Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/LXDJ_19PuWLZc5xr892KRsh5gaA.roa
File: LXDJ_19PuWLZc5xr892KRsh5gaA.roa (raw, json)
Hash identifier: VFvzKYwbA9aT1+KO6ef4pa6nx9z0GULN1HTC3auO+bU=
Subject key identifier: 2D:70:C9:FF:5F:4F:B9:62:D9:73:9C:6B:F3:DD:8A:46:C8:79:81:A0
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 180C56E0
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/LXDJ_19PuWLZc5xr892KRsh5gaA.roa
Signing time: Sat 01 Jan 2022 04:00:37 +0000
ROA not before: Sat 01 Jan 2022 04:00:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203390
IP address blocks: 77.85.222.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 403461856 (0x180c56e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 04:00:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d70c9ff5f4fb962d9739c6bf3dd8a46c87981a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e6:1e:dc:50:f3:eb:d1:13:6c:91:df:3f:ae:
7b:0c:44:6c:95:dc:62:d1:5b:f9:16:32:c0:db:a3:
18:4d:a0:9f:af:4c:26:ca:e9:05:45:d2:27:0c:f4:
37:7b:28:68:0a:8c:8a:c8:95:f1:e7:39:99:bf:b6:
52:d9:b9:aa:85:9a:b2:f8:38:3e:95:6f:0a:c4:1a:
e0:88:c2:96:1a:f2:e6:40:78:9f:5e:fd:a6:2f:0c:
c4:d9:46:f2:eb:df:bf:eb:ad:2d:98:33:bc:88:54:
12:7d:24:be:bb:12:50:c0:af:86:49:e7:2f:00:eb:
81:47:ca:93:a9:08:a2:41:9f:83:0f:55:f5:49:9f:
ab:93:93:d6:60:ba:f4:64:b9:1e:b9:ce:e3:45:e0:
3a:4d:a1:e7:e8:a8:6e:34:f5:1e:44:de:0e:68:0f:
a4:95:9a:ae:4c:3a:4d:46:19:47:54:9d:c7:0a:0e:
7d:b8:e7:07:22:d3:e5:3e:e5:b7:4b:b4:82:8f:ac:
7d:10:6f:fb:6b:c2:89:06:57:96:b7:60:2e:c5:96:
0d:b1:fd:52:03:c5:df:96:8c:cf:9a:df:3f:9d:0a:
55:ad:93:9c:eb:6c:a6:a3:e7:9e:d6:75:2a:e5:7b:
3a:cf:2a:82:a5:32:10:fa:21:6b:b9:de:ed:7c:cf:
15:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:70:C9:FF:5F:4F:B9:62:D9:73:9C:6B:F3:DD:8A:46:C8:79:81:A0
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/LXDJ_19PuWLZc5xr892KRsh5gaA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.85.222.0/24
Signature Algorithm: sha256WithRSAEncryption
39:e1:5d:73:58:0f:19:91:b3:2e:a7:4c:61:bc:e2:ec:9f:d6:
af:54:e7:4c:99:94:82:f2:51:0a:7d:64:95:e2:50:b6:ef:4d:
46:49:5c:c2:17:41:60:00:96:ce:3e:ce:3d:f1:ee:98:86:9a:
1e:f0:5b:83:b7:39:5e:e1:87:8e:2c:2f:53:7a:9f:7e:0d:61:
60:0f:15:c6:13:b4:05:1f:51:05:9e:e7:7c:7c:2e:d8:07:1e:
71:72:67:d5:cf:84:d4:08:56:21:0f:8b:f1:5b:1b:87:9c:19:
38:c6:b3:60:9f:dc:75:09:c4:a3:b2:b4:cc:1b:f3:df:34:3f:
7f:95:52:69:f7:42:82:be:ef:f9:28:de:dd:ed:77:25:4b:39:
42:6c:b8:24:c1:f4:da:20:88:0e:7e:04:d8:64:99:e3:2b:a0:
e8:9e:11:0d:44:ad:a2:8e:fb:d5:2d:0e:25:25:d5:d7:3d:70:
dd:a2:fc:8f:78:9c:a4:23:73:c5:ee:57:27:8a:18:23:55:c8:
7e:02:9e:7a:b3:0c:85:31:7b:d5:c7:c7:26:26:29:55:9f:4a:
a5:90:fd:99:e3:67:64:21:a1:42:7c:85:08:3c:e9:36:5a:54:
17:dd:0d:da:e4:96:f0:c3:18:22:91:4c:35:50:e7:4d:47:8c:
c0:97:8a:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org