Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/lzbfjq1p3u62RhAoRYwZnM3V4f0.roa
File: lzbfjq1p3u62RhAoRYwZnM3V4f0.roa (raw, json)
Hash identifier: f4x8LQPcqyJIS7ME9wopRzpqHcD7AREdNEOy0/AL1ao=
Subject key identifier: 97:36:DF:8E:AD:69:DE:EE:B6:46:10:28:45:8C:19:9C:CD:D5:E1:FD
Certificate issuer: /CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
Certificate serial: 0183216223D69AF9AA811EE31A22E850A1BF
Authority key identifier: D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/lzbfjq1p3u62RhAoRYwZnM3V4f0.roa
Signing time: Fri 09 Sep 2022 08:33:43 +0000
ROA not before: Fri 09 Sep 2022 08:33:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 193.178.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:21:62:23:d6:9a:f9:aa:81:1e:e3:1a:22:e8:50:a1:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
Validity
Not Before: Sep 9 08:33:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9736df8ead69deeeb6461028458c199ccdd5e1fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:0f:e7:eb:16:05:bb:1f:c7:5d:a4:3e:c9:cc:
98:05:e8:78:65:6b:f4:ef:83:d9:d1:81:8c:d6:10:
35:5b:fa:85:07:ef:e6:5e:25:5d:c5:49:19:fe:86:
1a:89:89:71:f9:3c:02:00:87:87:8a:95:13:87:36:
be:05:32:d8:a0:a3:6d:46:9b:1e:ff:a0:a4:2b:de:
a3:82:15:80:ba:73:0b:f0:fb:4d:cb:cb:64:36:b8:
12:1d:fd:43:69:70:3d:64:2f:b8:e4:c8:4c:69:c6:
1f:e5:2b:60:33:f2:f3:8e:8d:a1:68:ec:70:81:ec:
6a:8f:25:40:9a:44:92:9c:09:6d:a1:32:6c:c3:8e:
b2:56:86:da:3f:ea:ef:77:3a:23:6c:7f:83:76:0f:
cd:f0:55:79:aa:26:78:08:62:3b:cf:f0:59:b2:a1:
62:98:51:42:0c:3b:8b:05:80:bf:45:e8:3d:a3:65:
1b:33:0c:7e:20:a6:61:63:95:7b:69:1d:be:89:85:
17:98:6e:f2:af:e0:4b:75:5d:65:76:27:6a:e5:82:
ba:97:0e:d0:d9:7f:0e:61:b3:51:3f:a6:ab:f7:11:
b1:ad:fc:bc:cf:0f:67:bc:62:1e:95:97:fe:9f:89:
3e:98:19:52:96:b2:4b:20:95:a7:a3:09:0e:05:74:
c2:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:36:DF:8E:AD:69:DE:EE:B6:46:10:28:45:8C:19:9C:CD:D5:E1:FD
X509v3 Authority Key Identifier:
keyid:D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/lzbfjq1p3u62RhAoRYwZnM3V4f0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/1fBlyL23j_KU98VFSXHb-r-2wYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.31.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:d2:2d:ea:ad:8a:26:f7:ec:03:73:41:16:5d:0a:cf:94:b2:
d0:5d:32:1b:9b:be:93:4f:b6:3d:82:ba:2c:02:93:56:d5:1d:
5c:5b:b8:1b:1b:05:8d:af:41:c6:e0:0a:6a:58:35:a8:28:31:
e6:86:53:57:9f:ea:42:6e:51:01:24:78:b3:ac:6e:59:ce:53:
71:73:98:a7:ac:ca:96:62:bb:9e:26:f5:a4:e4:2c:b5:61:a5:
8d:0f:40:8d:44:b0:1e:36:20:64:ff:f7:98:31:c6:2c:75:63:
9a:5d:8e:94:6e:3e:5d:f4:8b:0e:ec:58:b8:1d:b4:ca:e2:12:
fd:5b:e6:e8:be:d9:d7:c5:af:97:1c:5d:34:eb:35:3d:ca:90:
9e:17:fb:bc:dd:ac:e5:32:7f:e9:08:88:fa:e2:dc:5c:3f:b3:
f0:40:eb:e7:93:0a:0f:7d:86:49:e7:d1:ee:d7:65:4e:31:87:
b0:ff:16:7d:bf:a2:6e:13:fc:27:37:e6:92:f9:e8:58:30:ea:
5e:80:16:31:cb:55:c1:e1:27:0c:b9:f9:b0:ee:50:b1:e7:51:
15:28:25:9c:9c:66:22:f1:2b:41:b2:14:7c:0b:58:d7:be:0a:
bb:11:51:1f:09:c0:f4:e1:4b:51:a1:3c:46:ce:e8:19:20:09:
b8:6e:d0:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:32 2024 by rpki-client on console-ams.rpki-client.org