Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/LHZ5jAnqxJmEU68l3T3T5khSCvY.roa
File: LHZ5jAnqxJmEU68l3T3T5khSCvY.roa (raw, json)
Hash identifier: prYcdxZdVesfUr18BnVimp2TrqW6+p+Vma/cea2rvCQ=
Subject key identifier: 2C:76:79:8C:09:EA:C4:99:84:53:AF:25:DD:3D:D3:E6:48:52:0A:F6
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 07D51CE6
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/LHZ5jAnqxJmEU68l3T3T5khSCvY.roa
Signing time: Fri 06 May 2022 12:30:58 +0000
ROA not before: Fri 06 May 2022 12:30:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34984
IP address blocks: 185.238.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131407078 (0x7d51ce6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 6 12:30:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c76798c09eac4998453af25dd3dd3e648520af6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:cf:20:a0:ff:8d:6e:ec:28:42:c1:41:88:6e:
90:24:bb:86:ab:59:61:cb:fb:75:c8:dc:53:15:32:
8e:75:3b:51:e4:e8:97:d9:b9:eb:f2:60:de:63:67:
72:77:65:e9:de:5b:af:2b:27:ba:f5:2b:18:0c:80:
c0:ae:3f:bb:25:05:e3:38:f0:d4:1a:b4:9d:86:47:
dd:c0:f7:86:01:f8:df:19:e8:f3:c9:04:5a:d9:64:
a8:aa:08:64:97:cf:20:61:6f:74:58:1f:45:94:d4:
91:e1:3c:d0:1f:87:59:db:f0:57:70:0e:3c:fc:54:
6f:23:ed:a7:8b:9e:da:a8:fe:7b:c5:76:a9:06:33:
5c:15:5f:97:40:a4:b2:94:b7:c1:1c:18:38:35:78:
20:07:42:d2:5c:5e:2b:07:e0:24:b1:e0:0e:2f:21:
59:22:1b:18:df:eb:d8:ed:2a:a5:5a:7b:dc:2d:f6:
10:06:89:f9:91:a3:29:73:a3:fc:3b:a8:c8:0e:7f:
98:f3:0d:21:e1:c9:4d:6b:38:33:ca:d0:97:a2:8a:
49:47:39:b2:94:f2:8c:e5:fe:07:26:5e:ca:e6:3d:
44:25:6f:72:ca:7b:ef:82:15:e1:31:56:77:3e:cf:
f0:1c:b5:11:e8:c9:16:17:44:6c:5c:de:d7:1f:a3:
20:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:76:79:8C:09:EA:C4:99:84:53:AF:25:DD:3D:D3:E6:48:52:0A:F6
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/LHZ5jAnqxJmEU68l3T3T5khSCvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.230.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:a8:f4:45:dc:76:0c:3d:6a:7a:fe:20:10:27:e8:05:cc:0e:
e8:06:6e:54:f9:32:5e:b3:e6:d1:1d:7c:70:80:8c:b7:fa:6b:
1a:6f:04:ca:d3:cf:43:2d:c0:03:15:d9:f6:fa:e8:29:b6:fe:
98:5e:0f:ad:ca:da:c8:86:a9:00:19:e4:de:03:fb:63:c2:1b:
3b:80:92:29:c3:1e:83:4f:13:0f:f5:50:37:d9:9a:f6:d1:8a:
ee:af:c7:90:f4:28:1f:8b:7f:b0:9a:da:82:d2:65:f7:47:e7:
48:cc:aa:53:0f:46:93:f6:e0:6d:bd:b4:22:a0:2f:40:7e:a5:
09:55:76:c3:f9:42:4c:23:df:ac:67:3b:ef:5b:fd:9b:d7:20:
f9:f9:b0:23:c9:38:24:43:19:3e:c8:ae:b9:62:d9:b9:d7:54:
76:ee:5b:c5:90:c8:99:2b:cf:76:2a:54:25:02:7f:4b:ca:38:
58:4a:e9:9a:d0:6f:6a:96:8f:39:cb:7f:5b:da:80:a4:94:3f:
8a:1a:6e:24:bb:3c:5d:12:0d:9a:fc:51:73:b1:c6:d1:1a:1b:
6e:97:4b:54:a2:a4:96:7b:31:3e:5b:e0:5c:14:64:77:1c:8a:
59:25:8f:5a:75:27:e7:e9:b6:b5:35:2a:a8:5f:43:89:b3:ad:
17:ca:73:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:22 2024 by rpki-client on console-ams.rpki-client.org