Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/0cd2f3-0f6a-4eaa-9845-99eca5651023/1/LVPihTgqiZ5ZdN95Ju95qgpzp6Q.roa
File: LVPihTgqiZ5ZdN95Ju95qgpzp6Q.roa (raw, json)
Hash identifier: vjg9sycwal05gR6vFo8oR9bIC5XWfgnbGCq30T7DrmU=
Subject key identifier: 2D:53:E2:85:38:2A:89:9E:59:74:DF:79:26:EF:79:AA:0A:73:A7:A4
Certificate issuer: /CN=b9c3633acbf63c2ecb10205b9b92580abb4eb87e
Certificate serial: ACC030
Authority key identifier: B9:C3:63:3A:CB:F6:3C:2E:CB:10:20:5B:9B:92:58:0A:BB:4E:B8:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ucNjOsv2PC7LECBbm5JYCrtOuH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/0cd2f3-0f6a-4eaa-9845-99eca5651023/1/LVPihTgqiZ5ZdN95Ju95qgpzp6Q.roa
Signing time: Thu 03 Mar 2022 18:57:33 +0000
ROA not before: Thu 03 Mar 2022 18:57:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210483
IP address blocks: 109.107.130.0/24 maxlen: 24
2a11:cd40:f00d::/48 maxlen: 48
2a11:cd40::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11321392 (0xacc030)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9c3633acbf63c2ecb10205b9b92580abb4eb87e
Validity
Not Before: Mar 3 18:57:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d53e285382a899e5974df7926ef79aa0a73a7a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:3f:11:32:36:e4:9d:ff:78:82:fb:02:97:78:
64:4e:aa:48:a9:7d:0f:cf:d5:ba:aa:69:92:40:23:
0b:01:40:57:4e:12:5d:94:76:e3:73:e8:42:94:e1:
6b:81:79:f0:5d:f6:b1:2f:bc:6b:8d:df:b2:78:2c:
f6:4a:d2:25:e5:4a:8d:10:ba:9c:14:de:b4:a1:83:
35:4f:5d:f4:98:d6:73:a8:82:64:07:d7:37:76:31:
9e:d8:9d:ce:c7:f3:7e:6f:09:f7:07:93:63:c6:bc:
af:9e:19:4c:99:39:fa:01:87:73:03:a3:1a:f7:7a:
2e:19:5c:93:1a:7c:55:05:63:93:7a:b1:c1:a0:90:
d3:73:6d:f0:36:ee:47:f2:b9:04:87:75:df:19:e1:
57:ff:48:5f:37:aa:81:e9:c7:3a:9d:e7:9c:7a:62:
ef:80:9c:d8:b0:22:ba:17:2e:bf:a3:5b:54:b8:ad:
f6:87:af:19:fa:8d:83:28:cc:93:98:a9:63:4a:13:
c5:54:f8:bc:8d:e0:28:89:84:0e:fb:f5:e1:36:a7:
80:37:ce:ec:65:ac:cf:35:02:dc:bb:9b:9e:82:7d:
a1:b6:37:c2:8e:f5:aa:f6:06:d6:42:50:4e:fe:61:
17:9c:63:a9:9e:84:49:a3:67:48:4e:57:c5:49:a3:
f5:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:53:E2:85:38:2A:89:9E:59:74:DF:79:26:EF:79:AA:0A:73:A7:A4
X509v3 Authority Key Identifier:
keyid:B9:C3:63:3A:CB:F6:3C:2E:CB:10:20:5B:9B:92:58:0A:BB:4E:B8:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ucNjOsv2PC7LECBbm5JYCrtOuH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/0cd2f3-0f6a-4eaa-9845-99eca5651023/1/LVPihTgqiZ5ZdN95Ju95qgpzp6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/0cd2f3-0f6a-4eaa-9845-99eca5651023/1/ucNjOsv2PC7LECBbm5JYCrtOuH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.107.130.0/24
IPv6:
2a11:cd40::/48
2a11:cd40:f00d::/48
Signature Algorithm: sha256WithRSAEncryption
2e:b5:50:2b:f8:32:e9:d3:5b:9d:86:c2:5c:16:9f:9e:bf:ac:
77:14:4f:91:36:ec:b0:f2:18:b3:f2:63:83:d4:90:4d:e4:2a:
34:9f:13:9f:b4:f7:28:99:69:4f:c1:df:ec:47:c1:8e:2e:97:
5a:d2:5f:b8:ba:64:dd:77:83:bf:59:26:bf:27:50:23:93:5d:
67:01:16:8e:a4:54:72:f3:f4:6c:a6:aa:3c:b3:4a:c4:f5:27:
ac:e4:29:c0:1c:6a:28:b6:6a:b5:98:08:a4:5d:ed:7b:45:ab:
a4:05:47:b9:eb:5f:f0:bf:e6:90:4d:27:cb:43:ed:55:bc:e4:
4e:ba:f6:6d:f5:e1:3b:a2:0e:c8:0e:05:c5:8d:b4:e6:e1:16:
f5:3e:14:83:91:32:19:3b:35:81:b8:0c:0f:ec:06:68:c1:42:
0a:16:2d:93:57:bb:f8:5d:ba:ad:a1:61:95:76:1b:9c:82:b6:
47:b9:88:98:ea:bc:1d:a7:ed:d7:06:c1:f8:03:34:51:63:6d:
38:6d:17:07:47:0e:c4:ce:6c:7d:5f:ec:d3:84:4d:a5:77:1b:
9c:b7:b1:b9:3e:20:3e:ae:2a:3f:2e:14:e4:58:1b:34:fe:ae:
38:b4:e2:47:70:99:ba:4b:92:b1:23:50:e4:c6:a1:67:08:f1:
c7:20:11:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:15 2024 by rpki-client on console-ams.rpki-client.org