Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/c937be-f5b1-43c6-9587-4e06621bd98a/1/LN-ZKE4Tfq4wgmU7yUSg5iGBAR4.roa
File: LN-ZKE4Tfq4wgmU7yUSg5iGBAR4.roa (raw, json)
Hash identifier: 51MQ1dx5VgpDgpJOJ+gLo2LdGusJDGCDWSTzMjOyjrw=
Subject key identifier: 2C:DF:99:28:4E:13:7E:AE:30:82:65:3B:C9:44:A0:E6:21:81:01:1E
Certificate issuer: /CN=9a92d30708b9d4e8c7c28c97f8037c8027144c47
Certificate serial: 1360C90C
Authority key identifier: 9A:92:D3:07:08:B9:D4:E8:C7:C2:8C:97:F8:03:7C:80:27:14:4C:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mpLTBwi51OjHwoyX-AN8gCcUTEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/c937be-f5b1-43c6-9587-4e06621bd98a/1/LN-ZKE4Tfq4wgmU7yUSg5iGBAR4.roa
Signing time: Sat 01 Jan 2022 06:59:06 +0000
ROA not before: Sat 01 Jan 2022 06:59:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29170
IP address blocks: 178.132.216.0/24 maxlen: 24
82.114.81.0/24 maxlen: 24
178.132.217.0/24 maxlen: 24
82.114.84.0/24 maxlen: 24
82.114.79.0/24 maxlen: 24
178.132.216.0/21 maxlen: 21
178.132.220.0/24 maxlen: 24
82.114.88.0/24 maxlen: 24
46.19.224.0/24 maxlen: 24
46.19.224.0/21 maxlen: 24
46.19.225.0/24 maxlen: 24
46.19.230.0/24 maxlen: 24
82.114.64.0/19 maxlen: 19
82.114.64.0/24 maxlen: 24
82.114.70.0/24 maxlen: 24
82.114.65.0/24 maxlen: 24
82.114.66.0/24 maxlen: 24
82.114.74.0/24 maxlen: 24
82.114.77.0/24 maxlen: 24
82.114.78.0/24 maxlen: 24
185.67.176.0/22 maxlen: 22
185.67.176.0/24 maxlen: 24
185.67.177.0/24 maxlen: 24
185.67.178.0/24 maxlen: 24
185.67.179.0/24 maxlen: 24
185.190.132.0/22 maxlen: 22
185.190.132.0/24 maxlen: 24
2a04:3080::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 325110028 (0x1360c90c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a92d30708b9d4e8c7c28c97f8037c8027144c47
Validity
Not Before: Jan 1 06:59:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2cdf99284e137eae3082653bc944a0e62181011e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b5:5b:7e:9d:08:95:73:bb:73:26:05:0e:58:
0b:69:1e:46:4c:8d:55:5d:6a:b0:e3:57:08:3d:4d:
95:87:1a:7c:ae:72:44:9d:57:f0:2f:45:0c:97:1e:
ee:e2:04:83:e2:db:4b:5d:f5:53:24:42:f6:de:16:
14:ec:a7:2f:ab:24:e9:97:f6:a3:81:65:19:13:5c:
85:0e:2e:d9:29:74:6f:73:1d:5d:7f:48:55:ad:fe:
15:29:85:e5:10:07:c8:d6:3b:07:3e:41:f7:53:d7:
1d:51:c4:94:ae:49:c7:40:af:a9:ac:a0:e6:ee:58:
97:8f:3b:c8:ec:f8:73:93:e9:05:35:41:d6:3f:b3:
8a:29:19:b0:c5:ec:25:d6:4b:b6:57:85:0c:94:37:
92:81:9f:5a:a5:8b:50:8a:b5:61:e9:e9:23:27:92:
f0:ae:05:8c:40:15:db:22:65:f4:20:bc:4f:79:60:
eb:0f:ee:56:09:02:f3:f7:33:c0:cb:15:11:fe:be:
6e:09:da:dc:60:1b:7d:af:eb:28:ff:88:44:01:32:
c0:82:65:39:93:fb:b7:d9:8b:51:28:38:07:1b:2e:
e4:a2:72:bc:9a:84:98:c6:c0:90:e0:fa:e2:57:d9:
20:3f:23:51:2b:35:ef:9f:4c:e2:02:31:5f:45:c9:
fb:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:DF:99:28:4E:13:7E:AE:30:82:65:3B:C9:44:A0:E6:21:81:01:1E
X509v3 Authority Key Identifier:
keyid:9A:92:D3:07:08:B9:D4:E8:C7:C2:8C:97:F8:03:7C:80:27:14:4C:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mpLTBwi51OjHwoyX-AN8gCcUTEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/c937be-f5b1-43c6-9587-4e06621bd98a/1/LN-ZKE4Tfq4wgmU7yUSg5iGBAR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/c937be-f5b1-43c6-9587-4e06621bd98a/1/mpLTBwi51OjHwoyX-AN8gCcUTEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.19.224.0/21
82.114.64.0/19
178.132.216.0/21
185.67.176.0/22
185.190.132.0/22
IPv6:
2a04:3080::/29
Signature Algorithm: sha256WithRSAEncryption
3b:c1:65:61:86:14:fa:e1:8f:1b:4b:55:00:e7:2c:70:0b:0a:
8b:d6:03:de:05:50:4e:56:37:97:38:0c:15:29:35:c0:d2:e2:
3b:a8:dc:94:72:62:21:ec:ff:b6:39:3b:ad:e6:c1:7b:4b:9c:
a9:d9:76:68:05:17:9a:64:5e:8a:64:df:04:07:79:2f:dd:07:
ef:e4:43:46:86:2d:45:d1:45:ed:1f:0c:00:18:5c:95:be:3c:
96:ef:b8:6d:83:9d:5d:46:dd:91:ce:c5:14:0c:7f:c0:64:3d:
b7:00:e8:95:95:8a:fe:5b:3a:39:47:43:be:ee:e3:46:19:6b:
b8:7a:6f:23:24:14:ad:47:78:0f:d3:10:14:63:6a:ab:4d:64:
68:f6:6b:1c:e4:9d:b1:ab:be:b2:27:7b:fe:18:7e:3c:a0:17:
df:7b:17:45:b5:9e:da:94:b3:ca:10:0d:66:5c:1d:32:94:aa:
fb:9f:1d:3d:78:d7:b3:34:2c:4a:89:0d:50:32:49:2e:99:6c:
f7:f4:73:fc:87:fc:56:23:f7:0f:ff:86:8a:26:d6:7d:c3:b8:
33:2b:07:8c:c1:03:b0:aa:be:45:24:59:05:fc:21:1f:b6:4a:
f5:c2:be:fb:16:87:a2:5e:85:2d:7d:36:e3:02:e0:d3:a0:2c:
f3:07:98:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:56 2024 by rpki-client on console-ams.rpki-client.org