Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/9268bf-25e9-4c38-baf7-e47ebee2c020/1/lbyjLAnKt_wOaYxy88pSuD5kj_U.roa
File: lbyjLAnKt_wOaYxy88pSuD5kj_U.roa (raw, json)
Hash identifier: nPtpwP2I28UJTmPjV50yCScNMFw2KbnlMn2fzYynevY=
Subject key identifier: 95:BC:A3:2C:09:CA:B7:FC:0E:69:8C:72:F3:CA:52:B8:3E:64:8F:F5
Certificate issuer: /CN=ed457f969c0fec35b926d0f72a47dd44b8b300f5
Certificate serial: 06C1F298
Authority key identifier: ED:45:7F:96:9C:0F:EC:35:B9:26:D0:F7:2A:47:DD:44:B8:B3:00:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7UV_lpwP7DW5JtD3KkfdRLizAPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/9268bf-25e9-4c38-baf7-e47ebee2c020/1/lbyjLAnKt_wOaYxy88pSuD5kj_U.roa
Signing time: Sat 01 Jan 2022 01:59:30 +0000
ROA not before: Sat 01 Jan 2022 01:59:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34798
IP address blocks: 193.22.104.0/23 maxlen: 32
193.19.120.0/23 maxlen: 32
2a0f:c640::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113373848 (0x6c1f298)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed457f969c0fec35b926d0f72a47dd44b8b300f5
Validity
Not Before: Jan 1 01:59:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95bca32c09cab7fc0e698c72f3ca52b83e648ff5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:69:4c:ad:f9:80:06:37:a0:e0:3e:5c:19:30:
ce:05:72:e6:d1:1c:9d:8c:53:38:cb:23:9d:eb:34:
8a:2d:88:28:5b:9c:b2:95:52:84:e5:a5:8d:14:7f:
e8:35:7a:ce:42:93:08:3c:1a:0b:1a:f1:f4:c1:7d:
5b:48:4e:48:30:4d:e1:6c:6a:d5:80:db:3f:b2:c3:
6b:5d:13:dc:d6:5f:91:51:66:5d:14:03:91:43:a6:
95:20:d4:18:e3:6c:9e:81:00:ed:d7:d9:f7:82:f7:
31:26:5f:c5:36:3e:2e:f9:70:a2:5c:a8:79:77:48:
bd:2d:be:ec:46:50:42:9b:20:5b:fb:65:f8:1c:3d:
25:0d:55:39:c7:e0:5d:87:59:e6:e6:69:60:e4:e2:
49:d0:73:bf:49:e5:52:a3:98:94:72:4c:44:8b:2f:
85:1e:21:38:08:9a:14:12:65:dc:49:12:cf:8a:57:
3b:99:99:0d:7c:b3:04:2e:c6:65:65:c3:0b:38:e2:
b6:42:64:e3:7f:a8:ac:48:73:96:a5:26:11:61:f0:
de:fd:58:70:c9:35:4b:21:c6:34:1b:2f:9b:3b:94:
ef:a4:a5:19:c3:fc:56:66:c1:9c:fd:b9:91:99:12:
64:94:30:2a:07:1e:fd:6f:46:35:80:2f:4c:aa:df:
f0:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:BC:A3:2C:09:CA:B7:FC:0E:69:8C:72:F3:CA:52:B8:3E:64:8F:F5
X509v3 Authority Key Identifier:
keyid:ED:45:7F:96:9C:0F:EC:35:B9:26:D0:F7:2A:47:DD:44:B8:B3:00:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7UV_lpwP7DW5JtD3KkfdRLizAPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/9268bf-25e9-4c38-baf7-e47ebee2c020/1/lbyjLAnKt_wOaYxy88pSuD5kj_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/9268bf-25e9-4c38-baf7-e47ebee2c020/1/7UV_lpwP7DW5JtD3KkfdRLizAPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.19.120.0/23
193.22.104.0/23
IPv6:
2a0f:c640::/48
Signature Algorithm: sha256WithRSAEncryption
51:7e:87:e7:c7:ba:ec:8f:a9:30:9e:16:e3:4a:2f:c8:f7:08:
a5:5f:41:41:e2:42:e2:49:f4:24:df:7d:68:18:1a:2c:b7:75:
8b:0b:01:d7:80:64:b2:06:37:ae:17:96:fb:b7:bb:eb:95:54:
11:c9:0d:af:79:44:d1:b7:c7:b2:7b:4c:af:ef:09:4d:45:10:
da:66:92:ac:37:1d:b8:80:e0:49:fb:99:32:48:cf:8c:f1:18:
84:91:cc:58:21:43:ed:6d:a1:42:41:fd:01:66:9d:70:4a:6c:
2e:dd:21:20:d5:e7:03:45:75:eb:4f:0a:b7:14:99:89:23:d6:
83:22:0b:df:a3:39:b1:3a:29:39:31:61:4a:5d:a7:16:bd:c2:
14:13:35:4e:d8:14:bb:2e:59:ca:df:79:8f:28:29:36:0d:ed:
45:0d:a1:7f:e3:04:56:ff:6d:c5:a6:45:53:2c:af:4f:a5:df:
48:e2:70:30:12:b3:86:17:d6:18:db:b4:25:a5:ae:fc:ea:4b:
00:86:f4:0e:1c:23:75:8b:70:48:07:f8:7c:0e:ce:3e:2e:29:
2e:3e:d4:db:f9:dc:97:c5:ad:c2:c4:7a:3e:46:af:01:0f:bf:
80:18:b3:26:26:7d:90:9d:44:11:36:55:8d:14:4b:f9:e7:ff:
8f:ad:fc:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:48 2023 by rpki-client on console-fra.rpki-client.org