Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/LzsgH6W9RcjxPsqH7nk5LrErIow.roa
File: LzsgH6W9RcjxPsqH7nk5LrErIow.roa (raw, json)
Hash identifier: gEYzheqBF2loUtrZezGL2H++Fxzz465MS2UsOMQMOeo=
Subject key identifier: 2F:3B:20:1F:A5:BD:45:C8:F1:3E:CA:87:EE:79:39:2E:B1:2B:22:8C
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 425F642E
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/LzsgH6W9RcjxPsqH7nk5LrErIow.roa
Signing time: Sat 01 Jan 2022 14:03:04 +0000
ROA not before: Sat 01 Jan 2022 14:03:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24851
IP address blocks: 192.71.211.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1113547822 (0x425f642e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:03:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f3b201fa5bd45c8f13eca87ee79392eb12b228c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:38:31:6e:cd:72:78:f7:65:27:0c:47:63:93:
61:2c:90:b4:90:88:c9:3d:12:34:92:46:8b:a6:66:
8a:48:41:d7:86:6d:0b:aa:e1:78:12:19:f1:eb:17:
b3:fe:f0:e3:95:be:a9:43:a7:32:ed:48:6b:2e:c0:
d8:02:9f:33:dc:38:f7:1a:08:c5:e4:0f:e8:4e:a0:
79:3e:10:1d:09:07:01:38:a3:63:ef:c5:17:d3:03:
5e:a2:14:91:f9:6c:fe:33:2d:cf:7d:d3:d8:40:4b:
0e:55:f0:45:7d:49:eb:38:fc:fe:55:62:c1:82:98:
88:53:5c:e7:37:b4:c4:97:df:dd:a7:3b:d8:41:cd:
3b:2e:f3:83:11:1b:3a:2b:80:29:85:b7:e2:02:5e:
1d:cc:c9:ec:b7:3f:40:de:f5:bc:9f:ba:3e:09:bd:
ff:82:f7:e5:c6:b9:29:35:95:97:42:ee:58:33:df:
4a:8e:88:1e:23:d4:5b:59:13:79:69:a1:ea:b6:16:
73:cd:ea:51:1c:cf:e7:6a:aa:8d:33:33:b9:e0:c3:
92:2c:58:2a:fa:58:9f:45:01:b7:fd:d5:9a:09:ee:
8c:dd:7b:82:2a:27:69:58:d3:60:89:5a:18:b7:30:
88:a4:f9:9e:ff:f2:74:77:d9:0c:25:1c:e5:b0:ce:
50:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:3B:20:1F:A5:BD:45:C8:F1:3E:CA:87:EE:79:39:2E:B1:2B:22:8C
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/LzsgH6W9RcjxPsqH7nk5LrErIow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.71.211.0/24
Signature Algorithm: sha256WithRSAEncryption
58:80:b5:63:96:63:ac:2c:1d:5a:19:c4:7a:9d:d8:05:e2:89:
66:f3:95:51:c0:17:ec:ee:d2:37:4c:ba:a1:fe:5d:d4:8f:c8:
f7:e4:a3:b5:b9:cd:1e:d9:60:eb:5a:7d:16:7f:f8:27:3d:4b:
ef:9d:4d:a3:70:77:e5:8d:68:28:71:29:13:ef:1d:5b:09:70:
f5:1a:ca:e9:66:ea:ef:ca:3b:33:78:44:81:d7:fe:99:28:7c:
1f:f9:3c:96:b0:9f:83:1f:f8:e5:21:10:7b:ce:17:0a:85:7a:
e9:6c:91:82:00:dd:fa:bf:32:25:20:ec:30:b7:d2:a0:8e:4b:
cc:da:37:25:ad:e4:8d:aa:6b:74:91:fb:6a:82:83:7e:3e:6e:
af:3f:31:ec:00:cc:9c:2b:08:20:88:31:13:79:4a:30:86:c2:
86:5f:c2:41:73:37:bf:0b:30:db:bd:a8:87:9c:c0:91:d1:8f:
0f:62:49:b7:2b:c4:99:a2:61:e8:89:40:94:21:5e:be:c6:73:
ac:10:a0:23:90:f1:ea:ae:42:fa:65:44:a5:09:22:cd:9c:14:
5f:0d:a2:25:58:14:2a:74:59:6a:6a:01:2b:62:b3:87:c6:0c:
6f:f7:d7:05:24:51:6d:8d:9b:51:f2:8b:8f:2e:55:d1:48:d0:
79:78:42:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:38 2023 by rpki-client on console-ams.rpki-client.org