Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/908143-f916-4718-8f97-4bd3392d55d1/1/LFLFNTSR9XUE_rDEQvSUw9xIwcg.roa
File: LFLFNTSR9XUE_rDEQvSUw9xIwcg.roa (raw, json)
Hash identifier: tJuQbqC31JF2pEjtEx8injcDWZjgmKiV9JVbzr3H9S4=
Subject key identifier: 2C:52:C5:35:34:91:F5:75:04:FE:B0:C4:42:F4:94:C3:DC:48:C1:C8
Certificate issuer: /CN=46fe7b56722245116d4234be484a02a48a1dde1f
Certificate serial: 0267FC90
Authority key identifier: 46:FE:7B:56:72:22:45:11:6D:42:34:BE:48:4A:02:A4:8A:1D:DE:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rv57VnIiRRFtQjS-SEoCpIod3h8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/908143-f916-4718-8f97-4bd3392d55d1/1/LFLFNTSR9XUE_rDEQvSUw9xIwcg.roa
Signing time: Wed 08 Jun 2022 12:47:02 +0000
ROA not before: Wed 08 Jun 2022 12:47:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205029
IP address blocks: 185.79.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40369296 (0x267fc90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46fe7b56722245116d4234be484a02a48a1dde1f
Validity
Not Before: Jun 8 12:47:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c52c5353491f57504feb0c442f494c3dc48c1c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3c:88:66:c7:7f:0a:a2:65:9f:46:1c:06:ad:
2d:e1:e3:fa:c0:a1:3f:67:ab:05:41:1e:5b:a7:eb:
e6:ae:84:d2:fd:eb:5c:fd:65:c1:ec:1f:3a:68:1b:
c3:54:b1:60:52:2a:72:e9:7b:e0:53:4f:56:27:ec:
8e:e7:2f:98:f0:68:2f:55:af:2e:33:9e:c8:db:9b:
a1:ce:61:7e:ae:31:e2:e9:19:7c:36:7e:08:8e:61:
7d:ea:da:7c:45:da:f1:b5:02:09:22:d5:46:fc:85:
84:bb:86:4a:b7:96:f0:75:1a:15:11:f9:36:3b:ee:
81:3d:56:00:d9:e0:92:66:10:15:93:82:65:10:48:
ad:a1:73:22:82:33:5e:8b:53:13:1b:3d:35:90:19:
2f:94:71:16:2a:96:0e:d7:02:78:3f:1f:5f:b7:5c:
03:fd:a4:3a:37:73:89:56:4e:71:48:3a:cf:af:97:
2c:9e:43:9c:28:31:e1:ee:53:f9:fa:33:b5:30:7a:
3c:9d:0b:74:ed:ee:86:41:a1:bb:38:3f:a5:52:49:
ad:51:22:9d:18:19:e6:a6:6f:2e:4d:b6:e1:87:3e:
91:92:29:31:c7:b3:18:57:03:11:cd:be:e2:2d:a8:
05:0d:46:5a:74:05:44:65:9f:4a:84:4b:bc:64:a2:
4a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:52:C5:35:34:91:F5:75:04:FE:B0:C4:42:F4:94:C3:DC:48:C1:C8
X509v3 Authority Key Identifier:
keyid:46:FE:7B:56:72:22:45:11:6D:42:34:BE:48:4A:02:A4:8A:1D:DE:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rv57VnIiRRFtQjS-SEoCpIod3h8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/908143-f916-4718-8f97-4bd3392d55d1/1/LFLFNTSR9XUE_rDEQvSUw9xIwcg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/908143-f916-4718-8f97-4bd3392d55d1/1/Rv57VnIiRRFtQjS-SEoCpIod3h8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.79.201.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:42:63:6e:9f:2f:a7:45:cf:49:f2:e8:9c:cc:b7:8b:f2:a1:
0b:f0:43:46:c6:19:e8:09:d7:9f:03:9a:bf:c6:e9:e0:06:45:
c9:9e:c4:a4:00:61:3a:e2:24:c0:78:ab:d8:9b:8b:0c:8f:c7:
8f:2e:24:c3:a0:ca:b2:ed:7c:81:0f:cf:96:c3:87:5c:4b:73:
ad:04:42:02:9c:07:b0:c8:5e:fd:42:03:a3:8d:a9:ed:68:75:
52:bc:92:aa:d5:e5:67:73:75:70:50:32:74:88:d0:4b:6a:10:
5f:e7:b3:90:62:b0:1f:75:4e:69:ba:d2:ba:c1:7e:37:75:da:
34:40:d7:b7:4b:da:c8:d6:8d:5c:47:76:96:16:b2:f0:38:15:
55:3d:8c:12:d5:41:e6:a2:3b:ff:78:66:4f:1a:bc:52:4e:bd:
67:6b:cc:81:6f:0d:9f:58:b9:b3:4d:07:b7:9f:18:75:a2:a2:
fa:33:86:23:6a:6c:10:1d:4c:f7:bb:7f:73:48:1c:1b:44:2a:
7f:0d:33:98:82:73:81:fc:5d:3d:93:e1:8d:a0:26:4a:4d:b9:
dc:f8:4e:72:72:35:ae:83:c0:18:af:04:29:37:b2:44:4d:d9:
08:71:72:ae:02:50:ed:74:33:0f:71:c9:e4:36:76:df:56:64:
21:8b:94:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:23 2024 by rpki-client on console-ams.rpki-client.org