Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/f96532-d7ff-4538-bccd-2d38e7779348/1/LvnwWswiqARqlpxQI-ZL_WFCA_E.roa
File: LvnwWswiqARqlpxQI-ZL_WFCA_E.roa (raw, json)
Hash identifier: ibOnwFlOeNahUUKzLRwc5lSnUfuh3sKlcaaacd4MOiQ=
Subject key identifier: 2E:F9:F0:5A:CC:22:A8:04:6A:96:9C:50:23:E6:4B:FD:61:42:03:F1
Certificate issuer: /CN=ba2f1a11de190c81c0b7752cf52b569425dc54cb
Certificate serial: 01892B84E3E225129190CDC3A29CAFEBC638
Authority key identifier: BA:2F:1A:11:DE:19:0C:81:C0:B7:75:2C:F5:2B:56:94:25:DC:54:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ui8aEd4ZDIHAt3Us9StWlCXcVMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/f96532-d7ff-4538-bccd-2d38e7779348/1/LvnwWswiqARqlpxQI-ZL_WFCA_E.roa
Signing time: Thu 06 Jul 2023 14:04:36 +0000
ROA not before: Thu 06 Jul 2023 14:04:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12779
IP address blocks: 195.177.254.0/24 maxlen: 24
2a02:c480::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2b:84:e3:e2:25:12:91:90:cd:c3:a2:9c:af:eb:c6:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba2f1a11de190c81c0b7752cf52b569425dc54cb
Validity
Not Before: Jul 6 14:04:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ef9f05acc22a8046a969c5023e64bfd614203f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:9f:3d:f6:99:70:15:11:52:de:07:88:f1:e7:
ef:90:33:2d:51:63:56:0d:6c:fa:27:51:9f:c1:e0:
d2:16:86:19:2c:91:02:8a:20:9c:1e:50:6c:60:97:
75:02:31:93:34:64:b3:e4:1a:31:dc:6a:66:20:89:
e5:2a:9a:f0:f8:cc:39:d0:2a:f7:68:45:99:62:2c:
fd:84:75:c5:a5:d4:f3:46:5e:44:ab:67:55:49:3c:
b3:24:49:05:43:0b:0a:da:2c:cc:23:e2:6b:cc:aa:
e1:36:6b:da:89:9c:b5:0f:cd:2d:4c:45:b1:4c:c2:
8e:c5:17:4d:5d:c7:bb:a8:02:77:a0:50:5b:17:93:
e5:c3:02:91:5e:29:26:bd:98:35:5c:46:cd:bd:a8:
c8:fd:b7:57:f7:62:6f:25:48:0c:d1:2b:2e:85:94:
4a:9e:d6:cf:42:6a:b4:8b:1b:4d:a0:5b:38:fc:04:
1b:f0:4e:23:6c:6b:0f:fc:36:05:14:b9:63:e0:12:
25:01:61:76:ca:90:e4:1d:61:a9:35:7f:55:59:28:
e5:19:6e:a7:5a:02:40:48:5f:73:e8:e4:58:bc:a0:
90:43:2b:06:82:69:f1:03:7a:e6:bc:53:2e:60:49:
be:71:48:c2:e2:ba:16:d9:b4:75:89:38:37:b1:a5:
9a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:F9:F0:5A:CC:22:A8:04:6A:96:9C:50:23:E6:4B:FD:61:42:03:F1
X509v3 Authority Key Identifier:
keyid:BA:2F:1A:11:DE:19:0C:81:C0:B7:75:2C:F5:2B:56:94:25:DC:54:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ui8aEd4ZDIHAt3Us9StWlCXcVMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f96532-d7ff-4538-bccd-2d38e7779348/1/LvnwWswiqARqlpxQI-ZL_WFCA_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f96532-d7ff-4538-bccd-2d38e7779348/1/ui8aEd4ZDIHAt3Us9StWlCXcVMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.177.254.0/24
IPv6:
2a02:c480::/32
Signature Algorithm: sha256WithRSAEncryption
88:22:3e:cb:0f:a7:f4:e5:24:c2:6f:fb:cb:8b:57:d0:e1:c9:
ec:ed:aa:19:4f:c2:cd:dc:6d:f1:5a:35:c3:45:ec:e6:13:f9:
9e:d1:b1:93:87:29:08:0d:67:e2:1c:b0:36:e1:f9:3c:e2:89:
58:22:dc:1a:b0:66:51:0c:5a:7a:b8:0f:55:00:75:db:a4:60:
23:b7:1c:15:51:d0:70:85:a2:0c:3f:ad:02:57:6d:7f:27:ab:
ed:6c:29:1f:68:46:6a:00:9a:5b:61:3b:f6:34:a2:79:40:73:
4a:0e:94:be:2e:a7:40:73:91:f1:2c:dd:dc:da:4b:ed:8c:73:
bd:dc:f7:1d:d7:6c:c5:39:48:1c:f8:bc:e7:ac:2c:c1:9d:2b:
2f:2b:25:8e:4a:0f:9b:7c:e9:76:d3:70:b2:ec:e2:c2:b6:d9:
f7:6d:d5:bb:35:ef:8e:70:f3:9d:ee:06:82:33:a4:22:ff:f8:
ee:5e:65:dc:a8:3b:c1:38:35:54:5c:0d:84:93:9d:ad:69:a5:
30:f9:94:78:b4:ce:2e:f6:86:4a:57:a5:91:85:47:35:06:58:
81:42:78:ef:67:63:49:8d:e5:1a:97:15:db:8d:da:33:9c:04:
b0:35:cc:bd:49:b0:ed:79:87:6c:9a:af:2f:19:5b:e7:11:20:
ef:50:c9:d7
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYkrhOPiJRKRkM3Dopyv68Y4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhMmYxYTExZGUxOTBjODFjMGI3NzUyY2Y1MmI1Njk0MjVk
YzU0Y2IwHhcNMjMwNzA2MTQwNDM2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZWY5ZjA1YWNjMjJhODA0NmE5NjljNTAyM2U2NGJmZDYxNDIwM2YxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgZ899plwFRFS3geI8efvkDMtUWNW
DWz6J1GfweDSFoYZLJECiiCcHlBsYJd1AjGTNGSz5Box3GpmIInlKprw+Mw50Cr3
aEWZYiz9hHXFpdTzRl5Eq2dVSTyzJEkFQwsK2izMI+JrzKrhNmvaiZy1D80tTEWx
TMKOxRdNXce7qAJ3oFBbF5PlwwKRXikmvZg1XEbNvajI/bdX92JvJUgM0SsuhZRK
ntbPQmq0ixtNoFs4/AQb8E4jbGsP/DYFFLlj4BIlAWF2ypDkHWGpNX9VWSjlGW6n
WgJASF9z6ORYvKCQQysGgmnxA3rmvFMuYEm+cUjC4roW2bR1iTg3saWaOQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFC758FrMIqgEapacUCPmS/1hQgPxMB8GA1UdIwQY
MBaAFLovGhHeGQyBwLd1LPUrVpQl3FTLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWk4YUVkNFpESUhBdDNVczlTdFdsQ1hjVk1zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS9mOTY1MzItZDdmZi00NTM4LWJjY2Qt
MmQzOGU3Nzc5MzQ4LzEvTHZud1dzd2lxQVJxbHB4UUktWkxfV0ZDQV9FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS9mOTY1MzItZDdmZi00NTM4LWJjY2QtMmQzOGU3Nzc5MzQ4
LzEvdWk4YUVkNFpESUhBdDNVczlTdFdsQ1hjVk1zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAw7H+MA0E
AgACMAcDBQAqAsSAMA0GCSqGSIb3DQEBCwUAA4IBAQCIIj7LD6f05STCb/vLi1fQ
4cns7aoZT8LN3G3xWjXDRezmE/me0bGThykIDWfiHLA24fk84olYItwasGZRDFp6
uA9VAHXbpGAjtxwVUdBwhaIMP60CV21/J6vtbCkfaEZqAJpbYTv2NKJ5QHNKDpS+
LqdAc5HxLN3c2kvtjHO93Pcd12zFOUgc+LznrCzBnSsvKyWOSg+bfOl203Cy7OLC
ttn3bdW7Ne+OcPOd7gaCM6Qi//juXmXcqDvBODVUXA2Ek52taaUw+ZR4tM4u9oZK
V6WRhUc1BliBQnjvZ2NJjeUalxXbjdoznASwNcy9SbDteYdsmq8vGVvnESDvUMnX
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:38:38 2025 by rpki-client