Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/8LIQCD-sqrlsBGbZBALS2VgE5Yc.roa
File: 8LIQCD-sqrlsBGbZBALS2VgE5Yc.roa (raw, json)
Hash identifier: ZROM+RQUGEqgLggJzSs4UsECtnPxs8iK9QS0362AJGM=
Subject key identifier: F0:B2:10:08:3F:AC:AA:B9:6C:04:66:D9:04:02:D2:D9:58:04:E5:87
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 05B9F38A
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/8LIQCD-sqrlsBGbZBALS2VgE5Yc.roa
Signing time: Sat 29 Jan 2022 10:54:50 +0000
ROA not before: Sat 29 Jan 2022 10:54:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60458
IP address blocks: 93.152.216.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96072586 (0x5b9f38a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Jan 29 10:54:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0b210083facaab96c0466d90402d2d95804e587
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1b:a1:e9:c5:78:2f:1a:80:3b:90:d3:47:b9:
2e:00:1c:43:b1:37:13:3b:90:c5:4d:cf:53:03:a7:
80:94:c8:38:ea:48:47:91:e0:93:41:be:c9:66:de:
c2:ef:d9:40:69:a3:e0:74:ac:58:52:f1:24:d1:bd:
9d:d2:39:12:ea:2f:54:d8:c2:84:6f:11:4d:e3:60:
ff:06:05:c6:86:57:f9:3d:34:53:f4:c6:46:9a:ce:
62:31:56:34:a3:0e:56:72:ab:42:4f:e4:40:60:49:
45:6e:64:65:f2:5f:f6:e0:7f:54:14:6a:21:01:d7:
43:4b:54:8a:88:dd:81:95:db:1a:d5:ea:86:8d:c1:
cd:cd:f6:34:60:51:c6:57:9d:83:73:60:fb:a9:c2:
fe:30:d4:5c:49:52:09:65:b2:8c:73:4f:40:aa:77:
6c:63:cd:f0:26:31:ba:19:26:15:21:ee:c8:a4:07:
4f:1b:d9:20:a3:fa:5e:1f:dc:1b:76:0d:46:22:ab:
98:be:73:76:14:64:d2:11:c8:50:12:61:ae:bd:23:
09:10:bb:34:62:69:de:b8:e7:94:26:b2:86:c1:b4:
32:c0:67:91:50:c2:78:2f:c6:6d:07:c4:8b:17:89:
b1:30:45:70:51:1a:f3:13:60:ad:42:8b:4a:17:39:
aa:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:B2:10:08:3F:AC:AA:B9:6C:04:66:D9:04:02:D2:D9:58:04:E5:87
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/8LIQCD-sqrlsBGbZBALS2VgE5Yc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.152.216.0/24
93.152.220.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:8d:d6:60:cb:6b:9e:1e:83:6c:30:0a:f2:ef:c3:4c:bc:00:
45:ce:0c:9a:12:29:5c:64:b4:36:47:a7:a9:eb:5a:38:5c:3b:
ed:b3:39:42:df:19:9a:bd:ba:59:90:84:d9:87:57:2b:7b:5e:
80:6e:4f:df:25:ab:22:98:95:a6:99:1c:58:30:93:58:0e:d2:
03:e1:eb:ef:58:8b:9d:7c:c8:62:b6:aa:fc:19:a6:64:6b:39:
59:ad:91:89:99:73:fb:ae:40:99:0d:34:43:09:fb:e7:1f:a6:
5b:66:8d:ac:f6:59:db:fc:6e:b7:6f:2f:89:4f:7e:1e:a7:c2:
ff:a5:a8:f6:dd:f8:51:8d:28:13:65:64:d1:67:98:09:ab:6d:
84:da:79:54:a1:81:53:ae:30:34:4c:89:d0:28:10:4a:2e:8f:
86:50:0f:d3:53:d2:f2:2a:93:5f:f1:38:8e:8d:19:95:97:50:
70:44:07:4c:bb:e9:aa:c1:5c:d2:88:37:ed:94:84:41:2a:a2:
57:9c:a7:ee:fa:52:9c:bc:6a:88:9b:c9:7a:3e:a6:dd:f0:31:
1d:68:e3:f1:2e:ae:e6:d9:11:48:15:18:50:eb:64:61:1f:31:
6e:28:62:0d:2b:be:87:4d:c3:b6:5f:43:2b:1d:8f:75:38:4a:
00:9e:27:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:07 2023 by rpki-client on console-fra.rpki-client.org