Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/aff364-9d53-44c7-ae8e-1a106213d444/1/LDVn9NRJBVTruzteoDSILoHVzVI.roa
File: LDVn9NRJBVTruzteoDSILoHVzVI.roa (raw, json)
Hash identifier: 50A3rLgbKtWS59LlXHiV317ZVMO7TfYb383+J2/UqO0=
Subject key identifier: 2C:35:67:F4:D4:49:05:54:EB:BB:3B:5E:A0:34:88:2E:81:D5:CD:52
Certificate issuer: /CN=ecaa5ed7276a6c61cdaf3d38776acf9c24981415
Certificate serial: A5CA
Authority key identifier: EC:AA:5E:D7:27:6A:6C:61:CD:AF:3D:38:77:6A:CF:9C:24:98:14:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Kpe1ydqbGHNrz04d2rPnCSYFBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/aff364-9d53-44c7-ae8e-1a106213d444/1/LDVn9NRJBVTruzteoDSILoHVzVI.roa
Signing time: Mon 04 Apr 2022 15:14:24 +0000
ROA not before: Mon 04 Apr 2022 15:14:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57783
IP address blocks: 195.43.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42442 (0xa5ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecaa5ed7276a6c61cdaf3d38776acf9c24981415
Validity
Not Before: Apr 4 15:14:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c3567f4d4490554ebbb3b5ea034882e81d5cd52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8f:f5:4d:57:47:21:0d:e1:d5:da:e5:9d:f2:
24:02:77:d6:c1:40:55:e8:29:43:86:92:e6:41:b3:
02:2c:be:f8:f8:e2:57:7c:80:c3:d5:38:9c:c1:14:
fd:0b:e5:63:69:44:ca:2d:87:60:df:a2:1a:3b:b4:
ab:35:40:6f:94:e5:7a:26:60:60:27:07:30:2b:4b:
4f:da:c7:4f:19:de:05:8d:b6:b5:19:19:29:4f:4c:
48:df:f5:64:89:34:70:ff:3e:f6:01:6f:67:97:08:
4e:6a:49:8b:5f:07:ef:f6:6b:ba:23:01:16:fe:36:
a0:f5:fa:33:2e:5c:22:10:00:a9:c8:bd:43:d3:5f:
41:bd:19:b6:cc:24:7e:85:86:4a:b3:f2:2d:59:5d:
d7:2e:be:0b:31:05:6a:00:c7:c3:30:c0:ea:60:cb:
8f:3e:fb:62:ef:1e:a7:fd:68:3b:45:ce:88:ec:3f:
48:4d:14:10:cd:4f:c2:6f:36:54:29:03:a5:89:66:
79:70:0f:da:f1:aa:ff:60:7d:01:3f:79:3d:a0:48:
39:95:d2:a0:a2:15:e7:5d:ca:43:0a:82:a8:fd:0a:
9f:5d:25:d5:28:6a:43:86:2f:c3:87:86:3c:37:f9:
9d:d1:06:d4:79:44:7f:67:a1:28:2d:fe:ee:43:07:
c6:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:35:67:F4:D4:49:05:54:EB:BB:3B:5E:A0:34:88:2E:81:D5:CD:52
X509v3 Authority Key Identifier:
keyid:EC:AA:5E:D7:27:6A:6C:61:CD:AF:3D:38:77:6A:CF:9C:24:98:14:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Kpe1ydqbGHNrz04d2rPnCSYFBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/aff364-9d53-44c7-ae8e-1a106213d444/1/LDVn9NRJBVTruzteoDSILoHVzVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/aff364-9d53-44c7-ae8e-1a106213d444/1/7Kpe1ydqbGHNrz04d2rPnCSYFBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.43.134.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:b6:f8:37:d2:bd:6f:74:5b:0d:97:ab:97:72:35:9b:39:b6:
b7:1b:35:93:ca:4e:b6:37:ae:5d:f2:39:25:5c:07:e4:44:c6:
75:9e:8d:45:13:d7:da:1c:10:c2:15:b5:99:a9:44:aa:e2:93:
0a:33:82:6b:a6:bd:b5:ed:9b:10:ea:6f:4d:51:01:0e:e5:9e:
8c:4b:9e:7e:d4:0c:9f:60:14:5a:cc:57:ad:09:a7:70:14:49:
e7:94:d2:8e:4d:35:b4:f7:4c:80:03:8c:e3:2d:98:89:44:91:
c1:3b:e7:ad:7d:57:29:12:c8:21:ae:7b:0a:34:bb:f5:21:fd:
bf:9f:41:9e:f2:88:9a:ac:92:40:a9:50:f8:15:26:c8:6e:c8:
44:5a:ce:0d:b7:11:b8:a9:ce:d1:3d:00:9b:ab:dc:1f:56:ff:
8c:03:a9:48:b2:eb:c4:29:0a:d3:99:47:85:ce:96:7d:72:ac:
02:2f:e1:69:04:cf:b3:3f:d5:11:16:26:98:68:10:f9:c1:4d:
b3:f0:d5:99:dc:31:2a:bb:94:84:0a:08:18:6c:1d:b8:75:c6:
79:c8:cf:00:20:ca:58:fc:6c:c2:bd:9e:3b:ca:a2:4d:27:68:
8d:2d:42:0f:a6:07:50:b1:47:69:14:bb:d3:5e:63:8d:bd:bd:
a5:f2:94:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:45 2023 by rpki-client on console-fra.rpki-client.org