Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/1d29a0-da4b-41a1-b564-49cc67ba1b63/1/Lgh_eS4IggStDDxOewRPSzB2RcU.roa
File: Lgh_eS4IggStDDxOewRPSzB2RcU.roa (raw, json)
Hash identifier: sZTebN4XXh5h86tlE2a2DYD6tUVC5eOVCTfYXwIPhpg=
Subject key identifier: 2E:08:7F:79:2E:08:82:04:AD:0C:3C:4E:7B:04:4F:4B:30:76:45:C5
Certificate issuer: /CN=e8022432529c8c3cc6ab710244e5f035203e70a1
Certificate serial: 011EA674
Authority key identifier: E8:02:24:32:52:9C:8C:3C:C6:AB:71:02:44:E5:F0:35:20:3E:70:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6AIkMlKcjDzGq3ECROXwNSA-cKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/1d29a0-da4b-41a1-b564-49cc67ba1b63/1/Lgh_eS4IggStDDxOewRPSzB2RcU.roa
Signing time: Sat 01 Jan 2022 13:00:53 +0000
ROA not before: Sat 01 Jan 2022 13:00:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30823
IP address blocks: 91.190.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18785908 (0x11ea674)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8022432529c8c3cc6ab710244e5f035203e70a1
Validity
Not Before: Jan 1 13:00:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e087f792e088204ad0c3c4e7b044f4b307645c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f2:b9:28:b9:23:26:9c:cf:dd:d5:a5:e3:a6:
32:75:b5:6f:48:d9:da:b7:d5:ec:e4:ba:39:3b:44:
97:19:ea:60:9b:6c:cd:35:8b:49:cc:1a:ec:5e:9e:
c3:95:e3:2d:14:2d:23:ca:12:a0:da:2e:a8:e3:99:
13:6c:38:23:d8:43:85:9a:12:db:b1:33:48:b8:e1:
bc:d5:b6:9d:c8:87:a4:a8:c1:3b:39:52:52:2e:52:
e2:74:c8:e5:69:a1:ce:e8:44:0c:fa:e6:72:16:62:
53:3b:84:6c:95:84:72:3f:4a:bb:c7:72:d4:a9:68:
6e:57:9d:8b:37:45:e9:a6:50:47:e7:6b:c2:90:42:
17:ef:b3:15:de:7a:c8:fd:f5:ff:b0:78:ea:12:cd:
ee:1b:cd:b4:18:d1:ab:c9:71:06:9f:34:08:d1:9d:
22:70:08:ab:21:0f:18:8d:f6:17:01:42:10:7a:0b:
01:61:5e:32:b3:3b:56:61:68:83:15:4e:de:d7:40:
80:c5:47:d2:1c:61:14:9f:bd:93:bf:85:95:a7:5d:
94:9d:a6:f1:b0:05:da:ba:70:95:cc:13:2e:4d:3d:
29:12:d9:fd:77:fd:59:5b:e5:a4:0b:24:b5:1a:93:
63:b2:e2:0c:4e:17:31:e4:d2:92:1c:f9:4b:7f:3d:
e4:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:08:7F:79:2E:08:82:04:AD:0C:3C:4E:7B:04:4F:4B:30:76:45:C5
X509v3 Authority Key Identifier:
keyid:E8:02:24:32:52:9C:8C:3C:C6:AB:71:02:44:E5:F0:35:20:3E:70:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6AIkMlKcjDzGq3ECROXwNSA-cKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1d29a0-da4b-41a1-b564-49cc67ba1b63/1/Lgh_eS4IggStDDxOewRPSzB2RcU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1d29a0-da4b-41a1-b564-49cc67ba1b63/1/6AIkMlKcjDzGq3ECROXwNSA-cKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.190.154.0/24
Signature Algorithm: sha256WithRSAEncryption
94:69:69:61:18:1d:fc:d6:f4:1e:b1:a3:6b:7f:d6:97:dc:f3:
ce:40:16:3a:ac:1f:8c:d2:fd:1f:2a:96:56:12:15:c9:1a:57:
01:2c:46:e6:36:ca:80:e2:16:d2:85:8f:a7:f4:86:e1:78:31:
35:b4:df:0c:60:3c:d5:36:0f:99:8b:6b:78:4d:2f:4c:f7:e2:
59:9e:1c:8e:3b:29:82:f6:47:e7:90:8c:9d:34:91:68:2a:44:
c2:0b:4b:1a:2b:4c:18:85:31:53:c7:2c:e5:b2:87:8f:f7:5e:
23:b8:66:d1:bc:de:71:1a:4b:d0:e2:1d:f5:8c:83:41:f5:d3:
9d:63:a9:21:a1:5a:be:b0:4f:84:8d:b3:df:3b:9e:b2:23:a1:
77:fc:8a:5e:fe:ea:76:76:9e:89:ca:76:a8:6f:f4:45:b8:82:
3f:2b:b8:e7:a3:4f:bb:d3:86:05:17:d6:c1:f4:16:67:73:2d:
51:eb:f3:57:d3:86:c5:9d:2a:ae:37:53:4d:d4:65:82:cc:d5:
fd:ad:89:99:c9:73:fb:8b:6e:fe:bb:c5:34:8c:f2:7e:9c:04:
4d:02:d5:07:b1:7d:cf:e7:51:28:85:05:11:80:33:fd:60:ba:
b5:6a:82:c9:4e:f6:06:1a:95:46:48:1d:76:48:71:98:8d:96:
95:3e:b3:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:44 2023 by rpki-client on console-ams.rpki-client.org