Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/2e881a-8141-44a0-8f3c-cb7c9ecc7798/1/lceEFBAXp0t6TQAfcfbwWsvC0cE.roa
File: lceEFBAXp0t6TQAfcfbwWsvC0cE.roa (raw, json)
Hash identifier: B2btMxm6DSgR6DgD71KZaMGY294P/1bqTbQ1jYFLd2A=
Subject key identifier: 95:C7:84:14:10:17:A7:4B:7A:4D:00:1F:71:F6:F0:5A:CB:C2:D1:C1
Certificate issuer: /CN=d6f2e142c44d5d51bc7e42ca0710f6b64ef11091
Certificate serial: 17DD49C3
Authority key identifier: D6:F2:E1:42:C4:4D:5D:51:BC:7E:42:CA:07:10:F6:B6:4E:F1:10:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1vLhQsRNXVG8fkLKBxD2tk7xEJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/2e881a-8141-44a0-8f3c-cb7c9ecc7798/1/lceEFBAXp0t6TQAfcfbwWsvC0cE.roa
Signing time: Sat 01 Jan 2022 08:04:43 +0000
ROA not before: Sat 01 Jan 2022 08:04:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33988
IP address blocks: 185.63.128.0/22 maxlen: 24
2a04:f500::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400378307 (0x17dd49c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6f2e142c44d5d51bc7e42ca0710f6b64ef11091
Validity
Not Before: Jan 1 08:04:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95c784141017a74b7a4d001f71f6f05acbc2d1c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:fd:48:2a:e6:f2:94:84:f5:07:e5:d2:19:c8:
16:81:e2:e0:0e:3c:9b:70:41:80:8f:1a:76:10:f9:
4f:eb:b8:de:d2:26:ba:4d:58:29:1f:f1:33:bb:89:
6c:78:d0:55:4b:4f:7c:a3:95:db:0d:d8:88:97:3c:
4b:20:2c:3d:c4:0d:44:ac:8f:7b:d8:d2:b6:1c:38:
48:9e:09:b2:64:68:bb:b2:2a:d0:37:a6:28:2b:a5:
bf:52:8e:24:27:22:c9:85:1d:33:23:8d:7d:1d:c9:
28:a9:4c:1c:1b:7e:1d:8e:4a:f6:4a:44:0c:23:8c:
a0:49:ce:5b:2f:89:5e:ef:0c:fb:0a:38:6f:45:a3:
92:2e:3d:c1:6b:56:f8:a0:e4:3d:5e:db:e6:1f:87:
bf:03:b2:47:e8:54:ad:a3:b0:c9:20:80:62:13:c5:
ec:6d:0a:29:35:ea:37:c0:6d:b7:42:03:3c:7e:30:
51:c7:2b:38:bb:e3:dd:08:39:79:1d:84:8d:13:ae:
56:99:7e:5d:91:eb:aa:b2:cd:34:60:bb:f0:f0:df:
b5:c3:38:42:88:0c:ac:29:32:06:91:12:71:f5:c6:
51:1a:18:6e:db:75:28:66:a3:b1:92:ab:31:27:61:
ed:7b:68:4e:dc:8b:28:22:50:ab:3f:d0:38:f7:5a:
82:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:C7:84:14:10:17:A7:4B:7A:4D:00:1F:71:F6:F0:5A:CB:C2:D1:C1
X509v3 Authority Key Identifier:
keyid:D6:F2:E1:42:C4:4D:5D:51:BC:7E:42:CA:07:10:F6:B6:4E:F1:10:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1vLhQsRNXVG8fkLKBxD2tk7xEJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2e881a-8141-44a0-8f3c-cb7c9ecc7798/1/lceEFBAXp0t6TQAfcfbwWsvC0cE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2e881a-8141-44a0-8f3c-cb7c9ecc7798/1/1vLhQsRNXVG8fkLKBxD2tk7xEJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.128.0/22
IPv6:
2a04:f500::/29
Signature Algorithm: sha256WithRSAEncryption
76:e2:26:f7:2a:00:4a:a0:d5:96:7f:b6:07:ea:63:0b:51:24:
6a:36:dd:ec:87:4b:7e:cc:fe:9c:6a:8a:45:fa:15:ec:48:2b:
78:72:90:71:e8:8b:e5:6b:57:6b:ea:1e:1c:88:a2:d2:26:86:
af:2b:bd:1e:b6:70:87:bd:3c:ec:3a:3a:cd:d1:ba:ee:ef:93:
0a:62:d1:49:cd:ad:48:6d:26:e9:d6:fd:39:5a:d8:0f:15:ae:
7a:d9:7d:fd:a1:18:5b:70:18:59:05:7f:ce:6c:6e:41:9d:4f:
80:9b:32:73:f3:31:03:ea:34:fc:4e:20:9c:fe:2a:a6:e5:33:
9d:a8:d9:2d:e2:a5:8d:05:46:9d:ae:67:f5:67:1a:7f:5a:47:
04:29:c6:21:b3:97:cc:cc:4a:80:67:18:f9:d7:9d:45:b5:e8:
52:0d:8b:61:be:4a:44:cd:af:f1:33:b1:32:0b:57:e7:1a:4e:
16:2c:c0:e4:2c:8c:64:ba:38:34:8e:3d:f4:f2:ad:03:a9:2e:
da:cb:42:4e:5a:6b:70:62:cc:0c:15:80:7b:95:3e:12:8b:52:
c1:90:f9:33:61:e2:1c:1c:b0:59:54:1c:42:9a:16:ca:ef:68:
9a:ab:be:ea:63:9a:2b:6e:9d:06:9f:d2:f7:45:b5:cb:bd:51:
34:71:7c:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:08 2025 by rpki-client