Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/4fe0ec-61b3-47c2-9c29-e4cfbcc8b8d0/1/lrlCBQrSEvjlIwv-KOvxEZtfQHA.roa
File: lrlCBQrSEvjlIwv-KOvxEZtfQHA.roa (raw, json)
Hash identifier: lwCd7oakicf7MNIYfmbCm/9p29OBu12KaRBX7XkJWVw=
Subject key identifier: 96:B9:42:05:0A:D2:12:F8:E5:23:0B:FE:28:EB:F1:11:9B:5F:40:70
Certificate issuer: /CN=340729dc607b486c324d9114de45242a12e4b5ba
Certificate serial: 036C796E
Authority key identifier: 34:07:29:DC:60:7B:48:6C:32:4D:91:14:DE:45:24:2A:12:E4:B5:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NAcp3GB7SGwyTZEU3kUkKhLktbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/4fe0ec-61b3-47c2-9c29-e4cfbcc8b8d0/1/lrlCBQrSEvjlIwv-KOvxEZtfQHA.roa
Signing time: Sat 01 Jan 2022 07:53:23 +0000
ROA not before: Sat 01 Jan 2022 07:53:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206236
IP address blocks: 195.245.66.0/24 maxlen: 24
2a10:1a40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57440622 (0x36c796e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=340729dc607b486c324d9114de45242a12e4b5ba
Validity
Not Before: Jan 1 07:53:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=96b942050ad212f8e5230bfe28ebf1119b5f4070
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:40:fb:9d:c2:4f:fa:b3:2a:a9:39:b8:d7:0c:
de:12:d4:1b:cb:e4:34:c3:e8:59:d4:5e:d4:3e:b0:
0d:08:cd:6e:e2:d3:c8:30:65:d3:af:6e:f1:93:63:
7d:ae:39:d7:0b:84:5d:01:5c:98:64:7c:d3:6e:67:
73:d9:41:8a:62:f4:18:65:fd:7d:29:29:c4:7d:a3:
c1:97:81:d7:09:44:7b:06:ce:80:53:a6:d2:29:b9:
ea:7d:f8:85:21:6a:f1:6e:22:d6:8b:fc:54:5d:eb:
0c:24:aa:49:9e:19:6f:28:bd:e5:1c:fd:33:9d:e7:
a7:3d:4d:31:59:b9:2e:77:af:3d:c0:9e:3c:db:6b:
7e:89:c0:74:63:fb:3b:d9:1e:b2:18:1a:9f:b5:39:
f4:68:2f:ad:b5:8f:58:e6:fd:cf:59:ce:53:ce:39:
e9:92:cd:c0:e0:bc:45:7c:e9:6f:16:3d:ac:97:13:
15:c9:9b:b0:40:6b:67:ed:e2:87:cc:7f:8f:31:7c:
3d:cd:3a:f0:17:5a:5e:51:1f:a4:80:5c:2a:37:29:
e3:3d:4c:d7:0a:07:39:75:12:67:2d:73:90:c8:1f:
97:57:e8:67:02:94:03:83:97:38:78:4e:de:b3:12:
0c:6c:a7:fb:9e:19:c0:ca:3a:4f:30:f3:b5:4e:5f:
85:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:B9:42:05:0A:D2:12:F8:E5:23:0B:FE:28:EB:F1:11:9B:5F:40:70
X509v3 Authority Key Identifier:
keyid:34:07:29:DC:60:7B:48:6C:32:4D:91:14:DE:45:24:2A:12:E4:B5:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NAcp3GB7SGwyTZEU3kUkKhLktbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/4fe0ec-61b3-47c2-9c29-e4cfbcc8b8d0/1/lrlCBQrSEvjlIwv-KOvxEZtfQHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/4fe0ec-61b3-47c2-9c29-e4cfbcc8b8d0/1/NAcp3GB7SGwyTZEU3kUkKhLktbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.245.66.0/24
IPv6:
2a10:1a40::/29
Signature Algorithm: sha256WithRSAEncryption
39:8d:b1:52:12:e1:2d:96:21:17:4c:65:a9:86:27:fc:5b:43:
dc:43:82:52:6f:2d:dd:ef:90:fe:31:46:91:b7:4a:dd:b7:0e:
70:05:57:5a:ec:cf:a7:d7:69:2a:36:6e:be:15:34:58:6b:83:
5e:84:8e:b5:ae:17:da:78:6e:c3:f4:f3:77:d4:ab:22:61:fe:
d7:ba:b9:93:18:78:54:b9:96:8f:3d:a9:9a:1d:6b:09:5a:9b:
c6:05:ae:93:38:53:0c:fe:04:12:a7:ef:9f:21:b1:f5:1c:c6:
5d:4a:6d:98:48:7e:90:13:f8:c7:d4:28:40:87:4c:a7:37:f0:
12:f0:ed:72:79:45:bd:7d:bd:83:ca:98:5a:5a:1b:33:5b:0a:
f0:47:fe:64:f7:7c:1a:20:c6:fd:19:2d:15:b5:5f:9f:55:7e:
3c:2f:90:f6:70:32:e3:71:4b:c1:ef:41:5d:bd:db:80:b2:27:
24:d7:3f:21:c1:dd:e4:91:43:97:8a:c3:2d:ca:d5:d7:56:5b:
9c:43:80:0a:9f:63:f9:11:8f:6b:e1:ff:27:cb:38:f1:3e:bf:
23:a5:9d:16:90:b5:df:82:d4:f5:84:1b:bf:ec:19:e3:b1:3f:
23:36:84:40:24:b4:26:7e:70:d3:92:f4:e1:7f:0c:d9:da:bf:
ed:c1:ea:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:23 2023 by rpki-client on console.sobornost.net