Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/0fcfbd-2790-4850-bafa-890eb2266657/1/LzIl-QMBoAGYNAalHmNkRAlUMHM.roa
File: LzIl-QMBoAGYNAalHmNkRAlUMHM.roa (raw, json)
Hash identifier: pC5gfA9IVsMAAa/G2lWzhqExkSmBNknCVZEdve1DJck=
Subject key identifier: 2F:32:25:F9:03:01:A0:01:98:34:06:A5:1E:63:64:44:09:54:30:73
Certificate issuer: /CN=0dd33ca83affbb801172d5094b00e06856e6f547
Certificate serial: 0580AB07
Authority key identifier: 0D:D3:3C:A8:3A:FF:BB:80:11:72:D5:09:4B:00:E0:68:56:E6:F5:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdM8qDr_u4ARctUJSwDgaFbm9Uc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/0fcfbd-2790-4850-bafa-890eb2266657/1/LzIl-QMBoAGYNAalHmNkRAlUMHM.roa
Signing time: Sat 01 Jan 2022 15:05:20 +0000
ROA not before: Sat 01 Jan 2022 15:05:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48345
IP address blocks: 194.0.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92318471 (0x580ab07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dd33ca83affbb801172d5094b00e06856e6f547
Validity
Not Before: Jan 1 15:05:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f3225f90301a001983406a51e63644409543073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:67:ac:f1:c9:1b:e4:27:ec:c4:0f:06:79:29:
07:5d:d2:65:b6:ff:8d:14:1e:2b:42:e5:51:91:ae:
05:87:eb:94:3a:62:70:53:bc:08:4c:7c:f6:d9:80:
e5:44:93:88:1a:11:20:6c:fe:06:08:97:f3:8e:83:
38:20:bc:ba:bf:a8:46:47:34:44:a7:7e:97:4a:e0:
59:f6:08:c2:d0:d9:52:3f:46:b6:60:86:51:48:90:
82:0f:8f:36:b9:18:06:e4:af:09:30:20:0d:c7:f8:
09:52:ea:eb:10:8b:a7:35:dc:eb:86:71:d3:27:38:
12:de:58:99:20:13:86:3b:b9:21:d8:35:d7:7d:61:
b5:ff:37:f2:11:81:10:33:01:b8:e8:6b:60:b1:8f:
c5:fd:77:4d:b7:b1:d4:39:14:84:90:c6:24:74:02:
58:d9:ef:3f:98:e7:25:bb:4c:d4:e3:3b:59:4f:60:
d2:4c:c1:45:56:8c:81:b2:a4:43:aa:76:59:03:6e:
18:81:0a:b3:16:88:b7:3e:89:b6:c3:ad:92:fd:15:
dc:eb:1b:7c:53:11:19:9d:a4:99:f7:16:ea:ff:b4:
e2:4b:2c:ad:89:b5:a6:78:f1:ff:2a:69:0d:60:75:
ef:b1:d7:03:8f:c5:9a:bf:7e:6c:ec:e0:71:ca:75:
85:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:32:25:F9:03:01:A0:01:98:34:06:A5:1E:63:64:44:09:54:30:73
X509v3 Authority Key Identifier:
keyid:0D:D3:3C:A8:3A:FF:BB:80:11:72:D5:09:4B:00:E0:68:56:E6:F5:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdM8qDr_u4ARctUJSwDgaFbm9Uc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/0fcfbd-2790-4850-bafa-890eb2266657/1/LzIl-QMBoAGYNAalHmNkRAlUMHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/0fcfbd-2790-4850-bafa-890eb2266657/1/DdM8qDr_u4ARctUJSwDgaFbm9Uc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.215.0/24
Signature Algorithm: sha256WithRSAEncryption
60:d1:10:ce:01:51:02:30:72:0e:63:92:a0:25:e0:cc:01:b6:
0a:5b:81:5d:c0:05:01:a2:c8:95:84:27:60:72:7f:6d:85:ec:
f8:9c:1a:66:a2:95:68:29:97:89:9d:01:11:d4:80:01:50:c3:
86:c1:cd:31:6b:9c:9a:12:20:39:a1:9b:c4:f0:90:a7:79:e0:
be:2f:b1:f5:03:4e:17:d7:ef:04:c0:a3:00:24:a1:60:85:ac:
8f:88:6d:e5:fc:90:d8:f6:36:4e:4b:3b:b9:be:24:95:43:22:
71:c4:25:22:85:d2:b4:c0:2d:53:18:35:08:b7:e0:24:d2:27:
ac:22:db:9e:9e:22:a8:e1:50:0e:96:6c:d7:d6:fd:45:d7:28:
22:20:57:7a:4e:6f:b0:af:59:57:ec:f2:88:9f:b8:26:81:54:
ab:13:f3:ee:f1:c9:40:2d:fb:dc:62:72:f3:97:2e:8a:ba:f8:
24:52:a7:44:d3:ce:22:da:36:d8:38:3d:cb:05:45:47:68:5e:
de:b2:2f:96:d6:31:19:40:2d:9f:e3:eb:9e:46:1f:17:d5:06:
3d:84:fd:34:fc:23:da:46:d2:fd:73:6e:ae:4c:7c:17:74:9c:
c3:87:ea:44:02:53:e4:9a:39:c2:95:a3:3f:80:ad:e1:e0:b6:
55:6f:c4:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:43 2025 by rpki-client