Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a763fd-0b05-428b-b723-20c23868b91f/1/LfLpcvTsRsx577f_Kk-tMfIvXek.roa
File: LfLpcvTsRsx577f_Kk-tMfIvXek.roa (raw, json)
Hash identifier: 0S8dNYNhsaKQkLmrcFfWdcQ0QEECXx9Bll87JDJXi5U=
Subject key identifier: 2D:F2:E9:72:F4:EC:46:CC:79:EF:B7:FF:2A:4F:AD:31:F2:2F:5D:E9
Certificate issuer: /CN=667e799364d414f66df363137c79abf61239eb4d
Certificate serial: 06910978
Authority key identifier: 66:7E:79:93:64:D4:14:F6:6D:F3:63:13:7C:79:AB:F6:12:39:EB:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zn55k2TUFPZt82MTfHmr9hI5600.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a763fd-0b05-428b-b723-20c23868b91f/1/LfLpcvTsRsx577f_Kk-tMfIvXek.roa
Signing time: Sat 01 Jan 2022 12:06:51 +0000
ROA not before: Sat 01 Jan 2022 12:06:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203854
IP address blocks: 185.122.4.0/23 maxlen: 23
185.122.4.0/22 maxlen: 22
185.122.6.0/23 maxlen: 23
2a05:7e40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110168440 (0x6910978)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=667e799364d414f66df363137c79abf61239eb4d
Validity
Not Before: Jan 1 12:06:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2df2e972f4ec46cc79efb7ff2a4fad31f22f5de9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:e6:5b:d0:f8:aa:59:8f:26:4f:49:4c:26:1f:
d1:ff:d9:81:f6:90:b6:09:32:cf:d1:36:18:56:73:
bd:76:6c:27:16:86:78:1e:ea:4c:8d:ac:e4:25:55:
e7:36:b4:f4:24:a9:f4:55:e8:0f:b3:10:f0:73:b3:
61:3a:92:41:ce:26:6f:6c:69:70:8f:2f:1e:f6:e1:
0f:e7:81:ce:0b:aa:c7:2a:31:ce:7d:ca:58:ab:3c:
78:3a:a9:43:ed:e7:ca:0b:4e:52:1a:a5:a4:02:04:
bb:be:52:79:43:b9:00:2d:44:57:e6:f3:1d:ea:da:
83:ee:87:83:df:d2:a0:67:88:58:4b:4f:d6:df:56:
d3:ad:2e:2f:81:96:49:e0:91:94:8f:e0:50:98:7e:
cd:b5:23:99:fb:48:b3:1e:c2:aa:f7:79:01:7e:65:
a0:50:6b:a1:2e:c5:7a:24:09:74:d3:fd:b3:b5:f6:
e2:2e:66:2b:58:4e:a2:fe:d1:6a:10:bf:71:6a:5f:
b6:cd:47:5c:f0:be:af:5a:58:79:b3:73:ad:7b:e7:
f0:5c:f0:ba:1d:a3:3c:f2:09:03:7e:4e:9d:32:64:
c4:57:d4:93:ed:e8:ed:99:03:fa:0b:9d:1b:7c:6d:
15:9c:d2:98:fd:b4:28:5e:60:29:d0:c6:90:c4:f4:
27:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:F2:E9:72:F4:EC:46:CC:79:EF:B7:FF:2A:4F:AD:31:F2:2F:5D:E9
X509v3 Authority Key Identifier:
keyid:66:7E:79:93:64:D4:14:F6:6D:F3:63:13:7C:79:AB:F6:12:39:EB:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zn55k2TUFPZt82MTfHmr9hI5600.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a763fd-0b05-428b-b723-20c23868b91f/1/LfLpcvTsRsx577f_Kk-tMfIvXek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a763fd-0b05-428b-b723-20c23868b91f/1/Zn55k2TUFPZt82MTfHmr9hI5600.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.122.4.0/22
IPv6:
2a05:7e40::/29
Signature Algorithm: sha256WithRSAEncryption
ab:eb:1a:8f:19:3d:5c:2b:fd:81:57:4f:22:58:f0:8f:3c:88:
82:2a:e7:e7:60:7e:47:5d:30:1f:53:48:61:93:5f:37:f5:b2:
7a:f2:4b:0d:a9:ac:6c:95:09:bd:60:77:92:df:e0:ec:f0:85:
ff:45:fe:eb:a9:9c:4d:6b:cc:70:12:4b:6c:0a:bc:91:49:0a:
92:a2:48:a5:ab:ba:43:66:30:65:94:3a:88:d7:f2:dc:be:3b:
64:97:b1:16:b5:04:a2:d9:7b:3f:ab:78:ce:84:c2:b3:b3:1a:
39:f5:a1:b0:99:d7:f0:2e:c0:4a:15:b7:cd:d5:f8:6c:6f:03:
89:0c:1a:e1:65:39:d1:75:70:a2:63:a4:38:bf:15:0e:8b:0b:
74:42:13:73:cb:e4:47:fe:72:b4:07:de:9a:0d:f2:ac:ae:66:
54:b9:94:e9:42:bf:e8:34:87:95:8f:95:f0:b2:be:d5:c8:3b:
99:a5:37:53:0f:c1:23:03:ba:24:f3:b4:29:72:fb:50:7c:d3:
60:40:ce:81:ef:59:ce:0d:a3:27:c0:ba:c0:01:e6:0c:d8:0d:
f1:bc:d8:0a:e6:8e:39:27:20:f1:c4:01:5d:c0:cf:74:0b:08:
84:14:a7:ff:be:7b:92:d9:28:f0:94:34:9c:1f:49:96:ee:1b:
d7:8b:6b:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:15 2023 by rpki-client on console-ams.rpki-client.org