Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/487c15-6f6f-407f-949f-a8e4e71bee51/1/LFEEYKzdmWKz6DvH4vX_uPgIGWU.roa
File: LFEEYKzdmWKz6DvH4vX_uPgIGWU.roa (raw, json)
Hash identifier: DEEEcfbF3WtnebtMb6HgkYX5DpkfOf+npsIelQllxlU=
Subject key identifier: 2C:51:04:60:AC:DD:99:62:B3:E8:3B:C7:E2:F5:FF:B8:F8:08:19:65
Certificate issuer: /CN=42c4c90ed16aa20e49178420bfc84a883c12ac68
Certificate serial: 0185442DAA882C9C92A9F034FC41BE0CBD8C
Authority key identifier: 42:C4:C9:0E:D1:6A:A2:0E:49:17:84:20:BF:C8:4A:88:3C:12:AC:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QsTJDtFqog5JF4Qgv8hKiDwSrGg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/487c15-6f6f-407f-949f-a8e4e71bee51/1/LFEEYKzdmWKz6DvH4vX_uPgIGWU.roa
Signing time: Sat 24 Dec 2022 12:48:41 +0000
ROA not before: Sat 24 Dec 2022 12:48:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212388
IP address blocks: 185.206.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:44:2d:aa:88:2c:9c:92:a9:f0:34:fc:41:be:0c:bd:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42c4c90ed16aa20e49178420bfc84a883c12ac68
Validity
Not Before: Dec 24 12:48:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c510460acdd9962b3e83bc7e2f5ffb8f8081965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:56:50:b1:a3:55:ae:61:9d:9f:c1:3b:e8:21:
03:57:10:0f:dc:b6:d3:07:6f:3b:56:29:23:f1:66:
70:13:20:d5:fc:b3:e6:2f:9c:5e:c3:6c:62:6b:55:
1d:b4:56:72:b7:c6:0e:3b:6d:12:a2:14:5e:3c:c6:
01:6e:59:79:6b:f5:68:8d:08:d4:d7:6d:c0:b7:33:
44:a4:86:95:c2:fd:ae:a3:9e:a9:cf:80:fd:5d:11:
e4:c5:be:64:2f:e1:90:e2:51:0f:78:d2:4a:3f:7c:
c6:82:1b:3e:df:d3:53:fd:3a:e5:f9:a4:e6:66:ee:
5d:66:f0:93:07:a5:a0:b5:0e:73:78:09:98:08:25:
e1:3e:c3:67:cf:71:4f:84:e4:67:34:cc:06:fb:f6:
6a:f7:1d:a2:e1:d1:b4:11:30:c0:37:11:fe:ab:3d:
a9:86:1f:0b:c6:41:24:af:03:98:5c:72:d5:15:67:
34:0d:74:2e:12:0d:c9:29:b7:6e:8b:ab:19:04:d5:
ac:b5:b9:f7:c9:ff:ac:46:a8:f6:50:75:ed:98:9b:
cc:7e:fc:9a:3d:b2:57:2f:4f:3b:d7:e9:3b:e2:d1:
28:15:f5:96:fe:63:35:0e:da:0b:fb:d1:16:d2:a6:
ad:8f:ea:f1:13:e3:10:a3:8a:9f:b5:56:9e:23:3f:
c5:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:51:04:60:AC:DD:99:62:B3:E8:3B:C7:E2:F5:FF:B8:F8:08:19:65
X509v3 Authority Key Identifier:
keyid:42:C4:C9:0E:D1:6A:A2:0E:49:17:84:20:BF:C8:4A:88:3C:12:AC:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QsTJDtFqog5JF4Qgv8hKiDwSrGg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/487c15-6f6f-407f-949f-a8e4e71bee51/1/LFEEYKzdmWKz6DvH4vX_uPgIGWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/487c15-6f6f-407f-949f-a8e4e71bee51/1/QsTJDtFqog5JF4Qgv8hKiDwSrGg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.71.0/24
Signature Algorithm: sha256WithRSAEncryption
68:68:77:c3:8f:0f:68:f7:2a:98:a9:0e:6b:a7:d3:8e:61:20:
fd:42:5f:10:34:7e:74:34:87:94:92:55:c8:b1:1f:83:a4:8d:
1a:42:f7:a3:7f:f0:3e:b1:ea:25:36:d7:92:72:77:4e:74:0f:
44:84:3e:9e:47:20:ca:36:42:45:fc:ac:a5:53:f3:35:7b:11:
ee:94:00:45:89:fc:03:18:6c:98:db:0d:b6:97:af:78:59:c7:
35:ed:3f:00:3c:2e:f0:ab:fb:b0:53:bd:3e:f8:c6:1b:7a:28:
f8:58:ac:2d:5c:3d:bf:ef:79:96:ba:50:e1:a7:a2:33:08:53:
6c:a0:37:95:3a:d3:30:56:85:a3:c2:f6:7f:2e:c9:58:68:20:
17:6b:ce:69:f1:f6:40:97:cf:9c:69:0c:d6:7d:bb:24:c6:f8:
59:e4:c1:ba:e4:2a:b4:0a:e6:5d:81:34:fa:6d:64:d6:5b:40:
6e:b4:f3:73:4d:0b:f3:84:c3:ae:11:cc:45:2c:84:a7:bf:a0:
78:6f:cb:3f:2c:36:47:8a:de:a8:72:6b:0e:0d:09:90:29:9b:
ba:17:46:be:19:cd:1f:94:2a:2e:dc:39:56:70:f0:9b:90:3b:
57:84:8e:68:d8:c1:49:e2:22:48:3c:8a:09:2b:05:ad:e4:25:
e5:0c:4c:33
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVELaqILJySqfA0/EG+DL2MMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyYzRjOTBlZDE2YWEyMGU0OTE3ODQyMGJmYzg0YTg4M2Mx
MmFjNjgwHhcNMjIxMjI0MTI0ODQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYzUxMDQ2MGFjZGQ5OTYyYjNlODNiYzdlMmY1ZmZiOGY4MDgxOTY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkFZQsaNVrmGdn8E76CEDVxAP3LbT
B287Vikj8WZwEyDV/LPmL5xew2xia1UdtFZyt8YOO20SohRePMYBbll5a/VojQjU
123AtzNEpIaVwv2uo56pz4D9XRHkxb5kL+GQ4lEPeNJKP3zGghs+39NT/Trl+aTm
Zu5dZvCTB6WgtQ5zeAmYCCXhPsNnz3FPhORnNMwG+/Zq9x2i4dG0ETDANxH+qz2p
hh8LxkEkrwOYXHLVFWc0DXQuEg3JKbdui6sZBNWstbn3yf+sRqj2UHXtmJvMfvya
PbJXL0871+k74tEoFfWW/mM1DtoL+9EW0qatj+rxE+MQo4qftVaeIz/FtQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCxRBGCs3Zlis+g7x+L1/7j4CBllMB8GA1UdIwQY
MBaAFELEyQ7RaqIOSReEIL/ISog8EqxoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXNUSkR0RnFvZzVKRjRRZ3Y4aEtpRHdTckdnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS80ODdjMTUtNmY2Zi00MDdmLTk0OWYt
YThlNGU3MWJlZTUxLzEvTEZFRVlLemRtV0t6NkR2SDR2WF91UGdJR1dVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS80ODdjMTUtNmY2Zi00MDdmLTk0OWYtYThlNGU3MWJlZTUx
LzEvUXNUSkR0RnFvZzVKRjRRZ3Y4aEtpRHdTckdnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuc5HMA0G
CSqGSIb3DQEBCwUAA4IBAQBoaHfDjw9o9yqYqQ5rp9OOYSD9Ql8QNH50NIeUklXI
sR+DpI0aQvejf/A+seolNteScndOdA9EhD6eRyDKNkJF/KylU/M1exHulABFifwD
GGyY2w22l694Wcc17T8APC7wq/uwU70++MYbeij4WKwtXD2/73mWulDhp6IzCFNs
oDeVOtMwVoWjwvZ/LslYaCAXa85p8fZAl8+caQzWfbskxvhZ5MG65Cq0CuZdgTT6
bWTWW0ButPNzTQvzhMOuEcxFLISnv6B4b8s/LDZHit6ocmsODQmQKZu6F0a+Gc0f
lCou3DlWcPCbkDtXhI5o2MFJ4iJIPIoJKwWt5CXlDEwz
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:24 2024 by rpki-client on console-fra.rpki-client.org