Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/a00c46-8031-411f-8503-a0f2591dd2bd/1/2LLGL8BiO8T6svs2tsd_EIuD8s0.roa
File: 2LLGL8BiO8T6svs2tsd_EIuD8s0.roa (raw, json)
Hash identifier: +0MFvAqbqQA7bNPAo+ybrVaWvnxhWB5lOByjCyx84zU=
Subject key identifier: D8:B2:C6:2F:C0:62:3B:C4:FA:B2:FB:36:B6:C7:7F:10:8B:83:F2:CD
Certificate issuer: /CN=df62bbf15de344acdb5f7800450f2c82d797d798
Certificate serial: 04F2BE
Authority key identifier: DF:62:BB:F1:5D:E3:44:AC:DB:5F:78:00:45:0F:2C:82:D7:97:D7:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/32K78V3jRKzbX3gARQ8sgteX15g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/a00c46-8031-411f-8503-a0f2591dd2bd/1/2LLGL8BiO8T6svs2tsd_EIuD8s0.roa
Signing time: Wed 25 May 2022 23:01:14 +0000
ROA not before: Wed 25 May 2022 23:01:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60155
IP address blocks: 185.55.200.0/22 maxlen: 24
2a04:d640::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 324286 (0x4f2be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df62bbf15de344acdb5f7800450f2c82d797d798
Validity
Not Before: May 25 23:01:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d8b2c62fc0623bc4fab2fb36b6c77f108b83f2cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:01:3c:d9:0a:eb:db:b7:07:d6:04:9c:83:4c:
8c:5f:da:ef:52:70:f6:f6:d1:53:2b:24:f6:f5:4b:
d1:66:6b:24:21:c1:82:7b:2d:47:69:7d:8b:f7:c6:
20:75:99:c0:a3:fc:43:90:17:dc:65:f5:80:9d:96:
30:cf:e7:d5:5e:f1:3b:4b:7d:c3:51:1d:87:d0:13:
0d:a9:4e:0d:1c:6c:91:a2:74:ef:25:35:09:e9:d8:
4a:7f:5b:59:8d:c2:94:2c:23:73:c1:fe:21:46:2b:
9e:01:bc:34:05:5b:82:d2:2a:22:2c:1c:3e:49:e4:
fb:ca:0e:d4:3b:28:66:4d:b6:9e:48:de:fd:4d:bd:
88:c5:10:8a:d9:14:47:87:b4:67:57:64:85:c4:60:
e0:21:ef:4c:ca:bc:7e:de:63:a8:c6:29:38:dd:fe:
0c:6a:8e:b9:7d:3d:88:43:ad:6e:a3:42:dc:64:07:
f3:1c:24:b2:e9:cd:40:89:d1:6f:22:51:51:51:da:
52:b0:6a:56:b3:e5:8e:92:f3:98:40:08:6e:bf:1d:
48:49:2b:f9:5d:e6:42:4d:c7:e3:af:6d:dd:41:0c:
41:21:e6:51:19:cf:47:fa:6f:3d:e7:cd:fa:03:0b:
f0:83:83:c8:0f:a0:b3:9b:1f:74:30:48:bf:38:b4:
0e:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:B2:C6:2F:C0:62:3B:C4:FA:B2:FB:36:B6:C7:7F:10:8B:83:F2:CD
X509v3 Authority Key Identifier:
keyid:DF:62:BB:F1:5D:E3:44:AC:DB:5F:78:00:45:0F:2C:82:D7:97:D7:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/32K78V3jRKzbX3gARQ8sgteX15g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/a00c46-8031-411f-8503-a0f2591dd2bd/1/2LLGL8BiO8T6svs2tsd_EIuD8s0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/a00c46-8031-411f-8503-a0f2591dd2bd/1/32K78V3jRKzbX3gARQ8sgteX15g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.55.200.0/22
IPv6:
2a04:d640::/29
Signature Algorithm: sha256WithRSAEncryption
2e:c4:16:aa:e4:d3:58:79:c2:cb:69:65:46:8d:bd:e3:32:c3:
62:37:31:b5:a6:8a:6d:84:9e:47:10:39:ea:73:56:f2:b4:dd:
a6:52:e1:62:6b:b5:9a:a6:d3:88:6a:a1:74:90:78:96:2f:f6:
72:1a:ab:9a:2f:00:4d:92:4b:49:94:9a:74:b0:22:cf:c9:d1:
f6:33:dd:d1:57:82:2c:cb:35:ab:ea:78:18:06:f0:7c:c1:f4:
49:b7:19:1d:8b:b5:9d:b8:68:3c:73:8f:5c:98:4d:ba:60:0a:
7d:5c:dd:18:0f:05:35:46:df:ab:de:62:c5:ab:90:6e:80:83:
d7:aa:e8:95:c7:e5:e4:23:04:96:cb:ac:82:95:73:59:e7:38:
bc:9a:f9:d5:b3:dc:2c:84:a0:61:4c:81:d4:9c:8b:20:da:fb:
3f:71:93:b3:e9:5a:d4:0f:ad:99:6f:76:26:4e:44:06:42:15:
21:66:7f:df:02:24:c2:48:db:d7:d0:c0:6c:2e:68:85:85:f6:
db:f0:25:ca:cc:e6:81:f0:6c:f4:4b:05:d9:30:63:b3:82:09:
b6:ad:cb:7b:b2:6e:10:13:9f:a9:1c:a2:1d:1b:30:55:11:75:
52:a2:19:ee:69:8c:01:46:15:34:47:3e:46:96:33:a1:5b:7a:
ab:6d:66:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:47 2023 by rpki-client on console-ams.rpki-client.org