Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Lgw3wnprnrBC861xHmBljy84488.roa
File: Lgw3wnprnrBC861xHmBljy84488.roa (raw, json)
Hash identifier: FMqH4palIEMZy+MeCCgsSUybEcHyBho74heKYE8F3Z4=
Subject key identifier: 2E:0C:37:C2:7A:6B:9E:B0:42:F3:AD:71:1E:60:65:8F:2F:38:E3:CF
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 1999C6E3
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Lgw3wnprnrBC861xHmBljy84488.roa
Signing time: Sun 10 Apr 2022 22:04:22 +0000
ROA not before: Sun 10 Apr 2022 22:04:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12859
IP address blocks: 195.85.49.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 429508323 (0x1999c6e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Apr 10 22:04:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e0c37c27a6b9eb042f3ad711e60658f2f38e3cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c5:f8:7d:03:ce:3e:8c:cc:62:4b:b0:99:6f:
7f:05:d8:c6:c7:a1:1b:cf:33:71:85:5c:3f:0d:8d:
fd:11:18:95:d0:cd:44:c0:36:f9:be:5b:c3:50:5b:
5b:b2:e2:fe:0c:e4:31:b1:44:1f:5a:28:35:08:75:
c9:c0:65:c8:07:c9:aa:b3:ce:48:15:4d:a9:af:5e:
8c:1e:02:e4:a9:43:da:1c:dd:4f:24:5e:cd:c8:b5:
47:d1:1b:5d:a2:de:6c:3a:7c:df:df:8c:57:8e:43:
54:3b:5a:1f:72:b5:25:9b:ea:07:1a:cd:ca:ec:98:
24:80:f4:d8:fc:07:a0:47:3f:23:69:ca:e2:13:0b:
82:35:0b:66:98:6f:d5:fa:cc:cc:ae:04:48:10:39:
d7:24:d6:61:e3:a6:aa:ff:ab:21:00:05:65:9b:58:
6f:44:a0:e3:6f:89:2c:6d:9b:64:d4:0f:8e:44:72:
5a:cf:1b:f0:1b:e3:94:b5:f3:91:25:02:b5:65:19:
98:00:2b:73:35:cd:08:22:4b:43:ec:17:4c:03:34:
a4:d8:37:d3:4c:25:71:29:ba:ec:5f:3a:8f:cf:93:
73:14:4c:c9:28:3c:8d:0f:47:1a:7a:7f:08:1d:01:
04:f7:e4:20:f8:d8:92:75:9f:e0:8f:61:b9:aa:24:
ba:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:0C:37:C2:7A:6B:9E:B0:42:F3:AD:71:1E:60:65:8F:2F:38:E3:CF
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Lgw3wnprnrBC861xHmBljy84488.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.85.49.0/24
Signature Algorithm: sha256WithRSAEncryption
10:64:56:f8:fe:e1:95:26:16:9a:c0:0a:18:57:db:27:fc:6c:
db:a3:e5:46:16:a3:8a:0b:0f:87:4a:9b:ef:35:cf:1d:64:7c:
6d:5d:d6:94:0b:03:61:a7:af:79:63:43:79:b7:2f:02:a9:b3:
1c:f0:82:26:52:33:96:40:8c:30:3a:e7:85:d8:4e:5d:48:78:
3a:fc:ea:60:b4:3e:99:af:fc:39:76:ce:52:50:1e:e5:29:23:
41:fa:52:28:d8:05:cb:24:5f:de:ba:87:2f:dd:00:4a:53:25:
11:d3:a9:7d:30:f1:a1:b2:e0:5b:6b:84:c5:2f:07:09:ea:f9:
ee:e7:79:5b:ac:0a:3b:eb:08:19:d7:3c:5e:fc:cc:b0:dd:c0:
58:87:4d:37:1a:59:19:bc:ff:d3:38:6b:11:76:07:fb:07:7e:
1e:c7:ba:f2:7d:cb:07:b8:70:7b:70:24:6b:5b:98:53:b8:c6:
a2:74:21:6a:0a:0e:55:c2:a0:0c:51:23:d0:22:73:09:d2:05:
ea:3d:a8:ee:9e:a5:d6:d6:cd:c1:b6:9b:0f:82:a5:f1:42:ea:
32:32:c1:2a:92:cb:73:4f:e2:3c:fa:8a:18:e3:c0:3e:b7:fd:
32:06:f7:92:42:00:48:7c:53:d6:76:33:b4:e6:ef:ec:dc:63:
a6:b8:88:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org