Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/LWQ2Six4QeLgsrIbRWmlbb3LVEg.roa
File: LWQ2Six4QeLgsrIbRWmlbb3LVEg.roa (raw, json)
Hash identifier: DqqENO2G+9IavMHP6NnRDKl6nIa3lZmSShX4IyhJlQY=
Subject key identifier: 2D:64:36:4A:2C:78:41:E2:E0:B2:B2:1B:45:69:A5:6D:BD:CB:54:48
Certificate issuer: /CN=583d76051017d0afa915fcfb790a00f4667b0a88
Certificate serial: 393FC94F
Authority key identifier: 58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/LWQ2Six4QeLgsrIbRWmlbb3LVEg.roa
Signing time: Sat 01 Jan 2022 08:05:30 +0000
ROA not before: Sat 01 Jan 2022 08:05:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29577
IP address blocks: 194.225.125.0/24 maxlen: 24
194.225.126.0/24 maxlen: 24
2001:14e8:8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 960481615 (0x393fc94f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=583d76051017d0afa915fcfb790a00f4667b0a88
Validity
Not Before: Jan 1 08:05:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d64364a2c7841e2e0b2b21b4569a56dbdcb5448
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8a:6e:41:e8:a7:9c:7d:1c:a1:3b:df:c9:8f:
0f:82:20:37:68:aa:47:04:56:7d:14:fd:4a:a5:86:
9e:8c:44:66:1e:1e:1e:ff:92:77:a1:5d:1c:26:e8:
85:61:21:4b:f4:ca:ae:f4:c4:a7:88:b8:d8:27:17:
ff:fb:c3:37:77:a6:b6:a1:de:eb:f2:51:a7:4f:d0:
07:8f:61:99:de:3e:cd:da:a6:ef:38:cf:6d:00:4a:
bc:f0:85:1f:ed:62:fe:94:63:52:d7:39:bb:f6:d0:
fa:f8:71:39:7b:49:95:9e:3b:b0:0c:01:b3:79:65:
5e:f2:a1:cc:42:21:5f:cb:5d:08:07:76:c8:e3:ce:
8e:b0:37:27:e0:12:8d:00:34:3a:4c:93:d2:c4:c3:
5f:15:a6:48:39:2f:3c:2b:23:e0:9f:20:3d:dc:d5:
e8:df:9e:88:0d:d5:ef:a9:22:7e:d6:13:f7:9e:83:
87:7d:1e:36:bb:a5:e8:53:b0:73:60:68:45:40:09:
22:7c:9a:4d:a7:fd:4e:b4:6e:8e:a9:48:60:0b:1c:
c7:9f:e7:19:39:06:de:bf:a5:ab:95:b4:88:bc:4e:
10:54:84:5d:c1:ee:ee:27:84:05:00:36:ac:8a:91:
a9:b7:a2:b9:6a:db:c6:92:65:6d:7f:b8:2b:88:9f:
95:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:64:36:4A:2C:78:41:E2:E0:B2:B2:1B:45:69:A5:6D:BD:CB:54:48
X509v3 Authority Key Identifier:
keyid:58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/LWQ2Six4QeLgsrIbRWmlbb3LVEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/WD12BRAX0K-pFfz7eQoA9GZ7Cog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.225.125.0-194.225.126.255
IPv6:
2001:14e8:8::/48
Signature Algorithm: sha256WithRSAEncryption
87:75:e3:cf:0c:85:9f:a5:cf:4a:65:e2:fe:35:6f:5f:b0:1a:
fa:b6:34:5e:d5:14:3c:13:21:43:66:54:8c:15:70:fb:a0:d4:
ae:c4:b3:b6:f5:92:28:b0:80:63:53:26:2c:3d:7e:93:32:c0:
7a:ab:a5:49:18:2d:fc:20:ff:ff:cc:c7:85:05:de:55:77:a5:
6c:1b:31:a0:3f:db:d7:aa:34:c6:75:60:79:a9:76:59:b0:d7:
21:7b:38:e5:20:6c:58:17:6c:f2:d3:8f:e3:05:c7:f0:8b:ca:
8e:da:a6:d6:5c:d5:6d:9a:fb:5f:58:5d:59:35:70:44:44:04:
f7:c3:c4:bf:eb:36:f6:9e:93:15:ca:a0:56:41:61:16:55:03:
ef:8c:b1:cf:71:5f:a0:c2:53:00:1d:40:af:67:48:f0:70:c1:
09:a5:bf:b3:27:4d:2b:44:5d:19:a2:f4:4f:b4:e5:5e:92:18:
d4:a5:f2:dd:60:05:ee:5d:ef:47:b9:3c:36:3c:fc:31:d9:fc:
e2:39:37:cf:92:b3:15:6e:63:5e:b9:59:ce:dc:32:5d:b4:a9:
38:6a:49:1f:34:52:c7:16:9a:13:10:28:3e:03:b7:11:1c:16:
05:17:7e:b1:11:9c:d8:5f:ab:57:12:4c:f5:db:fc:81:ff:ff:
db:3c:bf:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-ams.rpki-client.org