Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/LbpM_2__RnrtFvKld9xa4gQk-I4.roa
File: LbpM_2__RnrtFvKld9xa4gQk-I4.roa (raw, json)
Hash identifier: lOef38rwtL3eyvJvjb4pTEn9uQdey0qGWdjzcWBgEo4=
Subject key identifier: 2D:BA:4C:FF:6F:FF:46:7A:ED:16:F2:A5:77:DC:5A:E2:04:24:F8:8E
Certificate issuer: /CN=c42708df93954aac601aef1835bd5d69245fb02f
Certificate serial: 42D06DE2
Authority key identifier: C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/LbpM_2__RnrtFvKld9xa4gQk-I4.roa
Signing time: Mon 04 Apr 2022 10:05:57 +0000
ROA not before: Mon 04 Apr 2022 10:05:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 81.88.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1120955874 (0x42d06de2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c42708df93954aac601aef1835bd5d69245fb02f
Validity
Not Before: Apr 4 10:05:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2dba4cff6fff467aed16f2a577dc5ae20424f88e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ad:fb:c2:71:09:5c:a7:ee:e1:82:a3:2b:70:
a0:27:76:26:ba:ad:e7:86:6d:39:bf:61:d5:5f:6f:
ea:fc:88:d4:32:f0:3c:14:e6:9d:67:62:be:bd:13:
b4:a2:30:db:d2:85:05:e3:51:ef:48:66:30:76:b3:
bb:1f:af:71:c4:a0:60:56:af:73:86:69:a4:b9:03:
f2:21:39:7d:6b:cb:25:49:6a:63:5f:cf:e8:4d:2e:
0d:72:12:d0:46:15:a7:14:7f:d7:18:69:f2:d4:98:
01:00:da:88:88:09:34:f8:c0:45:aa:fc:ab:c5:e2:
bf:d7:0d:7f:44:c5:77:ac:88:7e:f3:42:46:f5:02:
e9:56:9c:de:fe:ad:06:cc:06:32:97:8f:e2:ea:0c:
e0:88:3e:1c:59:bb:6c:05:4b:59:f9:ec:fa:45:5f:
77:1d:50:11:9d:15:1e:a8:ae:9d:88:44:87:f8:ec:
e3:88:a9:f8:a0:9d:f5:58:de:30:a0:73:72:3c:c0:
6e:be:3f:44:85:3b:2c:f2:8c:16:d6:fa:84:63:a8:
67:84:77:91:53:58:b5:e7:48:f6:f3:90:7c:1a:7d:
e5:97:f6:5c:db:d7:c3:09:c9:76:23:7a:09:89:29:
cf:56:47:9e:53:01:15:cf:31:50:03:0d:42:bf:04:
a7:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:BA:4C:FF:6F:FF:46:7A:ED:16:F2:A5:77:DC:5A:E2:04:24:F8:8E
X509v3 Authority Key Identifier:
keyid:C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/LbpM_2__RnrtFvKld9xa4gQk-I4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/xCcI35OVSqxgGu8YNb1daSRfsC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.88.21.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:32:b7:7d:98:e8:20:a3:c0:68:4b:86:79:8e:39:92:c9:ef:
4d:0a:d3:8c:53:60:50:20:66:21:c2:9c:ce:0e:7a:2a:96:df:
87:af:29:6b:f9:cd:c5:56:6a:d9:0f:bc:92:97:e1:a0:b5:52:
31:15:61:e2:f3:fc:a5:ec:ec:65:57:4d:ae:ba:8c:8a:6a:c3:
57:a4:88:64:94:8d:19:55:b7:60:c8:14:9c:16:cf:81:1a:e8:
83:80:94:0a:e0:89:fe:58:95:41:a3:e3:93:d0:31:9f:a0:fc:
18:ab:93:be:fb:83:a8:6e:b0:97:ef:f8:f7:9d:36:f6:4d:21:
00:8e:d6:d1:67:c2:e9:b3:49:61:a5:4a:a9:36:8b:14:88:9c:
b8:c3:fc:bb:99:cd:26:99:48:74:e3:42:07:55:83:86:12:47:
16:88:c2:24:bc:c7:34:7f:82:29:c3:5b:0a:8e:ca:69:a3:3c:
d2:95:c3:77:c7:26:da:0c:e7:0d:58:57:a3:1c:cf:cd:0c:0e:
54:b3:57:6c:aa:1d:ef:48:30:4a:57:f9:0c:2b:b2:df:a2:58:
87:b2:9c:f6:fb:62:60:66:cd:16:c2:91:93:ae:ca:2b:5f:5c:
14:75:ad:2a:8f:73:3e:b6:10:ad:00:2b:d3:2d:fd:4a:65:55:
b6:4c:86:de
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEQtBt4jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NDI3MDhkZjkzOTU0YWFjNjAxYWVmMTgzNWJkNWQ2OTI0NWZiMDJmMB4XDTIyMDQw
NDEwMDU1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmRiYTRjZmY2ZmZm
NDY3YWVkMTZmMmE1NzdkYzVhZTIwNDI0Zjg4ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM2t+8JxCVyn7uGCoytwoCd2Jrqt54ZtOb9h1V9v6vyI1DLw
PBTmnWdivr0TtKIw29KFBeNR70hmMHazux+vccSgYFavc4ZppLkD8iE5fWvLJUlq
Y1/P6E0uDXIS0EYVpxR/1xhp8tSYAQDaiIgJNPjARar8q8Xiv9cNf0TFd6yIfvNC
RvUC6Vac3v6tBswGMpeP4uoM4Ig+HFm7bAVLWfns+kVfdx1QEZ0VHqiunYhEh/js
44ip+KCd9VjeMKBzcjzAbr4/RIU7LPKMFtb6hGOoZ4R3kVNYtedI9vOQfBp95Zf2
XNvXwwnJdiN6CYkpz1ZHnlMBFc8xUAMNQr8Ep50CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQtukz/b/9Geu0W8qV33FriBCT4jjAfBgNVHSMEGDAWgBTEJwjfk5VKrGAa
7xg1vV1pJF+wLzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hDY0kzNU9WU3F4Z0d1OFlOYjFkYVNSZnNDOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjQvZjYxN2E1LTMyNDAtNDhjNC1iNzE2LTc0MWMxZDhkZWEyYi8x
L0xicE1fMl9fUm5ydEZ2S2xkOXhhNGdRay1JNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjQv
ZjYxN2E1LTMyNDAtNDhjNC1iNzE2LTc0MWMxZDhkZWEyYi8xL3hDY0kzNU9WU3F4
Z0d1OFlOYjFkYVNSZnNDOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFFYFTANBgkqhkiG9w0BAQsFAAOC
AQEAbDK3fZjoIKPAaEuGeY45ksnvTQrTjFNgUCBmIcKczg56Kpbfh68pa/nNxVZq
2Q+8kpfhoLVSMRVh4vP8pezsZVdNrrqMimrDV6SIZJSNGVW3YMgUnBbPgRrog4CU
CuCJ/liVQaPjk9Axn6D8GKuTvvuDqG6wl+/495029k0hAI7W0WfC6bNJYaVKqTaL
FIicuMP8u5nNJplIdONCB1WDhhJHFojCJLzHNH+CKcNbCo7KaaM80pXDd8cm2gzn
DVhXoxzPzQwOVLNXbKod70gwSlf5DCuy36JYh7Kc9vtiYGbNFsKRk67KK19cFHWt
Ko9zPrYQrQAr0y39SmVVtkyG3g==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:29 2023 by rpki-client on console-ams.rpki-client.org