Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/5e2f4b-429f-4327-b747-1f4073ba436f/1/lpcN0b7v5bQKXMK6lJucIS95mag.roa
File: lpcN0b7v5bQKXMK6lJucIS95mag.roa (raw, json)
Hash identifier: T68P5YRhecdxeEBZ/uVu+a6Uw8g+XUE6dFUbK+1WsjE=
Subject key identifier: 96:97:0D:D1:BE:EF:E5:B4:0A:5C:C2:BA:94:9B:9C:21:2F:79:99:A8
Certificate issuer: /CN=1e08a59ed98f59a0ea0e6c4379c30f5bd5f20821
Certificate serial: 96AB
Authority key identifier: 1E:08:A5:9E:D9:8F:59:A0:EA:0E:6C:43:79:C3:0F:5B:D5:F2:08:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HgilntmPWaDqDmxDecMPW9XyCCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/5e2f4b-429f-4327-b747-1f4073ba436f/1/lpcN0b7v5bQKXMK6lJucIS95mag.roa
Signing time: Wed 09 Mar 2022 14:41:29 +0000
ROA not before: Wed 09 Mar 2022 14:41:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34968
IP address blocks: 193.169.26.0/23 maxlen: 23
193.169.92.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38571 (0x96ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e08a59ed98f59a0ea0e6c4379c30f5bd5f20821
Validity
Not Before: Mar 9 14:41:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=96970dd1beefe5b40a5cc2ba949b9c212f7999a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:68:04:4c:c4:bb:6f:16:cb:41:19:fa:13:83:
c2:c9:3c:94:c0:62:00:15:8c:37:38:58:3a:2b:35:
7c:c9:2e:14:e3:83:a6:19:3c:18:48:31:73:0a:e7:
43:bc:93:4c:38:c5:8c:9f:34:44:13:92:25:48:6e:
af:30:c6:c2:8f:71:21:5d:b2:ff:1d:4c:d5:03:6f:
2a:ce:53:e4:a9:9c:86:3f:db:82:64:af:2f:4e:15:
08:69:76:b3:9d:42:5f:bd:b9:c1:28:73:4b:18:49:
88:34:95:04:e9:a4:fb:06:46:4c:a7:20:ea:a0:ca:
ea:98:d0:21:30:41:b5:78:9a:12:07:06:99:7e:c4:
95:1f:79:21:23:4d:36:f6:fd:89:f8:e4:83:d5:8c:
fd:ea:fd:93:be:82:55:f1:15:39:7e:81:9a:b6:9a:
f8:b4:54:67:86:72:f0:3a:b6:c3:aa:89:48:78:20:
2b:e0:bc:05:34:f9:b4:a9:da:a7:c6:0e:90:2b:14:
be:55:c3:fa:26:57:35:dc:73:da:a8:71:d2:c3:67:
02:e1:f5:5e:29:32:ab:fe:a1:67:38:3a:b0:e5:5e:
81:f7:01:df:e1:ba:fa:a1:c8:a5:83:96:3e:ea:c7:
bf:1a:0a:77:24:ea:06:71:69:55:a7:26:56:56:46:
c9:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:97:0D:D1:BE:EF:E5:B4:0A:5C:C2:BA:94:9B:9C:21:2F:79:99:A8
X509v3 Authority Key Identifier:
keyid:1E:08:A5:9E:D9:8F:59:A0:EA:0E:6C:43:79:C3:0F:5B:D5:F2:08:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HgilntmPWaDqDmxDecMPW9XyCCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/5e2f4b-429f-4327-b747-1f4073ba436f/1/lpcN0b7v5bQKXMK6lJucIS95mag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/5e2f4b-429f-4327-b747-1f4073ba436f/1/HgilntmPWaDqDmxDecMPW9XyCCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.169.26.0/23
193.169.92.0/23
Signature Algorithm: sha256WithRSAEncryption
20:2e:92:21:5a:e9:08:0b:34:92:3d:fc:16:f2:2d:6b:aa:0a:
41:47:25:89:5f:0b:2c:e8:64:46:32:24:d8:1b:80:f6:a5:9f:
c2:35:72:57:d2:39:7f:ab:fd:16:85:00:0d:ad:36:b2:e2:f2:
b8:cf:ac:26:06:d7:20:ce:dd:b3:8f:21:57:89:e6:5f:be:70:
e7:f3:61:1a:94:ec:5a:62:88:58:81:6c:6d:c4:36:aa:c4:bd:
89:d2:1d:24:f6:3e:b1:d7:45:2f:4e:0b:a6:03:1d:fa:f3:10:
07:37:4e:37:f9:8d:3b:ad:d4:28:60:96:8d:dc:32:26:be:23:
28:29:e8:84:1b:7f:e4:c3:11:2f:76:36:bb:34:29:04:af:19:
24:d2:dc:8a:37:84:a1:90:2b:e0:01:0f:85:62:65:9b:32:8d:
75:55:29:6b:51:56:83:c8:6d:2a:5b:7f:c1:3b:a3:1b:7c:78:
9e:5d:c7:89:b8:c1:d7:c8:b4:05:11:65:5c:33:fa:ce:45:53:
ea:3b:82:58:94:38:9a:23:4f:25:c4:72:0c:70:1c:5b:b3:9e:
55:92:2a:32:cd:16:d6:3e:c3:8c:4a:be:b9:1c:a1:1e:cf:85:
31:ea:3f:82:ea:b9:38:a4:06:2c:b9:6f:78:22:7b:49:a5:6d:
a8:15:0d:84
-----BEGIN CERTIFICATE-----
MIIE9DCCA9ygAwIBAgIDAJarMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDFl
MDhhNTllZDk4ZjU5YTBlYTBlNmM0Mzc5YzMwZjViZDVmMjA4MjEwHhcNMjIwMzA5
MTQ0MTI5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg5Njk3MGRkMWJlZWZl
NWI0MGE1Y2MyYmE5NDliOWMyMTJmNzk5OWE4MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAm2gETMS7bxbLQRn6E4PCyTyUwGIAFYw3OFg6KzV8yS4U44Om
GTwYSDFzCudDvJNMOMWMnzREE5IlSG6vMMbCj3EhXbL/HUzVA28qzlPkqZyGP9uC
ZK8vThUIaXaznUJfvbnBKHNLGEmINJUE6aT7BkZMpyDqoMrqmNAhMEG1eJoSBwaZ
fsSVH3khI0029v2J+OSD1Yz96v2TvoJV8RU5foGatpr4tFRnhnLwOrbDqolIeCAr
4LwFNPm0qdqnxg6QKxS+VcP6Jlc13HPaqHHSw2cC4fVeKTKr/qFnODqw5V6B9wHf
4br6ocilg5Y+6se/Ggp3JOoGcWlVpyZWVkbJnwIDAQABo4ICDzCCAgswHQYDVR0O
BBYEFJaXDdG+7+W0ClzCupSbnCEveZmoMB8GA1UdIwQYMBaAFB4IpZ7Zj1mg6g5s
Q3nDD1vV8gghMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
SGdpbG50bVBXYURxRG14RGVjTVBXOVh5Q0NFLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC84NC81ZTJmNGItNDI5Zi00MzI3LWI3NDctMWY0MDczYmE0MzZmLzEv
bHBjTjBiN3Y1YlFLWE1LNmxKdWNJUzk1bWFnLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC81
ZTJmNGItNDI5Zi00MzI3LWI3NDctMWY0MDczYmE0MzZmLzEvSGdpbG50bVBXYURx
RG14RGVjTVBXOVh5Q0NFLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUG
CCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBwakaAwQBwalcMA0GCSqGSIb3DQEB
CwUAA4IBAQAgLpIhWukICzSSPfwW8i1rqgpBRyWJXwss6GRGMiTYG4D2pZ/CNXJX
0jl/q/0WhQANrTay4vK4z6wmBtcgzt2zjyFXieZfvnDn82EalOxaYohYgWxtxDaq
xL2J0h0k9j6x10UvTgumAx368xAHN043+Y07rdQoYJaN3DImviMoKeiEG3/kwxEv
dja7NCkErxkk0tyKN4ShkCvgAQ+FYmWbMo11VSlrUVaDyG0qW3/BO6MbfHieXceJ
uMHXyLQFEWVcM/rORVPqO4JYlDiaI08lxHIMcBxbs55VkioyzRbWPsOMSr65HKEe
z4Ux6j+C6rk4pAYsuW94IntJpW2oFQ2E
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:23 2024 by rpki-client on console-fra.rpki-client.org