Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/f2daf4-2e9f-4921-82d8-fc42ae5ec1b5/1/LvCj20SMjcI96VZVU9j-4925vZU.roa
File: LvCj20SMjcI96VZVU9j-4925vZU.roa (raw, json)
Hash identifier: ZvzAplwfsrQ9wFyMwGkiyh0jCSHOOuoJ6vY0+bkJNkc=
Subject key identifier: 2E:F0:A3:DB:44:8C:8D:C2:3D:E9:56:55:53:D8:FE:E3:DD:B9:BD:95
Certificate issuer: /CN=812a6cdc5cb9ce9cfd950b3440d3083b788b95e6
Certificate serial: AAC9C9
Authority key identifier: 81:2A:6C:DC:5C:B9:CE:9C:FD:95:0B:34:40:D3:08:3B:78:8B:95:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gSps3Fy5zpz9lQs0QNMIO3iLleY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/f2daf4-2e9f-4921-82d8-fc42ae5ec1b5/1/LvCj20SMjcI96VZVU9j-4925vZU.roa
Signing time: Sat 01 Jan 2022 07:03:54 +0000
ROA not before: Sat 01 Jan 2022 07:03:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 91.242.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11192777 (0xaac9c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=812a6cdc5cb9ce9cfd950b3440d3083b788b95e6
Validity
Not Before: Jan 1 07:03:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ef0a3db448c8dc23de9565553d8fee3ddb9bd95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:43:69:29:4e:c9:25:45:4d:fd:25:1d:4e:44:
df:8a:a1:e4:f5:9b:00:2f:e6:48:b3:2e:5b:d4:25:
8c:41:52:1e:70:06:e8:22:fc:39:4e:af:50:58:88:
4b:32:19:44:0b:67:63:00:e7:91:eb:de:b5:1e:8f:
b8:0d:0e:be:1a:73:31:44:15:87:b3:4d:1c:13:a7:
04:94:8b:ea:ac:33:dd:d7:53:7b:8e:f6:8b:6b:d6:
36:52:97:21:be:94:f5:43:72:02:f9:56:90:fb:4a:
da:f5:35:0c:da:88:68:a5:37:30:f9:be:fb:38:39:
b5:11:ab:66:be:aa:a3:4a:09:72:3c:80:31:22:af:
36:d6:d2:cb:b8:b8:7b:be:13:28:bb:09:ea:4e:59:
5e:f0:d3:5c:8c:d2:c4:3b:7c:02:55:e9:69:a3:1a:
a4:df:eb:c8:04:ba:04:2c:a3:4b:74:4c:07:00:6d:
7f:e6:c7:61:7b:69:39:95:1f:19:0d:90:60:15:48:
b2:f1:da:cf:45:08:1e:35:15:09:e4:b1:d9:a4:dc:
e4:a2:86:44:52:93:b0:b5:e4:55:77:8a:b7:48:c8:
53:20:26:a0:a2:ae:b9:8a:7a:c2:f9:3d:d1:bc:78:
0a:0b:88:5d:6b:57:76:4f:06:7e:79:0b:69:9d:ab:
b3:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:F0:A3:DB:44:8C:8D:C2:3D:E9:56:55:53:D8:FE:E3:DD:B9:BD:95
X509v3 Authority Key Identifier:
keyid:81:2A:6C:DC:5C:B9:CE:9C:FD:95:0B:34:40:D3:08:3B:78:8B:95:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gSps3Fy5zpz9lQs0QNMIO3iLleY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f2daf4-2e9f-4921-82d8-fc42ae5ec1b5/1/LvCj20SMjcI96VZVU9j-4925vZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f2daf4-2e9f-4921-82d8-fc42ae5ec1b5/1/gSps3Fy5zpz9lQs0QNMIO3iLleY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.245.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:4c:75:e9:78:c3:7a:eb:0b:cc:f0:7c:41:92:5a:1b:7d:58:
ad:90:ad:52:51:79:78:bf:71:a5:0c:63:5c:4a:e8:db:ac:67:
a9:ba:d8:db:2f:31:a5:c4:3a:35:f4:52:94:a3:cb:fc:14:d4:
9d:83:c4:98:a9:4c:88:42:7a:bc:2c:b9:c9:3d:84:a9:fd:96:
c5:5d:59:c4:eb:6f:ce:a4:91:d9:d8:33:32:9d:04:cb:94:45:
ec:82:7e:ec:bd:d9:ba:0f:70:a1:6c:a5:0d:a2:0f:2c:63:81:
a9:a2:b1:16:b0:44:38:7b:3c:99:73:6e:1c:a1:77:35:18:39:
89:21:16:f1:85:40:ca:f5:d9:a9:77:02:8c:9f:c9:b5:18:64:
de:66:cf:91:d3:72:c3:f9:77:a3:3c:d9:db:5c:bb:22:41:a0:
4a:99:98:64:e2:46:8a:13:0e:f5:c2:65:84:d7:42:97:9d:e1:
8c:29:8c:e4:72:97:9a:f9:fa:d0:c1:79:6c:67:b7:a1:8a:f6:
c5:de:39:32:af:9b:81:fd:f6:3e:ec:ab:7b:e6:da:7d:bb:89:
9f:aa:04:a6:ea:33:fd:a7:e4:ce:e4:5e:b8:7f:bd:bd:17:54:
3d:c0:35:0c:1d:c7:d4:db:25:64:1a:43:2e:78:eb:b9:2c:c8:
b2:62:71:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:29 2023 by rpki-client on console-ams.rpki-client.org