Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/9488d5-a8d3-44b5-92df-58caf4701be3/1/lkIRMCAv-Ls1uspF5j2Ce08bSoY.roa
File: lkIRMCAv-Ls1uspF5j2Ce08bSoY.roa (raw, json)
Hash identifier: kGFasqxrlZc/DBIogJEyIheChj1bYywNuuROkhcJqLw=
Subject key identifier: 96:42:11:30:20:2F:F8:BB:35:BA:CA:45:E6:3D:82:7B:4F:1B:4A:86
Certificate issuer: /CN=7beca4012bf7b5056e2e0a161eb4618876c9112a
Certificate serial: 01857039A6272DC6E1E120D68737A937AC1D
Authority key identifier: 7B:EC:A4:01:2B:F7:B5:05:6E:2E:0A:16:1E:B4:61:88:76:C9:11:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e-ykASv3tQVuLgoWHrRhiHbJESo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/9488d5-a8d3-44b5-92df-58caf4701be3/1/lkIRMCAv-Ls1uspF5j2Ce08bSoY.roa
Signing time: Mon 02 Jan 2023 02:05:04 +0000
ROA not before: Mon 02 Jan 2023 02:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60672
IP address blocks: 82.192.106.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:a6:27:2d:c6:e1:e1:20:d6:87:37:a9:37:ac:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7beca4012bf7b5056e2e0a161eb4618876c9112a
Validity
Not Before: Jan 2 02:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96421130202ff8bb35baca45e63d827b4f1b4a86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:f4:8a:d9:07:6a:f3:ad:72:37:bf:3d:bc:50:
e5:fe:13:32:fd:11:68:d6:57:90:75:42:2b:74:f1:
fa:f0:91:d8:78:7f:29:10:4a:b9:08:53:82:66:1e:
50:3c:e4:aa:39:b7:cc:b4:b6:4c:97:8e:c1:f5:70:
60:a2:06:dc:fb:5f:eb:2e:1a:c9:e7:b5:a8:97:8c:
3c:e8:66:99:be:8e:c4:72:18:1d:53:69:e7:6e:cb:
13:30:86:a4:07:cf:ed:a5:8b:7e:20:ea:68:b2:5a:
78:e0:ae:2f:b5:3a:a1:04:07:28:3a:14:26:96:2f:
10:7f:54:85:8d:25:fd:e7:a9:a3:c7:fb:48:74:a8:
82:fc:8e:2a:32:43:7a:f3:bd:ba:93:7d:3c:5b:42:
f6:1a:19:5d:24:a4:7b:6c:38:04:bb:59:8e:b6:b5:
17:27:02:39:db:ef:d2:82:ea:70:63:87:8b:a8:5b:
42:ba:42:a4:2e:c5:50:cc:4e:a9:ea:f2:fe:3a:1b:
89:ff:9a:a4:7d:cc:93:cb:73:0e:06:6d:db:c8:10:
4b:54:36:74:e1:25:07:86:ed:b2:3b:67:af:fd:30:
09:37:94:5a:e1:b0:40:36:0a:ac:5f:c4:0d:27:ae:
97:82:40:fc:f9:b8:e5:26:73:7c:af:d2:b0:1b:0f:
7f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:42:11:30:20:2F:F8:BB:35:BA:CA:45:E6:3D:82:7B:4F:1B:4A:86
X509v3 Authority Key Identifier:
keyid:7B:EC:A4:01:2B:F7:B5:05:6E:2E:0A:16:1E:B4:61:88:76:C9:11:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e-ykASv3tQVuLgoWHrRhiHbJESo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/9488d5-a8d3-44b5-92df-58caf4701be3/1/lkIRMCAv-Ls1uspF5j2Ce08bSoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/9488d5-a8d3-44b5-92df-58caf4701be3/1/e-ykASv3tQVuLgoWHrRhiHbJESo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.192.106.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:e5:86:fb:b1:71:70:42:b4:65:0c:e2:3c:cc:a2:ed:67:e7:
b2:35:f3:d2:c3:26:b2:c3:b8:52:b0:eb:c7:19:85:75:11:36:
ac:af:33:c8:b8:42:e9:34:7a:6c:43:5b:b8:dd:66:72:cc:50:
ce:6a:3f:be:4c:f1:6b:d0:a4:fe:83:29:d0:18:c1:9b:b3:45:
5b:eb:cb:94:ef:91:15:24:91:b3:dd:22:2d:6f:cc:ac:cf:ca:
97:e2:21:f3:b5:80:f5:5f:09:cc:92:60:cd:a1:ba:24:8d:5a:
78:79:f8:f6:ed:41:4f:ba:78:73:39:ae:1b:9b:36:01:1e:00:
b1:30:24:4a:bb:ea:16:e8:21:e2:bf:06:f9:95:73:ff:67:d3:
96:c5:de:3e:f5:bc:b6:45:cc:42:92:ef:75:72:d3:85:74:0a:
04:9a:87:74:31:71:8e:b4:bb:71:7d:08:42:1b:dd:36:51:10:
d8:03:11:94:d9:8b:7c:ee:13:4e:5c:8d:bf:a7:fe:7d:80:83:
1c:02:d9:37:2b:1e:a4:22:dd:99:e3:e8:51:6b:cc:20:a7:c5:
7e:17:d8:6a:2a:75:bf:62:f9:6e:8b:b3:98:f0:07:80:8d:83:
ba:14:1e:60:67:3e:04:d9:17:a0:ec:9a:3a:8e:36:13:cd:de:
4e:44:de:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:38:16 2025 by rpki-client