Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/lvKAFPt8XcVeuzw7fNoU9a3dA-g.roa
File: lvKAFPt8XcVeuzw7fNoU9a3dA-g.roa (raw, json)
Hash identifier: mjyvtITZIE23pLWvl1fVacvl686ZZ8zh+80XiQXiJ48=
Subject key identifier: 96:F2:80:14:FB:7C:5D:C5:5E:BB:3C:3B:7C:DA:14:F5:AD:DD:03:E8
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 03472E6C
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/lvKAFPt8XcVeuzw7fNoU9a3dA-g.roa
Signing time: Sat 01 Jan 2022 16:04:39 +0000
ROA not before: Sat 01 Jan 2022 16:04:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209962
IP address blocks: 194.36.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54996588 (0x3472e6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=96f28014fb7c5dc55ebb3c3b7cda14f5addd03e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8f:50:aa:cf:56:41:68:94:30:82:84:1d:0d:
44:3c:f5:43:00:9b:82:61:29:d0:e1:85:0b:14:b4:
ac:2a:e6:86:6c:1b:77:e9:fe:35:ad:f8:88:34:4f:
29:a9:ed:ff:b3:c8:81:69:e2:bd:95:ff:44:28:d5:
81:17:cf:d8:1e:57:90:dc:69:74:c6:15:81:03:92:
f1:6c:52:ae:47:cc:c3:88:a6:6b:86:e2:88:58:19:
26:40:56:14:a3:0b:88:c3:e0:e3:8c:8d:03:4d:52:
65:44:11:f6:64:25:1b:bd:af:6f:84:42:6d:ff:a0:
9f:6a:ac:52:63:c9:89:f5:ce:ef:6e:69:1c:ac:b9:
e7:9a:4a:ba:66:9a:9a:ea:c7:e3:71:15:ac:56:14:
28:84:84:6a:53:71:91:42:f0:fa:76:8d:e9:2c:77:
dd:61:53:73:99:93:7d:d1:57:c1:23:f5:61:ca:e7:
9b:27:b9:07:cc:a1:3f:24:56:30:ca:3b:fd:39:7f:
e2:bd:a2:4e:96:a2:12:03:16:19:97:ef:d7:62:c5:
b8:1d:14:2e:ee:90:4d:ac:19:e8:dc:af:85:d3:4b:
2f:cb:24:1d:0c:5d:3d:6c:7c:be:87:9f:95:c2:75:
b8:e7:44:20:1b:70:e7:34:93:2e:77:ca:50:2a:5d:
25:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:F2:80:14:FB:7C:5D:C5:5E:BB:3C:3B:7C:DA:14:F5:AD:DD:03:E8
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/lvKAFPt8XcVeuzw7fNoU9a3dA-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.36.176.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:c6:7a:72:a2:1d:21:f1:4c:77:40:e5:d8:a6:71:f1:8b:36:
88:98:6f:1c:da:7f:d8:8c:44:7a:f0:e6:59:e8:62:dc:5c:31:
6d:a9:47:f1:b7:f9:e1:19:39:37:7c:88:3b:5e:ce:24:59:19:
55:c5:32:c0:b8:02:88:7b:47:02:f1:f2:ee:d2:34:1d:40:26:
05:73:76:9c:d5:85:6e:9d:90:fe:13:15:94:24:74:78:ea:48:
9a:32:df:8f:4e:18:24:4c:7f:b2:99:be:81:79:40:c3:cc:3e:
ef:4c:b7:84:01:9e:ee:3b:3c:7e:07:4c:28:dd:ea:6c:3e:4a:
0a:cf:79:8e:c0:bb:50:f2:22:bc:5f:17:c5:58:df:74:49:ac:
7d:6b:6c:be:98:8e:dd:ab:de:cb:b5:8d:7b:91:64:69:66:1a:
8b:03:19:7b:e4:7f:11:0e:d2:f5:f3:ee:1b:b9:89:9b:10:e1:
95:27:fe:cf:b4:79:bd:69:38:40:ca:f6:c3:e5:14:09:e7:7b:
2a:76:53:36:a1:12:6f:00:b1:3e:98:ae:31:40:4e:c0:f5:ef:
4d:71:9f:fa:ac:1f:ea:5f:04:86:54:eb:5d:49:2f:1b:b0:63:
aa:98:bf:95:94:fb:c7:10:cd:88:c5:47:71:7a:dc:eb:94:fc:
7f:da:d3:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:11 2024 by rpki-client on console-ams.rpki-client.org