Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/2lc-HNEhPtt3bo1FxzrsOB50mgw.roa
File: 2lc-HNEhPtt3bo1FxzrsOB50mgw.roa (raw, json)
Hash identifier: Q84B1aXzBnbRuzKw4diOTTlKlXDfwajSCj4vkzC8PpE=
Subject key identifier: DA:57:3E:1C:D1:21:3E:DB:77:6E:8D:45:C7:3A:EC:38:1E:74:9A:0C
Certificate issuer: /CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Certificate serial: 2FB59B63
Authority key identifier: C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/2lc-HNEhPtt3bo1FxzrsOB50mgw.roa
Signing time: Sat 01 Jan 2022 10:04:48 +0000
ROA not before: Sat 01 Jan 2022 10:04:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12414
IP address blocks: 185.91.248.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 800430947 (0x2fb59b63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Validity
Not Before: Jan 1 10:04:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da573e1cd1213edb776e8d45c73aec381e749a0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9c:ed:17:04:9c:bc:d8:3f:04:a0:71:9b:06:
28:ab:82:31:57:aa:1c:21:b5:10:37:be:76:10:eb:
ed:4a:5b:95:f1:ee:ce:7d:0b:aa:88:2a:59:8b:5a:
e6:a1:9c:79:8e:39:75:cd:11:b9:75:ee:b1:6f:ff:
d4:d1:6f:87:d8:01:cf:86:bb:a5:bb:fa:3a:bd:95:
cf:c0:5a:c2:1c:d7:8b:20:03:d1:37:76:22:f6:48:
99:43:8a:56:ee:e8:c6:4d:8c:1c:1d:1d:34:30:59:
4c:9f:31:81:ac:c1:19:b4:1c:64:de:0b:20:74:b2:
a1:63:1c:78:b7:69:71:08:7d:c1:c6:c7:b5:f5:49:
25:0b:b0:7b:c3:6a:30:85:60:d5:1d:7f:cb:7e:5c:
d2:a1:76:27:20:af:5e:01:76:a6:0d:94:6d:3a:72:
de:f3:1a:4d:bf:0b:15:40:d0:04:77:8b:a8:13:cf:
ff:fd:03:10:e4:39:08:15:47:ae:d9:4d:26:21:c3:
83:53:7f:e4:29:76:e8:93:d4:26:9e:93:24:04:63:
1e:d3:a6:13:05:b7:9c:b7:72:08:ba:31:0b:47:21:
54:56:fd:a7:91:c2:43:9c:73:ce:9e:fd:3e:45:56:
a6:24:8d:fa:b4:67:fa:6e:bc:6c:ec:88:c7:48:c2:
47:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:57:3E:1C:D1:21:3E:DB:77:6E:8D:45:C7:3A:EC:38:1E:74:9A:0C
X509v3 Authority Key Identifier:
keyid:C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/2lc-HNEhPtt3bo1FxzrsOB50mgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/w5gGDxvyLwmZywcbG0JpbbxD4Qw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.91.248.0/22
Signature Algorithm: sha256WithRSAEncryption
63:14:dc:3b:8d:f7:3b:a0:47:32:d4:61:d4:2e:e3:db:5c:72:
91:47:7c:5b:ba:3b:03:0c:e3:69:04:7c:3e:5c:73:6c:f2:84:
2e:6a:20:60:1c:b7:43:a8:31:8e:d9:82:9b:96:a8:52:07:3a:
26:33:10:be:d5:e0:fd:78:b5:59:18:ef:1c:0c:b1:50:6b:0a:
7d:fc:5b:9a:e7:ff:ae:6b:a4:f3:07:d4:ec:4c:34:07:d7:91:
9d:cf:0c:e5:c2:a2:fd:7c:8a:e2:f4:73:94:de:f2:be:ca:bb:
88:f7:72:b2:4e:1b:1e:19:85:4b:78:07:46:63:c8:c3:8f:ea:
aa:4c:bb:5c:e2:b1:7a:c8:79:4c:12:08:0d:4a:ae:ac:8b:bc:
e3:28:f1:da:55:f3:a8:72:d4:95:dd:e8:a3:44:f4:ae:6d:04:
61:4b:c2:e2:0e:22:0d:97:63:07:6c:ba:9f:d7:15:33:a6:d5:
d7:ac:b3:c8:8f:15:1f:6f:ad:b2:69:0b:b1:ef:9d:fe:bd:e3:
2b:9f:48:c2:56:90:dd:b1:15:26:4c:c1:a6:47:8b:d4:aa:30:
4e:db:f9:42:c6:15:d3:ad:8a:8f:e8:1b:ab:d0:22:73:05:e8:
0d:a7:a1:56:30:b6:a8:14:a3:03:2e:f4:25:67:48:de:9f:a3:
d6:38:36:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:51 2024 by rpki-client on console-ams.rpki-client.org