1:17:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:44 2024 by rpki-client on console-fra.rpki-client.org