Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/9a3aac-2a4c-4387-aea8-04e6f5764c52/1/LgXuJC4q7KrrRNDQjDBCnCcl6Po.roa
File: LgXuJC4q7KrrRNDQjDBCnCcl6Po.roa (raw, json)
Hash identifier: bOjx2kHnaGHswtTrNyWp1P0YfK1dcMgG6jq+7BXGERU=
Subject key identifier: 2E:05:EE:24:2E:2A:EC:AA:EB:44:D0:D0:8C:30:42:9C:27:25:E8:FA
Certificate issuer: /CN=d091fe8c540c44e234f9bc668f8a3b1647acdb06
Certificate serial: 04158698
Authority key identifier: D0:91:FE:8C:54:0C:44:E2:34:F9:BC:66:8F:8A:3B:16:47:AC:DB:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0JH-jFQMROI0-bxmj4o7Fkes2wY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/9a3aac-2a4c-4387-aea8-04e6f5764c52/1/LgXuJC4q7KrrRNDQjDBCnCcl6Po.roa
Signing time: Sat 01 Jan 2022 08:57:20 +0000
ROA not before: Sat 01 Jan 2022 08:57:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60976
IP address blocks: 185.192.112.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68519576 (0x4158698)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d091fe8c540c44e234f9bc668f8a3b1647acdb06
Validity
Not Before: Jan 1 08:57:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e05ee242e2aecaaeb44d0d08c30429c2725e8fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:90:b1:7a:40:06:f8:52:35:d6:6f:71:74:53:
51:d8:55:5f:a7:ce:f0:b6:72:9c:cd:0a:cf:4b:a5:
72:d2:e4:9c:7b:b4:99:1c:d3:5e:46:0f:e8:d1:48:
47:1c:95:bc:87:0d:26:25:ae:85:50:c5:3c:b0:e4:
03:a4:ea:ca:43:d1:ac:b7:c3:12:ca:25:12:8a:2b:
ae:24:b0:b9:8d:bc:37:d0:10:f8:e1:47:84:f2:93:
e9:b4:44:ea:3b:d3:7b:02:e9:01:50:0c:de:af:28:
f3:54:0f:dc:9b:6c:d4:53:e5:06:66:af:23:76:f5:
f0:c3:8a:a9:74:de:4c:0e:34:a9:5c:19:e9:a4:a9:
83:ad:31:ba:eb:0f:db:a7:4e:7a:fd:ff:67:e0:24:
71:fe:42:2e:ef:39:68:6a:08:a3:e1:d1:31:73:cc:
e5:b1:0b:2a:09:f9:cc:db:d1:12:0b:ab:65:42:e1:
d3:18:54:65:e3:0e:64:e1:be:5f:25:97:b9:c2:1e:
6d:f7:5a:95:29:2c:14:c2:69:02:11:1d:ad:06:63:
c2:9f:8d:53:04:b9:2e:55:66:57:57:4d:0d:2a:79:
26:06:3d:37:f2:5c:10:48:72:b7:2e:7a:51:39:bc:
6c:56:b6:7f:41:56:ae:e5:31:86:b3:b1:59:7c:b1:
a3:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:05:EE:24:2E:2A:EC:AA:EB:44:D0:D0:8C:30:42:9C:27:25:E8:FA
X509v3 Authority Key Identifier:
keyid:D0:91:FE:8C:54:0C:44:E2:34:F9:BC:66:8F:8A:3B:16:47:AC:DB:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0JH-jFQMROI0-bxmj4o7Fkes2wY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/9a3aac-2a4c-4387-aea8-04e6f5764c52/1/LgXuJC4q7KrrRNDQjDBCnCcl6Po.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/9a3aac-2a4c-4387-aea8-04e6f5764c52/1/0JH-jFQMROI0-bxmj4o7Fkes2wY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.112.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:f3:f7:ba:ca:1e:75:8a:71:43:33:a1:09:65:e1:c0:59:e3:
a5:a6:82:ff:d4:47:9c:8c:45:1e:3c:98:68:70:5a:c0:44:5f:
46:8c:d7:38:93:f5:97:e7:54:bc:9b:2e:19:05:2c:05:c9:62:
5a:8d:bf:a8:48:0e:2c:6a:90:06:65:76:2b:12:bc:55:ba:9c:
ee:3f:d8:a4:85:d5:0e:03:95:51:85:e1:54:ba:1f:2c:39:2b:
1d:ec:2d:12:4e:6b:b2:fd:43:87:3a:2f:59:7e:0a:be:4c:30:
7e:58:c8:16:25:1a:84:ec:6a:bf:dd:89:e7:43:8b:12:8a:86:
81:9d:9c:85:30:f7:56:ee:15:2a:a2:88:fc:20:5a:6e:b8:b0:
54:fa:b8:ba:3d:4f:b1:26:99:07:62:f4:24:76:12:4b:55:ca:
47:77:7b:4e:5e:8a:a7:ef:c8:f6:a9:7e:06:b6:6d:47:65:99:
96:53:3e:25:e4:f0:36:90:90:47:11:f2:1f:0a:f1:02:0b:9c:
d1:12:9c:1b:45:53:dd:9f:58:99:44:b4:0b:55:6a:98:6e:d4:
b4:1e:45:72:57:44:43:93:93:77:d8:82:f2:61:f1:86:e4:99:
c8:a6:14:2c:e9:ac:12:41:fe:35:fe:24:00:bf:98:f0:17:e2:
d9:8e:4f:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:26:14 2025 by rpki-client