Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/0f2eb8-9800-4621-b674-3b4d02a61ec2/1/LNAgDHB1MAt5IRLzMOHv7t5EcOY.roa
File: LNAgDHB1MAt5IRLzMOHv7t5EcOY.roa (raw, json)
Hash identifier: Nx2zuGHtSilEg64sYO3LuxDYpcLVlTvpMtq8oX6FJjU=
Subject key identifier: 2C:D0:20:0C:70:75:30:0B:79:21:12:F3:30:E1:EF:EE:DE:44:70:E6
Certificate issuer: /CN=ae8355299374297933d281f51eb74ba5c2c91cc1
Certificate serial: 02407945
Authority key identifier: AE:83:55:29:93:74:29:79:33:D2:81:F5:1E:B7:4B:A5:C2:C9:1C:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/roNVKZN0KXkz0oH1HrdLpcLJHME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/0f2eb8-9800-4621-b674-3b4d02a61ec2/1/LNAgDHB1MAt5IRLzMOHv7t5EcOY.roa
Signing time: Sat 01 Jan 2022 01:59:32 +0000
ROA not before: Sat 01 Jan 2022 01:59:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209118
IP address blocks: 185.81.116.0/22 maxlen: 24
2a05:8840::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37779781 (0x2407945)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae8355299374297933d281f51eb74ba5c2c91cc1
Validity
Not Before: Jan 1 01:59:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2cd0200c7075300b792112f330e1efeede4470e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f4:7e:73:6a:3d:b7:83:f4:ab:52:68:82:84:
69:d4:29:03:20:c6:66:de:e4:a1:cd:d3:22:3e:e2:
8a:f7:ed:b7:40:be:22:7b:55:31:80:70:89:b4:ab:
c7:1a:c1:01:ad:9f:a6:d2:4c:37:0c:04:8d:14:95:
6b:f0:50:fd:4f:08:a9:3b:4d:4b:66:fe:2e:3c:ee:
15:b0:0d:ea:3a:66:97:79:70:48:f4:32:dd:10:56:
94:a2:8a:04:2e:52:34:1c:b8:11:fd:83:a0:b4:07:
5b:67:81:44:60:c9:11:d8:3f:0b:be:98:ef:8a:e4:
d4:b6:54:14:2d:76:60:81:bd:ee:42:24:69:b5:e8:
38:58:c6:f4:0c:ad:f1:b0:df:a9:43:72:61:d7:32:
75:d4:e0:f9:86:39:d0:97:47:d7:d9:4c:a4:b2:ae:
f3:6e:7a:33:8d:55:63:94:51:98:ae:51:62:ee:1e:
67:08:8d:cc:cc:2f:15:0e:87:07:3d:0e:dc:3c:0b:
e4:f6:3d:d5:3a:46:34:70:6b:3d:95:0a:3c:66:0a:
8f:7b:13:7a:d7:27:53:09:59:e9:2d:0d:b7:dd:21:
86:f5:7b:ed:5f:29:48:75:48:4d:19:3a:74:6c:67:
ff:a8:cb:a1:67:b0:ce:db:4f:82:a2:fc:05:45:4a:
a7:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:D0:20:0C:70:75:30:0B:79:21:12:F3:30:E1:EF:EE:DE:44:70:E6
X509v3 Authority Key Identifier:
keyid:AE:83:55:29:93:74:29:79:33:D2:81:F5:1E:B7:4B:A5:C2:C9:1C:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/roNVKZN0KXkz0oH1HrdLpcLJHME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/0f2eb8-9800-4621-b674-3b4d02a61ec2/1/LNAgDHB1MAt5IRLzMOHv7t5EcOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/0f2eb8-9800-4621-b674-3b4d02a61ec2/1/roNVKZN0KXkz0oH1HrdLpcLJHME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.116.0/22
IPv6:
2a05:8840::/29
Signature Algorithm: sha256WithRSAEncryption
2d:2d:38:bf:f6:3b:ec:ea:36:45:dc:62:76:a1:d1:07:78:fa:
d7:6a:83:dd:17:8d:b2:53:b1:8a:b5:53:00:e7:2d:b0:8c:b0:
0c:5c:e8:7f:b8:89:05:88:8f:3e:23:83:6a:af:a4:ae:81:8c:
1b:8a:3b:c6:02:4b:9e:3e:f1:a3:1e:28:68:b8:53:53:8a:e9:
38:32:15:9b:bd:9e:25:25:4f:17:60:e3:7d:2b:6c:ad:32:19:
0e:38:b6:a0:3a:d2:2c:bd:af:03:a5:b4:6c:35:41:4f:64:86:
74:04:e9:04:b6:3e:51:27:a4:96:89:4e:03:96:fd:35:7b:ee:
15:65:f3:eb:91:5a:9a:51:5b:0c:7f:4f:4a:9e:13:71:35:17:
3c:b6:a4:6d:76:c0:9c:af:65:a4:21:d0:8c:27:7d:7e:7f:a7:
a4:8c:1c:fd:85:c8:d5:6e:02:82:fd:34:07:14:51:d0:71:3f:
11:fe:ec:89:b7:30:fd:c1:46:1c:19:6e:8c:ec:bd:e7:d8:b5:
e9:02:26:7b:7a:89:c8:01:a0:b1:24:2f:6d:01:c4:75:fa:e4:
42:d2:52:3d:d5:f7:43:f2:b6:8d:91:5d:0b:9e:67:c0:a3:43:
fe:ca:6d:d8:bf:65:c7:49:b1:0f:aa:7d:3f:e5:1f:ba:b7:43:
a0:dc:be:19
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEAkB5RTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ZTgzNTUyOTkzNzQyOTc5MzNkMjgxZjUxZWI3NGJhNWMyYzkxY2MxMB4XDTIyMDEw
MTAxNTkzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmNkMDIwMGM3MDc1
MzAwYjc5MjExMmYzMzBlMWVmZWVkZTQ0NzBlNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKL0fnNqPbeD9KtSaIKEadQpAyDGZt7koc3TIj7iivftt0C+
IntVMYBwibSrxxrBAa2fptJMNwwEjRSVa/BQ/U8IqTtNS2b+LjzuFbAN6jpml3lw
SPQy3RBWlKKKBC5SNBy4Ef2DoLQHW2eBRGDJEdg/C76Y74rk1LZUFC12YIG97kIk
abXoOFjG9Ayt8bDfqUNyYdcyddTg+YY50JdH19lMpLKu8256M41VY5RRmK5RYu4e
ZwiNzMwvFQ6HBz0O3DwL5PY91TpGNHBrPZUKPGYKj3sTetcnUwlZ6S0Nt90hhvV7
7V8pSHVITRk6dGxn/6jLoWewzttPgqL8BUVKp88CAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBQs0CAMcHUwC3khEvMw4e/u3kRw5jAfBgNVHSMEGDAWgBSug1Upk3QpeTPS
gfUet0ulwskcwTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3JvTlZLWk4wS1hrejBvSDFIcmRMcGNMSkhNRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGIvMGYyZWI4LTk4MDAtNDYyMS1iNjc0LTNiNGQwMmE2MWVjMi8x
L0xOQWdESEIxTUF0NUlSTHpNT0h2N3Q1RWNPWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGIv
MGYyZWI4LTk4MDAtNDYyMS1iNjc0LTNiNGQwMmE2MWVjMi8xL3JvTlZLWk4wS1hr
ejBvSDFIcmRMcGNMSkhNRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArlRdDANBAIAAjAHAwUDKgWIQDAN
BgkqhkiG9w0BAQsFAAOCAQEALS04v/Y77Oo2RdxidqHRB3j612qD3ReNslOxirVT
AOctsIywDFzof7iJBYiPPiODaq+kroGMG4o7xgJLnj7xox4oaLhTU4rpODIVm72e
JSVPF2DjfStsrTIZDji2oDrSLL2vA6W0bDVBT2SGdATpBLY+USeklolOA5b9NXvu
FWXz65FamlFbDH9PSp4TcTUXPLakbXbAnK9lpCHQjCd9fn+npIwc/YXI1W4Cgv00
BxRR0HE/Ef7sibcw/cFGHBlujOy959i16QIme3qJyAGgsSQvbQHEdfrkQtJSPdX3
Q/K2jZFdC55nwKND/spt2L9lx0mxD6p9P+UfurdDoNy+GQ==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:50:10 2025 by rpki-client