Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/e23969-ffb0-4e57-a36a-760f6b6aabc1/1/LC1s-Aj8mCPbKEnjU0U9UQ3QlN8.roa
File: LC1s-Aj8mCPbKEnjU0U9UQ3QlN8.roa (raw, json)
Hash identifier: YEgcYE+69im5dvZDfJAXV/5mekaFrYSC4UBjWfUYkIo=
Subject key identifier: 2C:2D:6C:F8:08:FC:98:23:DB:28:49:E3:53:45:3D:51:0D:D0:94:DF
Certificate issuer: /CN=1d10e38ed55e3185aed6f079f8bb9bf12d4448db
Certificate serial: F041D9
Authority key identifier: 1D:10:E3:8E:D5:5E:31:85:AE:D6:F0:79:F8:BB:9B:F1:2D:44:48:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HRDjjtVeMYWu1vB5-Lub8S1ESNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/e23969-ffb0-4e57-a36a-760f6b6aabc1/1/LC1s-Aj8mCPbKEnjU0U9UQ3QlN8.roa
Signing time: Sat 01 Jan 2022 13:05:57 +0000
ROA not before: Sat 01 Jan 2022 13:05:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64443
IP address blocks: 185.164.107.0/24 maxlen: 24
185.164.104.0/24 maxlen: 24
185.164.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15745497 (0xf041d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d10e38ed55e3185aed6f079f8bb9bf12d4448db
Validity
Not Before: Jan 1 13:05:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c2d6cf808fc9823db2849e353453d510dd094df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:09:38:fd:53:85:d9:25:39:39:7d:f5:f2:fe:
32:3c:5d:7f:f6:a1:04:c9:c2:8b:e6:9f:c6:b2:56:
cb:64:14:32:31:65:6a:4c:01:86:d0:94:a3:6b:a4:
b1:38:c2:bb:e9:07:97:c9:2b:d4:fa:0e:8f:c9:5d:
32:6c:0e:0d:06:ff:3f:43:23:f7:40:6a:84:01:2b:
6a:b9:36:3a:66:9b:14:39:d7:a7:36:e8:a8:17:4b:
61:fb:bf:d1:b2:8e:62:cc:fb:a2:9c:12:19:32:c9:
21:24:86:cd:d2:13:9b:1d:2d:53:cb:b0:1b:d5:e7:
e6:79:7e:ed:ba:eb:ab:51:1e:0e:eb:12:08:c5:05:
2e:89:eb:ac:59:2c:51:b7:85:f4:2d:50:e6:b9:75:
a6:86:20:96:4e:e5:49:b9:21:c0:67:09:fa:96:30:
5d:a5:29:ef:43:1f:82:88:29:c8:5d:d1:ac:c9:97:
97:be:b7:b8:a9:a8:88:83:b3:07:d7:2a:e5:ac:4e:
ac:56:28:6e:1d:49:86:35:3a:41:f6:f8:99:e2:44:
d2:f2:10:b7:74:9a:80:66:00:6f:0e:fe:79:3c:e4:
66:92:ca:92:56:ff:c5:0d:1c:22:0e:4d:12:f1:7b:
66:0f:6f:94:14:c9:ff:72:f5:64:0e:6d:cf:d9:55:
8b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:2D:6C:F8:08:FC:98:23:DB:28:49:E3:53:45:3D:51:0D:D0:94:DF
X509v3 Authority Key Identifier:
keyid:1D:10:E3:8E:D5:5E:31:85:AE:D6:F0:79:F8:BB:9B:F1:2D:44:48:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HRDjjtVeMYWu1vB5-Lub8S1ESNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/e23969-ffb0-4e57-a36a-760f6b6aabc1/1/LC1s-Aj8mCPbKEnjU0U9UQ3QlN8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/e23969-ffb0-4e57-a36a-760f6b6aabc1/1/HRDjjtVeMYWu1vB5-Lub8S1ESNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.164.104.0/23
185.164.107.0/24
Signature Algorithm: sha256WithRSAEncryption
76:9f:a2:95:39:d3:d4:5d:3d:1d:af:54:1d:7d:62:7a:72:cb:
31:2d:f3:8b:9d:af:1c:31:7f:38:27:94:2e:4b:52:e2:fa:48:
86:c7:93:a0:df:7d:be:d8:90:d9:ef:d9:66:48:7a:77:02:f6:
04:b3:98:6c:88:cd:ed:64:54:1e:46:b5:56:95:8b:49:1d:61:
4e:33:64:b6:46:a7:0b:79:8f:96:e0:01:e6:85:d7:df:12:b6:
34:3a:c5:5c:1e:c4:18:fb:0e:e1:ec:40:8b:aa:81:e6:db:24:
d3:e3:a2:13:b3:4d:aa:64:3a:e8:4a:e5:4f:69:79:81:13:ae:
19:45:8e:bc:6f:c4:8b:dd:c1:aa:d2:04:01:58:76:a3:f0:3c:
7e:c4:db:e6:b2:dc:ec:4f:d0:18:65:5e:93:99:a2:bb:15:4a:
48:e6:5f:db:fe:16:a7:1c:8b:5e:74:dd:5e:5f:9f:8d:0b:4a:
ce:33:a8:d5:bd:5f:27:4a:dc:89:8b:22:86:f0:08:b6:4d:bf:
27:96:12:fc:da:83:b7:6a:6f:39:f6:b4:dd:c8:53:6e:50:10:
7e:74:42:c2:e4:44:34:9b:0f:d5:ce:83:5d:66:90:56:fc:a7:
87:39:88:5d:e9:66:de:bb:1d:1b:34:f4:46:7b:02:30:6f:e3:
60:08:44:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:19 2023 by rpki-client on console-ams.rpki-client.org