Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/Lf50ZWzilSvVOPeTyfE7EubHU-k.roa
File: Lf50ZWzilSvVOPeTyfE7EubHU-k.roa (raw, json)
Hash identifier: v6tzAovULitRgPYZzRYlPKyOLWvm2xx5HhP90vUyckE=
Subject key identifier: 2D:FE:74:65:6C:E2:95:2B:D5:38:F7:93:C9:F1:3B:12:E6:C7:53:E9
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 12F4E928
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/Lf50ZWzilSvVOPeTyfE7EubHU-k.roa
Signing time: Mon 20 Jun 2022 10:10:44 +0000
ROA not before: Mon 20 Jun 2022 10:10:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 31.129.22.0/24 maxlen: 24
31.129.21.0/24 maxlen: 24
31.129.30.0/24 maxlen: 24
45.8.99.0/24 maxlen: 24
77.83.116.0/24 maxlen: 24
77.83.117.0/24 maxlen: 24
194.28.193.0/24 maxlen: 24
195.80.48.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 318040360 (0x12f4e928)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Jun 20 10:10:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2dfe74656ce2952bd538f793c9f13b12e6c753e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b0:58:69:c6:1a:f1:56:ac:24:c0:fa:fa:05:
7f:d0:c2:0a:83:c7:77:12:ac:f7:b0:4b:7f:62:95:
ec:e6:ea:6f:d0:5c:dd:8b:0b:b9:6f:ee:1e:19:a1:
6d:0b:5f:30:74:ee:67:26:2b:20:db:11:a9:2d:ce:
df:ae:37:21:ea:72:d5:1b:1b:b5:b1:02:b3:88:f4:
72:3f:3e:b1:3b:b3:58:bd:5d:44:c1:da:22:b6:cf:
a9:b4:9c:5b:22:25:93:bf:9a:a2:f8:f0:c0:a4:26:
5b:98:2b:98:de:b7:4b:35:32:32:e0:ac:55:ce:78:
54:99:b2:32:04:d9:ca:c6:dd:ff:a8:6e:01:d1:65:
14:df:7d:54:18:bf:b4:87:25:58:c2:73:f3:20:c7:
68:82:39:70:f4:6d:9d:d0:52:51:de:ab:ab:df:bf:
f6:e6:94:0f:cb:87:95:41:59:a3:e4:b9:dd:a2:a5:
48:88:8b:5e:ce:8f:ee:89:93:0d:b7:8c:17:4b:23:
ec:27:81:a0:28:17:b3:b1:60:3c:2d:f4:7a:cb:f7:
6f:60:1f:0a:dd:5a:b3:4e:f7:93:c9:ee:cd:60:26:
fa:c0:81:2c:30:33:91:d6:73:e0:7f:1d:b1:3d:50:
32:58:d5:2d:88:e1:dd:6a:b4:f0:5d:da:67:a2:da:
6f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:FE:74:65:6C:E2:95:2B:D5:38:F7:93:C9:F1:3B:12:E6:C7:53:E9
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/Lf50ZWzilSvVOPeTyfE7EubHU-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.129.21.0-31.129.22.255
31.129.30.0/24
45.8.99.0/24
77.83.116.0/23
194.28.193.0/24
195.80.48.0/24
Signature Algorithm: sha256WithRSAEncryption
32:39:d1:27:98:0b:56:2d:ec:da:69:ce:ed:a7:8a:ec:ed:52:
4a:00:1a:9a:01:c7:85:62:9f:96:74:1c:66:c8:26:d1:ae:1f:
11:1b:ff:f7:63:30:ab:25:94:ca:34:e0:2c:be:91:4e:cb:18:
56:10:7d:70:65:37:d2:a5:f7:5d:31:95:36:35:4b:a3:24:39:
d0:ba:a7:e6:6d:ec:1a:a5:f8:53:64:86:a7:cf:3a:89:2a:2c:
a6:3d:d5:51:07:3e:a2:c1:40:94:4b:92:ed:69:f9:75:34:8a:
71:9d:db:23:91:b6:81:62:aa:fb:67:46:92:cf:e3:43:9d:9a:
08:6f:4b:9b:af:b0:95:e5:38:9a:67:a1:23:18:0a:43:d8:12:
ec:09:77:54:a7:54:64:5b:fb:75:84:07:b2:ae:41:11:e3:d8:
9a:3d:b0:53:fc:91:97:a0:22:99:ce:f7:57:74:37:3d:cf:93:
d4:4b:26:56:4f:03:35:9e:b2:17:a4:51:41:9c:7a:c4:ac:e6:
f4:82:16:a8:8e:90:fc:da:27:9d:d6:0a:2c:fe:f2:68:93:1c:
c8:ad:3b:fd:35:8c:7b:6e:b1:49:e9:a6:80:dd:8d:5f:58:8a:
8b:9f:a3:43:d1:5c:b7:e4:fd:5a:f5:46:bb:4a:36:f6:d6:78:
a0:11:e5:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:15 2024 by rpki-client on console-ams.rpki-client.org