Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/LE78kwP_L7W2u0CBZ5dgFBdtJqQ.roa
File: LE78kwP_L7W2u0CBZ5dgFBdtJqQ.roa (raw, json)
Hash identifier: QXvcUs0QMArN/7WWufcKjUotHWHjTAI7b2KIkO9DGyU=
Subject key identifier: 2C:4E:FC:93:03:FF:2F:B5:B6:BB:40:81:67:97:60:14:17:6D:26:A4
Certificate issuer: /CN=22f344a63dcb70e89057deb8e2761dc45165881a
Certificate serial: 0182631B33E8EAA129E3422A9F6E928BFEF8
Authority key identifier: 22:F3:44:A6:3D:CB:70:E8:90:57:DE:B8:E2:76:1D:C4:51:65:88:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/LE78kwP_L7W2u0CBZ5dgFBdtJqQ.roa
Signing time: Wed 03 Aug 2022 09:48:23 +0000
ROA not before: Wed 03 Aug 2022 09:48:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204197
IP address blocks: 109.238.196.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:63:1b:33:e8:ea:a1:29:e3:42:2a:9f:6e:92:8b:fe:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22f344a63dcb70e89057deb8e2761dc45165881a
Validity
Not Before: Aug 3 09:48:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c4efc9303ff2fb5b6bb408167976014176d26a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:16:90:12:46:10:4d:46:a8:df:b3:6f:58:dd:
f4:66:c8:97:35:4d:c9:8c:12:59:f6:4c:e8:dc:9c:
a4:05:a1:36:45:73:0f:65:56:67:94:3d:fe:89:05:
f4:89:de:b4:80:4a:ad:60:17:72:af:e5:73:03:d7:
1b:2a:1e:fa:8b:9b:11:bb:23:9b:99:76:bf:e5:dc:
a0:88:bd:e5:1c:b5:96:e2:48:43:a3:58:47:7e:56:
48:2d:f8:6e:26:3f:78:dd:4a:f1:4d:11:ee:bf:d2:
8a:0a:5e:02:90:07:f7:ea:f4:ac:17:fd:a8:1b:fe:
bf:4c:e2:b3:b2:ce:8b:29:5e:fe:de:d8:eb:46:69:
8d:c4:1d:6b:40:67:ec:ac:d7:6a:86:65:03:78:6b:
20:9b:32:7b:c8:3a:40:e8:73:62:24:51:1b:e9:b3:
fa:d4:62:8b:e1:3b:da:97:3d:3f:70:8a:75:d6:33:
b2:3e:60:86:7f:23:dd:a8:85:be:09:6d:2b:15:c1:
2e:95:0d:79:5e:a6:63:e3:5c:36:f1:57:66:c6:4d:
ba:32:fd:2f:fe:f0:80:b2:99:1f:87:b8:5d:2e:af:
26:54:97:a4:25:eb:86:ac:44:b8:01:5c:58:27:39:
08:56:64:20:40:59:10:30:f3:4d:3d:8f:96:b7:07:
cc:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:4E:FC:93:03:FF:2F:B5:B6:BB:40:81:67:97:60:14:17:6D:26:A4
X509v3 Authority Key Identifier:
keyid:22:F3:44:A6:3D:CB:70:E8:90:57:DE:B8:E2:76:1D:C4:51:65:88:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/LE78kwP_L7W2u0CBZ5dgFBdtJqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/IvNEpj3LcOiQV9644nYdxFFliBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.238.196.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:4c:5a:3d:80:31:74:78:c7:4d:af:90:dc:53:d3:39:24:16:
4d:79:de:49:ee:30:4d:77:ef:ed:42:de:e5:70:26:b6:06:4f:
c3:6f:ec:a5:dc:54:55:44:7b:40:04:d0:ff:5a:e1:a4:6b:95:
d9:90:86:68:28:39:64:d6:da:36:7d:bd:5e:cc:52:14:dd:86:
50:3a:cc:cc:88:fc:48:b9:54:61:0a:27:81:b7:24:4a:d6:09:
cc:4c:bd:a7:c3:0a:5a:0a:46:2a:2d:55:9c:5d:98:33:56:e8:
de:84:e4:2d:f1:d5:c2:fe:14:a5:37:42:7e:ee:46:8a:d8:31:
34:3d:c1:8e:c0:94:eb:89:e2:99:29:a9:a5:3b:27:b1:00:fb:
cc:b4:a4:7e:fc:43:9f:d8:1a:f3:d1:90:e4:5d:c9:6f:c0:bb:
7a:7f:27:df:e8:71:f6:5d:99:4d:67:68:39:35:37:87:4d:24:
de:f1:8e:6c:a2:71:52:3f:bc:2d:52:aa:9f:4c:99:26:75:33:
eb:3d:b6:da:0c:0c:9f:1b:a5:54:af:d8:b9:85:7e:0f:71:37:
ff:74:47:3b:29:50:af:cd:cc:9e:24:16:57:50:61:9f:e2:30:
c9:d8:5b:5c:69:20:e2:83:c2:fb:9e:c1:88:67:8f:c3:59:1f:
68:b6:81:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:38 2023 by rpki-client on console-fra.rpki-client.org