Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/LsnqXJBzOp_XKvWzFFOSEl8Umec.roa
File: LsnqXJBzOp_XKvWzFFOSEl8Umec.roa (raw, json)
Hash identifier: tAxM7KlD9PK2D+PyOQwiyatTcyiAuVJ8QLheG/zWueE=
Subject key identifier: 2E:C9:EA:5C:90:73:3A:9F:D7:2A:F5:B3:14:53:92:12:5F:14:99:E7
Certificate issuer: /CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Certificate serial: 01851C418948F714C5EDA989C855937C1242
Authority key identifier: 8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/LsnqXJBzOp_XKvWzFFOSEl8Umec.roa
Signing time: Fri 16 Dec 2022 18:45:35 +0000
ROA not before: Fri 16 Dec 2022 18:45:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56703
IP address blocks: 194.26.117.0/24 maxlen: 24
31.40.0.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1c:41:89:48:f7:14:c5:ed:a9:89:c8:55:93:7c:12:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Validity
Not Before: Dec 16 18:45:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ec9ea5c90733a9fd72af5b3145392125f1499e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:5c:50:94:57:5c:be:0a:15:2c:21:6f:b4:a4:
e6:e3:d8:79:03:29:e9:78:1b:d6:7b:4d:90:d0:7f:
38:7a:7c:3c:b2:92:a3:b6:aa:b4:0f:2d:33:1e:9a:
7f:95:d5:3f:53:00:8d:cd:b4:d8:b5:bb:87:e2:f3:
20:2a:1e:d2:22:b2:43:2d:d4:89:01:5d:41:e9:d8:
e8:eb:12:c3:af:58:9b:3c:ee:a0:99:74:01:9d:46:
23:30:ec:4f:dd:a4:fd:73:dd:90:9b:97:49:12:73:
0d:4a:99:d0:b0:5e:cd:0f:a9:e1:27:17:a4:ae:0e:
6c:60:1a:f0:56:ff:0d:7d:41:b5:e0:54:c2:87:a5:
5f:71:8e:54:1d:e8:fa:07:f6:21:b4:84:62:2d:a0:
54:ab:d3:00:a5:ed:5b:1b:f9:09:16:d5:0a:44:87:
ec:a0:15:e3:07:c2:de:08:99:d8:bd:05:e5:a8:68:
d0:ea:10:3a:5c:14:92:d3:68:e2:4e:98:08:18:df:
1d:7d:32:b4:8b:d9:36:67:82:2f:e7:0f:20:dc:0d:
db:3c:e4:cf:e9:e1:d0:7e:fe:98:cb:e7:87:0d:02:
dc:f4:6b:ec:7e:a3:80:7f:13:cd:81:2e:81:38:49:
0b:ee:32:64:eb:26:80:60:9c:28:a8:df:bd:9f:e4:
49:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:C9:EA:5C:90:73:3A:9F:D7:2A:F5:B3:14:53:92:12:5F:14:99:E7
X509v3 Authority Key Identifier:
keyid:8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/LsnqXJBzOp_XKvWzFFOSEl8Umec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/j-Arfu3_w4q16rRBYXLn2I6a0eI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.0.0/23
194.26.117.0/24
Signature Algorithm: sha256WithRSAEncryption
06:bc:f8:50:76:b9:66:51:24:54:b1:7d:71:86:ff:e5:32:59:
4c:f3:16:34:d6:ac:fe:08:31:97:4a:03:0e:20:21:c0:3f:7d:
77:1b:a1:c2:8e:2f:d2:28:f7:b1:a2:07:ae:88:ce:22:9d:1a:
2e:d6:90:c2:b9:55:ea:f1:ed:c8:fb:21:13:d3:fc:38:96:76:
be:1a:a6:60:4a:c5:bc:f8:a6:be:d3:4a:ce:b7:37:ba:ea:ad:
30:fe:df:06:bb:41:f5:dd:f6:fe:94:12:ad:b8:51:82:c3:77:
1e:de:f4:ab:88:53:fc:71:f4:99:12:f5:53:19:d7:f7:e5:7a:
9b:13:cd:9c:3d:62:bf:60:fb:9f:3f:e2:ac:2a:a5:7d:fc:37:
95:88:1e:23:a6:c1:f5:21:24:ac:ec:58:9b:e1:1e:b4:92:d3:
8a:e8:aa:4b:f7:b5:20:e0:a6:2d:85:fc:87:2a:02:cf:de:4a:
a5:e6:5d:13:7e:bb:62:a4:98:4d:7e:72:86:05:46:e9:64:62:
c3:31:8c:da:8d:c3:63:55:51:f8:24:1b:99:5b:a4:5f:47:03:
c1:8f:c1:bd:a8:d5:e8:78:b7:97:0b:bc:2b:40:43:4d:f3:d9:
9c:cf:e9:70:62:d6:e7:8e:fd:a2:5d:8f:6d:37:8a:50:f7:1f:
b0:ec:fa:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:19 2023 by rpki-client on console-fra.rpki-client.org