Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Lk4942a20pg83jUiCh0H_SpvcvA.roa
File: Lk4942a20pg83jUiCh0H_SpvcvA.roa (raw, json)
Hash identifier: VVW0KECwQrapx8GwikHJ3GTp51OQ4sRZprobmYH8B4M=
Subject key identifier: 2E:4E:3D:E3:66:B6:D2:98:3C:DE:35:22:0A:1D:07:FD:2A:6F:72:F0
Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial: E9984B
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Lk4942a20pg83jUiCh0H_SpvcvA.roa
Signing time: Mon 25 Apr 2022 09:35:39 +0000
ROA not before: Mon 25 Apr 2022 09:35:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50673
IP address blocks: 2.59.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15308875 (0xe9984b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Validity
Not Before: Apr 25 09:35:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e4e3de366b6d2983cde35220a1d07fd2a6f72f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0c:c8:96:78:55:ba:99:04:ff:c1:57:61:7f:
8d:d7:6d:0d:69:9a:7a:84:d5:7c:a8:d9:11:75:57:
45:00:71:a5:ec:c9:f9:fc:7e:da:35:b8:ba:05:f4:
a0:94:da:59:e7:32:0a:e8:4c:2f:bb:19:71:a9:b7:
04:63:2f:74:95:f8:5c:9b:00:b5:d6:30:b9:6b:b2:
dc:3b:29:bb:2d:31:71:7d:b5:9e:bf:b7:b1:ff:b6:
57:b3:fd:1b:42:52:23:12:73:35:f7:8c:16:c8:84:
d2:71:a6:b8:ca:bc:62:aa:61:d6:67:38:a0:19:0f:
4e:5e:8d:fc:7d:d1:99:a7:dc:cc:3b:f0:a7:96:b9:
53:72:8a:bf:37:a6:ab:be:54:f8:b0:81:80:c7:9a:
7e:a1:3e:d7:2c:85:ac:b8:f3:3a:22:df:07:40:dc:
f3:df:32:b6:2c:57:a7:c0:b5:5a:27:bc:21:15:ff:
9d:60:9a:c8:9b:41:9a:e5:f2:9d:f6:18:01:bd:62:
0a:07:92:88:ac:e4:2a:ee:66:f2:96:bd:c7:d5:5f:
fc:7e:11:cc:bf:8e:07:11:cb:55:b4:2b:08:c0:f7:
15:9b:c7:7f:7e:7d:2a:cf:be:3a:60:d2:ec:86:42:
9b:2c:4b:e2:d5:15:01:ab:07:16:4a:98:08:e0:05:
3b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:4E:3D:E3:66:B6:D2:98:3C:DE:35:22:0A:1D:07:FD:2A:6F:72:F0
X509v3 Authority Key Identifier:
keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Lk4942a20pg83jUiCh0H_SpvcvA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.183.0/24
Signature Algorithm: sha256WithRSAEncryption
30:a2:ed:09:4f:f6:74:ac:cc:92:74:78:de:fc:df:eb:f2:fc:
5e:16:9f:46:ce:ea:cc:3f:8c:a6:77:57:a3:f3:64:10:f7:79:
bf:94:84:42:1f:d3:c3:2a:72:c5:8b:3b:ca:a4:e4:fb:d3:dd:
e2:db:cb:09:4e:de:cd:67:97:27:8d:24:89:c8:32:09:1d:34:
c0:3c:e8:41:78:44:bd:2a:15:9d:e6:00:f9:e0:ab:49:28:cb:
1e:30:ff:4e:7a:dd:43:ce:1a:22:94:09:2a:eb:be:07:db:fe:
6b:53:a3:2b:54:6d:61:b2:4c:a5:4f:02:8a:6f:3c:0f:56:fc:
32:5e:df:41:8d:4f:13:36:26:dd:7c:08:d1:28:d0:1d:a5:64:
4d:d3:f5:2f:5b:e3:eb:4a:14:b3:87:ef:68:2c:51:62:eb:d8:
4c:b7:52:4e:0c:0c:fa:3a:31:09:4d:4c:5a:47:82:2d:ff:44:
90:2e:5c:22:ab:cc:f0:bd:8c:25:1c:08:9b:2b:df:64:10:da:
14:40:cb:22:fc:d6:cc:b6:59:d7:ab:a4:8a:14:0d:80:ad:27:
85:6d:3c:a3:56:56:08:f9:c1:fa:b3:2d:5b:45:17:d2:df:f4:
f0:dc:66:8e:63:a9:0a:4f:bc:e7:6a:f5:12:73:29:7c:55:d9:
b0:8b:2f:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:03 2023 by rpki-client on console-fra.rpki-client.org