Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/hchsMr6z5rhZFMWTx6jyHLPhm5c.roa
File: hchsMr6z5rhZFMWTx6jyHLPhm5c.roa (raw, json)
Hash identifier: gnqVHahmzou9SYQHk3Cv3cRcr7l34jGVnC946eFwwpk=
Subject key identifier: 85:C8:6C:32:BE:B3:E6:B8:59:14:C5:93:C7:A8:F2:1C:B3:E1:9B:97
Certificate issuer: /CN=a2b12e8df3abd5559f9cf9680af65dd16589de86
Certificate serial: 0182588A7302FCB7CC15A734DE1256626147
Authority key identifier: A2:B1:2E:8D:F3:AB:D5:55:9F:9C:F9:68:0A:F6:5D:D1:65:89:DE:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/hchsMr6z5rhZFMWTx6jyHLPhm5c.roa
Signing time: Mon 01 Aug 2022 08:34:04 +0000
ROA not before: Mon 01 Aug 2022 08:34:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208545
IP address blocks: 2a01:170:1050::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:58:8a:73:02:fc:b7:cc:15:a7:34:de:12:56:62:61:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2b12e8df3abd5559f9cf9680af65dd16589de86
Validity
Not Before: Aug 1 08:34:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85c86c32beb3e6b85914c593c7a8f21cb3e19b97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:1d:8a:bd:6e:e1:26:ab:7d:fd:ab:bd:e9:f4:
eb:c0:bc:7b:f9:d1:99:a7:b8:0b:77:27:df:50:f4:
a5:dd:72:ec:b2:66:4e:3b:4f:43:f8:8f:4a:05:fc:
91:2d:e0:21:c7:d3:93:18:0f:ba:8f:e2:45:7a:68:
2f:0b:51:f2:11:50:4f:e8:b9:94:11:ee:81:cb:87:
48:0e:e1:10:e5:8c:7c:41:6c:cd:26:61:69:a2:a6:
08:7a:76:e6:b0:44:1b:69:22:20:e8:f3:e7:f9:8a:
2f:cf:d7:40:eb:02:e2:43:b4:c3:8f:34:fc:dd:bd:
e7:d2:45:c5:93:b9:00:87:51:ca:a4:a1:98:2e:d7:
b5:25:7a:7b:0f:e8:98:37:27:a0:33:1e:7b:b9:db:
e5:e6:83:89:89:9e:72:31:b7:4a:3d:30:36:bb:ca:
7f:4c:ce:ca:3f:ba:ae:e6:1b:ae:69:03:08:68:84:
3e:23:2b:3f:81:5e:63:48:00:89:87:40:77:a0:2e:
05:db:29:e2:c9:70:e5:18:66:48:56:36:ab:46:97:
2b:ba:ed:16:f5:ae:b6:25:9e:80:a2:64:14:21:f1:
33:5c:f1:0a:4e:7a:b6:08:f6:d0:12:d7:1f:1a:28:
95:0d:6f:95:47:b1:01:e3:a1:d9:8a:11:64:3e:74:
4a:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:C8:6C:32:BE:B3:E6:B8:59:14:C5:93:C7:A8:F2:1C:B3:E1:9B:97
X509v3 Authority Key Identifier:
keyid:A2:B1:2E:8D:F3:AB:D5:55:9F:9C:F9:68:0A:F6:5D:D1:65:89:DE:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/hchsMr6z5rhZFMWTx6jyHLPhm5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:170:1050::/48
Signature Algorithm: sha256WithRSAEncryption
35:e0:d9:99:d2:a6:36:c2:94:93:62:a8:e0:4a:43:2a:4d:22:
6d:fb:f1:50:a5:e7:c7:b2:44:76:61:85:5a:c8:b2:48:84:f8:
6d:4b:51:50:f3:b0:1c:53:ef:cf:19:ef:15:d9:4a:61:38:ec:
76:7b:91:c9:c6:ad:9c:f8:95:fa:2d:f5:29:98:08:63:3f:ef:
62:3f:8d:65:3c:d4:6e:31:5c:75:cc:0d:15:e0:0f:7f:b6:10:
15:25:c3:ad:55:b8:4c:3b:0a:56:ff:33:1c:f2:05:b5:44:35:
8c:be:2c:12:67:2d:8e:a7:67:5b:48:ad:f4:e7:dc:2f:a5:13:
ec:6f:7a:fd:1a:76:bc:3a:59:80:ff:1c:95:53:e6:fc:12:95:
02:20:19:c1:d0:73:1b:ea:59:d1:6c:bc:ce:8d:e9:4b:8a:2e:
72:89:a3:0a:09:f0:b1:16:d4:5f:25:8e:22:60:a3:6a:ab:48:
47:79:25:9b:2d:d1:ed:ec:7e:d8:47:b8:2c:69:87:eb:8f:05:
88:df:11:ae:6a:6d:9e:e6:b7:98:32:eb:f1:6e:59:46:17:8f:
66:a2:2d:92:77:82:87:a8:09:38:f4:31:ba:8c:1f:af:06:c3:
b6:20:4a:e3:88:d5:f5:86:de:03:0e:e7:96:0e:4a:f4:06:40:
5b:27:18:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:27 2024 by rpki-client on console-fra.rpki-client.org