Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/e4af0a-a170-4ca3-ab57-54853c47661f/1/lpNgUlQlrDTTqUtPwGwa642UtIo.roa
File: lpNgUlQlrDTTqUtPwGwa642UtIo.roa (raw, json)
Hash identifier: BmNnLiHSuWoQkn/LlVouvZNqTx4PH8i0rIJhIYkyHWc=
Subject key identifier: 96:93:60:52:54:25:AC:34:D3:A9:4B:4F:C0:6C:1A:EB:8D:94:B4:8A
Certificate issuer: /CN=a45ded68e2260321bca39e8465b49c25d58a56e6
Certificate serial: 07E03E
Authority key identifier: A4:5D:ED:68:E2:26:03:21:BC:A3:9E:84:65:B4:9C:25:D5:8A:56:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pF3taOImAyG8o56EZbScJdWKVuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/e4af0a-a170-4ca3-ab57-54853c47661f/1/lpNgUlQlrDTTqUtPwGwa642UtIo.roa
Signing time: Fri 11 Mar 2022 18:08:30 +0000
ROA not before: Fri 11 Mar 2022 18:08:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.128.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 516158 (0x7e03e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a45ded68e2260321bca39e8465b49c25d58a56e6
Validity
Not Before: Mar 11 18:08:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=969360525425ac34d3a94b4fc06c1aeb8d94b48a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:58:3c:17:17:b2:57:d4:da:29:fb:b4:81:1d:
0e:4d:a8:9e:10:77:25:e7:6b:fa:17:98:d7:ae:6f:
fe:b5:b4:5c:0a:2a:5f:25:d1:9f:39:c2:38:1e:3f:
99:d6:b9:78:a9:40:8a:53:8c:aa:e5:2e:ff:e4:83:
22:62:bd:32:f7:0e:b3:91:91:11:51:3a:e6:cf:be:
95:44:c5:66:0d:62:05:df:fd:ff:81:f1:fb:35:6f:
ea:34:6a:a5:0c:6e:23:cf:a3:76:1f:5d:50:c5:60:
1b:f6:3d:20:73:ae:fd:bf:4b:d4:ee:b2:81:f6:c3:
bb:04:fd:e8:3a:02:5d:23:ea:3e:3c:6f:b1:76:a9:
96:36:44:ea:be:e9:67:5b:39:37:c4:46:72:1e:3b:
0c:68:48:80:7b:48:7f:4a:2b:78:9b:bf:9c:dd:8a:
35:0a:5b:cb:6b:55:4d:ff:bf:67:c3:c1:df:04:df:
21:39:dc:c7:2c:eb:63:2f:87:05:dd:8c:09:de:53:
ba:53:f9:80:dc:ec:b8:41:be:ca:de:f3:01:a5:8c:
3d:89:04:d6:71:fa:20:30:ba:55:27:ea:6c:af:b8:
06:04:4f:d9:3c:57:c5:a1:53:52:10:43:c6:0f:3e:
d6:24:e9:0e:b5:71:8a:62:77:fd:61:8b:a6:9e:82:
85:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:93:60:52:54:25:AC:34:D3:A9:4B:4F:C0:6C:1A:EB:8D:94:B4:8A
X509v3 Authority Key Identifier:
keyid:A4:5D:ED:68:E2:26:03:21:BC:A3:9E:84:65:B4:9C:25:D5:8A:56:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pF3taOImAyG8o56EZbScJdWKVuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/e4af0a-a170-4ca3-ab57-54853c47661f/1/lpNgUlQlrDTTqUtPwGwa642UtIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/e4af0a-a170-4ca3-ab57-54853c47661f/1/pF3taOImAyG8o56EZbScJdWKVuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.227.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:e1:c1:29:09:c9:22:f6:db:6f:9e:6a:be:87:eb:b2:ec:72:
e9:3b:97:65:76:eb:84:3a:33:ee:ae:c4:fa:ec:d5:21:15:2a:
52:98:98:4d:31:49:9b:6d:0a:cf:d0:e5:70:84:57:0c:69:cc:
11:55:f9:71:23:83:ec:bf:d3:30:5f:90:7b:ba:0a:21:11:31:
31:90:ef:bd:c7:e3:a2:58:80:17:5b:e6:a3:d3:19:ef:6e:ea:
c4:24:f5:96:5b:44:44:6d:ec:ee:7e:24:87:09:06:50:02:9b:
70:42:76:c7:d8:26:b8:0d:64:c6:cf:fb:0f:36:88:c0:a7:98:
5a:70:48:28:6a:71:50:7c:2a:41:21:20:c2:10:d6:3f:87:14:
5a:54:b8:03:36:b8:5f:43:a8:1e:39:1c:a0:e0:42:7f:31:f4:
da:06:d5:d9:fa:82:f2:d3:8a:68:02:fe:a2:2d:79:c0:39:0f:
9e:e1:3e:02:65:13:3f:e7:95:d8:de:b5:ff:7e:84:1d:27:60:
8b:b5:a8:bf:3f:f2:04:63:f0:ca:13:99:d0:92:2c:d6:6a:d6:
3e:e9:c5:2b:08:d7:35:e6:9b:97:7c:58:04:4b:93:c7:77:9d:
70:ad:9c:3e:29:f8:df:fd:fb:81:a6:23:10:7a:5b:f0:d1:64:
40:26:7c:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:06 2024 by rpki-client on console-fra.rpki-client.org