Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/6256b6-36a1-4f2f-a0b9-411f5837fefa/1/LMh798TiawXRObav2ZVuRaAohVo.roa
File: LMh798TiawXRObav2ZVuRaAohVo.roa (raw, json)
Hash identifier: Ot8Mkc73HziifXdWsGx6cNGW3YxK0aExqGZM/4J+pWY=
Subject key identifier: 2C:C8:7B:F7:C4:E2:6B:05:D1:39:B6:AF:D9:95:6E:45:A0:28:85:5A
Certificate issuer: /CN=a8e75802e7efb8653e3af59cbf1bc06538bca671
Certificate serial: 047D779C
Authority key identifier: A8:E7:58:02:E7:EF:B8:65:3E:3A:F5:9C:BF:1B:C0:65:38:BC:A6:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qOdYAufvuGU-OvWcvxvAZTi8pnE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/6256b6-36a1-4f2f-a0b9-411f5837fefa/1/LMh798TiawXRObav2ZVuRaAohVo.roa
Signing time: Sat 01 Jan 2022 14:03:53 +0000
ROA not before: Sat 01 Jan 2022 14:03:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15704
IP address blocks: 185.111.252.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75331484 (0x47d779c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8e75802e7efb8653e3af59cbf1bc06538bca671
Validity
Not Before: Jan 1 14:03:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2cc87bf7c4e26b05d139b6afd9956e45a028855a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:7b:e7:db:2c:6c:fa:24:78:a9:cf:44:78:c7:
5a:54:f0:f0:d0:09:90:ba:f2:89:a5:c6:12:8c:b5:
17:67:6d:9e:6d:bd:ce:5a:bd:c7:1f:69:d0:f6:9b:
25:83:e7:33:cf:3e:29:5b:77:b0:3a:07:5d:0a:6c:
8c:e0:ef:43:ee:97:74:63:17:39:dd:9c:8f:20:29:
87:fe:2b:54:ea:9c:95:66:30:6e:b5:19:d5:a7:48:
b7:5e:bb:04:dd:ce:03:11:ea:4b:91:59:28:da:24:
71:5f:6d:26:f7:b7:9a:7f:6d:86:99:d4:80:c3:8a:
eb:f6:87:ed:84:38:bf:24:b2:68:04:0f:29:e9:c8:
59:00:93:54:d2:8f:9c:bc:32:24:cf:64:8d:ce:44:
6b:b4:f1:a3:3f:ec:83:54:13:92:4c:53:ba:70:75:
a1:bb:c9:6c:36:54:b2:68:8f:d4:b2:3e:11:cb:e4:
27:58:90:fa:52:ab:d6:af:52:29:79:9a:74:62:41:
19:67:7c:79:10:eb:81:8a:d4:a9:b6:9f:f4:f2:d2:
64:30:57:3f:fa:3b:4f:dc:56:78:3c:0f:4d:eb:31:
a8:72:96:fd:0e:e0:14:3f:9d:6a:f9:f9:8d:b4:b0:
34:34:df:19:68:8d:50:4e:de:a4:47:e2:0b:31:ac:
d3:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:C8:7B:F7:C4:E2:6B:05:D1:39:B6:AF:D9:95:6E:45:A0:28:85:5A
X509v3 Authority Key Identifier:
keyid:A8:E7:58:02:E7:EF:B8:65:3E:3A:F5:9C:BF:1B:C0:65:38:BC:A6:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qOdYAufvuGU-OvWcvxvAZTi8pnE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6256b6-36a1-4f2f-a0b9-411f5837fefa/1/LMh798TiawXRObav2ZVuRaAohVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6256b6-36a1-4f2f-a0b9-411f5837fefa/1/qOdYAufvuGU-OvWcvxvAZTi8pnE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.111.252.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:01:11:40:b0:3c:3e:05:26:d8:37:33:95:8d:b5:a7:3b:da:
16:c6:37:b4:d6:c1:8f:b6:f3:d0:d9:e5:c6:12:58:22:b7:e1:
e7:0a:1e:c1:f4:53:08:ea:ed:94:11:2d:31:df:c6:e3:17:b5:
87:35:4b:5d:b3:82:bc:ea:22:bc:62:da:4d:2e:e5:31:10:78:
53:06:60:ab:6d:9e:80:94:7f:88:85:ca:49:8a:5a:83:69:bb:
c3:78:72:9a:9c:3f:f2:6a:f0:eb:ed:59:71:df:bd:b3:e1:87:
fd:b9:ec:3a:5f:e1:66:8c:5e:b3:88:7d:ee:11:73:57:0d:84:
1e:b1:11:06:46:f1:4b:e6:f4:37:09:5c:ba:22:6e:97:c4:a1:
42:6f:fe:82:49:e3:7b:80:b5:8a:ca:eb:f1:37:be:6a:75:be:
31:f3:d2:96:9d:c8:25:ea:1f:12:ad:6c:fc:38:fb:80:bd:3a:
6a:f3:da:cf:65:8f:48:bc:74:ca:01:f9:55:93:e5:5d:84:aa:
77:1a:b4:c0:c1:7a:a4:10:4c:67:8c:33:ad:53:dc:00:ed:1d:
37:d6:7a:5f:9b:b0:88:e5:05:bc:65:10:2b:ee:8b:4d:a1:92:
6c:a7:8e:49:4f:db:94:43:39:de:99:82:0c:af:52:dd:4a:1f:
14:b2:3a:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:18 2024 by rpki-client on console-ams.rpki-client.org