Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/eda8ef-36d3-45d4-911e-5fa90c13e1b7/1/LmdAoZmUTUtjC_kygh-1RdxbgC0.roa
File: LmdAoZmUTUtjC_kygh-1RdxbgC0.roa (raw, json)
Hash identifier: KGLNMDto7uSh8bRzYPVJM1B+09y/wCwDvKDrp2rdI/w=
Subject key identifier: 2E:67:40:A1:99:94:4D:4B:63:0B:F9:32:82:1F:B5:45:DC:5B:80:2D
Certificate issuer: /CN=f8cfdc0e5edb1cc323f9344fe2827c793e95ac6f
Certificate serial: 0249B1E2
Authority key identifier: F8:CF:DC:0E:5E:DB:1C:C3:23:F9:34:4F:E2:82:7C:79:3E:95:AC:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-M_cDl7bHMMj-TRP4oJ8eT6VrG8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/eda8ef-36d3-45d4-911e-5fa90c13e1b7/1/LmdAoZmUTUtjC_kygh-1RdxbgC0.roa
Signing time: Sat 01 Jan 2022 15:00:51 +0000
ROA not before: Sat 01 Jan 2022 15:00:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 194.113.20.0/23 maxlen: 24
2001:678:b38::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38384098 (0x249b1e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8cfdc0e5edb1cc323f9344fe2827c793e95ac6f
Validity
Not Before: Jan 1 15:00:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e6740a199944d4b630bf932821fb545dc5b802d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d1:95:43:da:02:86:f5:40:44:a3:6d:d8:22:
f1:5c:22:8b:2a:1d:7b:1a:48:93:70:3e:93:bf:dc:
9a:a9:17:77:17:6b:ce:35:1d:3d:2a:3e:6e:6f:1f:
99:17:3d:d8:21:96:fa:be:e4:d2:df:b5:c3:40:ec:
56:22:12:94:21:05:92:c2:82:0f:5d:d3:7e:f8:75:
d6:74:78:eb:8f:32:50:09:70:41:63:16:f1:8a:8f:
a1:83:a9:aa:f2:d8:48:b5:c2:ed:2c:4d:c7:6c:8c:
4d:19:aa:70:59:7c:a5:64:48:69:38:23:af:e0:96:
e6:f3:ff:af:f0:be:0c:8f:83:e4:70:2b:b8:d4:fb:
7e:cf:ef:4a:c1:7a:9b:42:f3:14:df:8a:1e:1a:e1:
b7:3d:9d:fe:76:3b:1f:86:8c:6c:37:62:c6:8a:fe:
29:c5:bf:76:82:b8:69:27:b0:b9:17:86:74:bc:96:
fc:88:38:a0:24:b5:ee:46:83:3e:89:17:40:a2:ce:
ee:43:98:82:d4:07:37:1f:63:a5:60:7e:72:e6:2d:
08:a4:e4:1a:3d:e5:fb:d5:3d:ae:c3:8f:48:53:5b:
66:75:86:5e:16:23:9a:5a:fe:f9:b1:1a:fd:13:10:
3e:bd:b5:2e:8f:8a:6f:c8:a8:a7:47:90:11:29:e8:
96:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:67:40:A1:99:94:4D:4B:63:0B:F9:32:82:1F:B5:45:DC:5B:80:2D
X509v3 Authority Key Identifier:
keyid:F8:CF:DC:0E:5E:DB:1C:C3:23:F9:34:4F:E2:82:7C:79:3E:95:AC:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-M_cDl7bHMMj-TRP4oJ8eT6VrG8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/eda8ef-36d3-45d4-911e-5fa90c13e1b7/1/LmdAoZmUTUtjC_kygh-1RdxbgC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/eda8ef-36d3-45d4-911e-5fa90c13e1b7/1/1-M_cDl7bHMMj-TRP4oJ8eT6VrG8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.113.20.0/23
IPv6:
2001:678:b38::/48
Signature Algorithm: sha256WithRSAEncryption
1f:38:42:f0:b8:54:39:a5:d4:89:3a:47:12:97:5e:c2:9d:c8:
ea:a8:6c:75:5f:c3:14:3c:31:a8:64:b3:e3:c5:a8:10:05:2d:
ce:51:89:93:ce:db:8b:a8:06:5a:40:5a:3a:59:e8:3f:2d:4a:
3f:52:cb:11:a4:93:f9:fb:63:49:7d:8a:ad:e1:a4:8f:9b:56:
3b:ea:1f:54:23:70:53:28:f4:39:37:3f:88:08:90:5b:07:a6:
58:1b:ea:37:c2:91:35:32:b1:4d:99:32:0b:33:8b:b9:d2:8a:
70:dd:7f:fa:b5:4c:3b:d0:48:e6:09:33:7d:bb:98:f2:9f:fa:
51:1a:d4:1c:29:2d:ee:73:82:ca:03:43:42:d0:12:2e:d4:db:
17:da:e8:37:8a:21:b3:0b:e8:69:79:5d:0d:26:aa:87:ad:92:
bf:dc:d3:93:53:00:99:2a:70:af:20:b0:58:c0:68:42:ba:03:
d9:0b:59:54:ce:07:ba:29:d3:eb:ad:78:02:57:49:a6:9c:47:
88:70:94:93:0e:8f:b1:a3:95:cb:5f:26:88:65:f9:72:d8:01:
84:a2:44:a0:31:92:c5:51:2a:c8:03:16:d3:79:d1:de:13:89:
f7:22:ac:4f:eb:74:00:f4:dc:72:22:9c:5e:fa:45:58:7a:e5:
c7:88:63:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:42 2023 by rpki-client on console.sobornost.net