Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/6db8e0-1780-401a-9cb7-b8cf04b54251/1/lbXCu1VJimjLZrQ0RLNT4SAryX8.roa
File: lbXCu1VJimjLZrQ0RLNT4SAryX8.roa (raw, json)
Hash identifier: EktqjvjdejseLL8sB8MtZiqM1pj3WdzXzu3JIXKvwNY=
Subject key identifier: 95:B5:C2:BB:55:49:8A:68:CB:66:B4:34:44:B3:53:E1:20:2B:C9:7F
Certificate issuer: /CN=d52ad4068948830d9e9e58ace5e1f170348e4024
Certificate serial: 41488E
Authority key identifier: D5:2A:D4:06:89:48:83:0D:9E:9E:58:AC:E5:E1:F1:70:34:8E:40:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1SrUBolIgw2enlis5eHxcDSOQCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/6db8e0-1780-401a-9cb7-b8cf04b54251/1/lbXCu1VJimjLZrQ0RLNT4SAryX8.roa
Signing time: Sat 01 Jan 2022 02:51:10 +0000
ROA not before: Sat 01 Jan 2022 02:51:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207354
IP address blocks: 185.108.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4278414 (0x41488e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d52ad4068948830d9e9e58ace5e1f170348e4024
Validity
Not Before: Jan 1 02:51:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95b5c2bb55498a68cb66b43444b353e1202bc97f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ef:84:d6:20:93:be:62:d9:4b:f1:72:9f:9a:
1e:de:cc:83:4d:3c:97:d1:a5:76:f7:07:08:61:fa:
13:3f:4a:5d:6c:4d:c4:44:6e:b6:2a:a0:1a:7e:17:
dd:56:dd:16:74:fc:7f:a3:32:4f:7a:e9:c9:1d:2d:
9b:4b:c3:57:25:57:c5:10:1c:f7:a1:f4:e4:07:cf:
5f:02:e9:91:3f:78:3f:7b:98:ec:da:b6:2e:da:a7:
7e:a0:4e:95:67:3b:8d:f1:06:e4:83:e8:c0:99:45:
f2:9c:4b:27:b3:66:a0:60:a3:e6:c5:0f:28:75:67:
ee:1b:5e:ac:54:b0:f4:e5:87:55:21:91:6c:3e:2e:
2e:88:83:fd:9c:26:f7:3e:ac:a1:0d:73:2a:bc:26:
d7:f5:09:7a:88:83:e4:52:f0:0e:cd:6c:17:fe:1b:
48:0b:69:f7:4a:17:dd:6b:d8:67:30:3e:15:5d:1e:
ec:db:e2:58:2d:a3:9d:69:da:c1:1f:9d:b8:3d:b7:
c6:ba:47:7e:bb:eb:64:16:51:52:44:38:f9:02:b8:
0b:5a:17:1a:45:b6:c4:61:e1:c6:1c:d8:0c:e0:96:
9d:f1:bd:24:01:14:26:70:df:2b:f5:ce:32:8f:4a:
c7:f5:28:b9:d1:7a:87:12:b2:de:8d:16:c6:7f:da:
1c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:B5:C2:BB:55:49:8A:68:CB:66:B4:34:44:B3:53:E1:20:2B:C9:7F
X509v3 Authority Key Identifier:
keyid:D5:2A:D4:06:89:48:83:0D:9E:9E:58:AC:E5:E1:F1:70:34:8E:40:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1SrUBolIgw2enlis5eHxcDSOQCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6db8e0-1780-401a-9cb7-b8cf04b54251/1/lbXCu1VJimjLZrQ0RLNT4SAryX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6db8e0-1780-401a-9cb7-b8cf04b54251/1/1SrUBolIgw2enlis5eHxcDSOQCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.108.126.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:f7:27:77:4d:1d:84:04:8d:41:d8:2e:ba:c3:21:9f:3d:e5:
11:ac:03:6f:31:e7:2b:a3:3c:4c:df:5d:6f:f2:bb:a4:ea:7f:
f1:9b:46:37:6f:d8:64:a8:75:df:54:e8:b5:16:5e:31:9b:be:
31:f9:90:2c:e7:85:4d:8e:07:c9:78:49:a7:94:b7:d3:c2:e1:
a9:ac:8a:4e:1f:fd:79:f5:1a:40:3b:e7:44:60:04:e9:23:e6:
cb:19:37:d7:4b:8b:a5:3b:85:f6:7e:78:a2:fb:4a:c6:a6:9e:
d8:ef:73:d8:08:c2:1b:4f:a4:4a:ca:0f:a5:d9:8e:e4:16:7a:
2a:be:02:5c:78:fc:38:6d:d8:1c:20:eb:57:d9:13:ae:5a:ab:
1f:f7:89:ac:e7:a1:b3:5b:f1:97:6e:22:29:2a:19:c6:38:19:
ff:c3:33:6e:d5:18:af:1f:79:b7:31:2b:bb:fb:06:7a:37:91:
24:da:f0:1a:32:cf:bf:2a:02:55:eb:9b:15:ba:a2:bc:59:18:
6d:4b:df:3b:e7:cb:26:d4:63:62:f1:1c:5b:91:d0:90:c4:a7:
89:51:e5:b6:fd:98:1d:5a:e4:9a:54:cd:a4:bb:d0:a2:ad:b3:
95:16:d6:dd:f1:46:b7:e1:14:37:8f:e7:e5:6b:6c:f9:99:32:
41:43:c2:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:15 2023 by rpki-client on console.sobornost.net