Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/LF_lAe25OF3URTAh_kyeHefs1Ww.roa
File: LF_lAe25OF3URTAh_kyeHefs1Ww.roa (raw, json)
Hash identifier: G/XPlOrOL4ePGvg0ceFeHoKGZ0z21ZXLeys16UhSHvg=
Subject key identifier: 2C:5F:E5:01:ED:B9:38:5D:D4:45:30:21:FE:4C:9E:1D:E7:EC:D5:6C
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 052B4D69
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/LF_lAe25OF3URTAh_kyeHefs1Ww.roa
Signing time: Sat 01 Jan 2022 03:03:00 +0000
ROA not before: Sat 01 Jan 2022 03:03:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58224
IP address blocks: 194.26.3.0/24 maxlen: 24
194.26.2.0/24 maxlen: 24
128.65.164.0/22 maxlen: 22
128.65.172.0/22 maxlen: 22
194.26.21.0/24 maxlen: 24
128.65.168.0/22 maxlen: 22
194.26.20.0/24 maxlen: 24
77.81.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86723945 (0x52b4d69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Jan 1 03:03:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c5fe501edb9385dd4453021fe4c9e1de7ecd56c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:be:92:69:cb:e8:cd:61:62:10:f1:33:de:fc:
f4:a7:93:c7:41:97:b3:2e:19:22:bf:3b:82:ef:42:
b2:59:92:49:fe:90:ee:16:2d:66:c1:c8:56:ca:d5:
43:57:c3:60:d3:0f:5e:a7:52:92:4d:7e:ac:36:d7:
34:d7:36:a7:5c:4b:a0:1b:55:6f:17:8c:52:d1:5f:
3a:8c:2b:44:4b:10:b8:87:65:a9:b4:ec:50:d3:28:
ee:0f:d7:86:d9:da:22:5c:94:0f:0b:c5:d0:1a:0f:
f7:43:dc:66:b8:06:15:dd:0c:3b:60:be:80:7c:5c:
80:7c:41:45:95:2e:81:48:a8:f6:82:2e:43:ed:f1:
f4:72:fd:ac:16:97:ea:d5:8c:6d:d4:99:d2:46:ae:
39:5b:a2:5e:43:46:94:b5:3a:d9:cb:4a:ec:d7:36:
02:57:8d:1e:be:62:0d:c5:67:bb:2b:44:81:d9:24:
c6:14:88:e3:d5:fa:8f:d3:d5:f4:cb:6c:1b:c1:a6:
2d:c8:22:e3:ca:08:b5:47:07:a9:ab:12:22:1e:c4:
fd:21:68:e8:c8:49:c5:03:41:25:31:a1:39:d4:30:
7e:d7:9a:58:83:9c:ac:64:18:e3:e6:c2:cd:73:50:
2f:a6:9c:78:e5:98:f1:4f:ed:cc:18:c8:48:d9:87:
ed:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:5F:E5:01:ED:B9:38:5D:D4:45:30:21:FE:4C:9E:1D:E7:EC:D5:6C
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/LF_lAe25OF3URTAh_kyeHefs1Ww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.82.0/24
128.65.164.0-128.65.175.255
194.26.2.0/23
194.26.20.0/23
Signature Algorithm: sha256WithRSAEncryption
8f:6e:22:01:de:a7:a2:52:f5:cf:78:f3:41:87:c0:5c:df:ea:
2a:37:60:7c:44:97:b8:f2:b7:60:d5:20:15:e5:de:b0:f4:3a:
39:e2:6a:06:5a:8d:f2:a0:e3:20:88:d9:d4:ec:a9:1e:2c:e7:
03:75:bd:bc:00:5d:1f:c0:26:56:b5:e6:3a:34:62:62:5b:04:
4b:71:cb:6c:fc:91:d7:68:d7:77:47:26:f4:27:42:22:21:7f:
f7:ee:15:ef:8e:6d:1f:e7:9b:ab:08:c2:ec:dc:ea:e8:0a:4b:
b5:a4:d4:b4:18:ef:45:08:19:af:8c:be:02:4b:47:a5:c5:82:
99:b4:8a:d1:07:02:c2:33:ea:de:da:65:a5:c1:99:62:4e:a9:
fd:25:4e:29:fa:a6:a3:4d:34:1a:27:08:5a:c7:11:22:df:cc:
4a:20:11:66:23:f4:ee:66:ce:38:d8:2b:d6:a2:cc:58:85:43:
99:d4:44:c6:59:41:22:58:7f:3d:32:37:2d:ec:f8:14:de:5b:
d7:75:57:21:e3:da:03:52:61:84:47:c3:16:32:d2:b3:cf:d8:
65:11:d4:b9:f0:9a:ec:e3:32:3b:f0:5a:ea:4c:22:8b:7b:92:
0c:b4:9d:97:d0:7f:99:b5:aa:a8:30:a8:ae:c4:bc:d8:20:0a:
d1:27:e8:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:23 2024 by rpki-client on console-fra.rpki-client.org