Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/LBW5pgE1dG0NwvZ8BkWWEoOKeVI.roa
File: LBW5pgE1dG0NwvZ8BkWWEoOKeVI.roa (raw, json)
Hash identifier: /yoneWFVfKZsilDnLlv/vKbSl1cgr24Af9uCC3hCCzs=
Subject key identifier: 2C:15:B9:A6:01:35:74:6D:0D:C2:F6:7C:06:45:96:12:83:8A:79:52
Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Certificate serial: 05A6782B
Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/LBW5pgE1dG0NwvZ8BkWWEoOKeVI.roa
Signing time: Sat 01 Jan 2022 07:04:07 +0000
ROA not before: Sat 01 Jan 2022 07:04:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 84.247.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94795819 (0x5a6782b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Validity
Not Before: Jan 1 07:04:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c15b9a60135746d0dc2f67c06459612838a7952
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1f:3b:2a:d0:fb:17:a7:ca:1f:96:18:f4:98:
78:19:6c:6d:64:93:34:2d:6d:e6:b4:4f:76:cf:68:
df:4c:3b:ce:6c:84:f1:ef:64:b6:35:89:09:6c:e2:
30:d5:8f:21:d7:12:69:ec:64:6a:09:87:b4:fc:98:
a9:bb:36:7e:eb:80:56:54:69:37:3f:59:e6:55:9f:
50:70:1b:7b:fe:05:4b:64:1c:f4:fd:f4:7a:cc:5c:
f8:f5:fc:5c:d7:bb:31:12:74:0b:2e:c3:27:1e:30:
7e:2e:bd:bb:76:06:46:9b:02:24:b3:cd:e7:ad:cd:
d3:49:e8:93:be:33:8f:e6:ab:29:c3:17:d7:85:29:
34:00:e3:8d:25:e1:83:f5:8c:0f:51:cb:a5:15:82:
dc:41:72:8d:c8:09:77:06:5d:2b:22:07:99:66:c3:
16:09:1c:32:3c:e6:89:95:9f:99:ad:c4:8d:29:09:
d0:e8:1c:65:ab:ad:9b:cc:d8:e5:1a:31:0d:0e:bb:
14:6f:d1:ad:0e:20:fc:f7:79:35:df:e0:3b:ed:0c:
ca:3e:86:7d:79:16:b0:64:4f:62:a8:45:0f:c2:6a:
1a:dc:36:36:96:a0:b7:fa:43:0a:38:a3:ec:64:a3:
d6:4d:af:7a:10:65:f6:6c:33:33:dd:52:2f:0f:f1:
ed:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:15:B9:A6:01:35:74:6D:0D:C2:F6:7C:06:45:96:12:83:8A:79:52
X509v3 Authority Key Identifier:
keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/LBW5pgE1dG0NwvZ8BkWWEoOKeVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.247.23.0/24
Signature Algorithm: sha256WithRSAEncryption
33:af:c0:30:da:6d:42:ad:16:0c:1c:bc:2d:5c:1a:7c:34:7e:
6e:98:76:a7:f0:bb:bb:aa:3f:b5:26:35:b2:a3:6f:f8:d9:bf:
2d:06:7d:0a:ba:9e:f8:50:89:27:1b:1d:fa:83:ac:94:d4:8e:
d9:e4:1e:bd:e6:5c:12:d7:8f:57:cf:b1:a5:61:5f:f1:b5:1c:
75:c5:c5:92:71:58:99:fa:0d:35:9f:a5:02:ec:cc:7d:06:34:
60:eb:20:e9:64:fe:ba:24:a0:d0:44:13:43:36:84:cd:fd:c7:
db:70:1e:d1:92:0f:bf:0d:db:4a:de:f8:26:04:11:60:07:08:
a4:88:44:0b:36:92:5f:5d:d6:d9:9f:e2:72:84:22:b9:00:8b:
10:63:86:7c:f3:e6:a8:ab:e5:dc:44:69:ce:f1:28:4a:97:0a:
d4:4a:9a:74:3f:49:0f:98:5d:44:17:90:ad:44:b1:53:b3:25:
f6:b8:12:e9:c4:3a:de:4d:f2:5b:fe:cd:28:0f:7d:89:1f:07:
04:76:0a:8e:4c:ea:67:f3:a5:88:a1:50:f9:34:0a:37:ba:9c:
50:bc:be:eb:22:9d:96:33:d8:a6:7e:46:4d:ea:6f:79:87:c5:
22:42:bf:30:c1:75:9c:88:af:71:ba:6d:ba:fc:7c:ae:2a:43:
df:5f:4b:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:01 2023 by rpki-client on console-fra.rpki-client.org