Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/HaroGhpHbjYvXy7dVQ0Yzs5dNX8.roa
File: HaroGhpHbjYvXy7dVQ0Yzs5dNX8.roa (raw, json)
Hash identifier: 44c3+2LHzN3aCkld6REqBNf9G301V53iSRw7tyixvqg=
Subject key identifier: 1D:AA:E8:1A:1A:47:6E:36:2F:5F:2E:DD:55:0D:18:CE:CE:5D:35:7F
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 0567EBA0
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/HaroGhpHbjYvXy7dVQ0Yzs5dNX8.roa
Signing time: Sat 01 Jan 2022 15:07:19 +0000
ROA not before: Sat 01 Jan 2022 15:07:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28753
IP address blocks: 85.203.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90696608 (0x567eba0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Jan 1 15:07:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1daae81a1a476e362f5f2edd550d18cece5d357f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d4:7b:10:c6:dd:75:3b:94:8e:4b:41:10:dd:
15:cb:00:7f:51:1a:15:de:90:f4:73:24:2e:3b:48:
9b:e6:53:da:90:a9:81:74:49:c1:40:aa:a5:8a:ba:
9a:d3:df:02:3a:33:26:b1:8e:39:9c:d7:af:82:70:
71:3d:d6:dc:5b:c1:9d:2b:62:77:bf:8f:63:3a:7e:
35:27:e4:9b:a3:35:fd:8a:aa:18:07:7f:69:5b:ec:
f6:71:e7:a2:f5:cc:b7:f3:c9:fe:52:02:2b:e6:53:
59:76:af:0d:7a:d0:b0:b6:b6:7a:3d:81:90:36:3d:
83:2a:7e:78:a9:a8:e1:2d:33:6f:9d:9f:5f:f0:79:
89:1c:6a:b0:2a:14:70:0b:8c:f3:91:a3:38:bf:a9:
30:c5:ac:15:4d:c8:46:98:a8:25:91:52:80:18:07:
a0:6b:9b:59:80:fe:6a:00:68:c5:67:5b:f9:e1:e2:
84:1b:17:24:62:db:0c:78:ef:bb:32:b8:94:d5:2e:
26:02:b0:ec:c1:47:97:ba:31:f1:12:df:8d:94:56:
72:e8:3e:47:a5:5e:2c:f2:78:39:a2:f8:a1:93:1c:
d8:8e:78:26:76:2e:80:4f:a2:01:e4:14:b3:06:e1:
55:23:03:27:07:98:85:ed:13:73:91:89:a5:41:8a:
56:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:AA:E8:1A:1A:47:6E:36:2F:5F:2E:DD:55:0D:18:CE:CE:5D:35:7F
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/HaroGhpHbjYvXy7dVQ0Yzs5dNX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.20.0/24
Signature Algorithm: sha256WithRSAEncryption
82:4b:aa:17:be:ba:80:12:2b:07:c2:23:c9:4e:e5:fd:91:d9:
f7:bb:33:6c:d1:3e:07:49:b2:88:0b:71:25:25:0c:d5:b2:b2:
f6:da:cc:b5:92:a0:50:ae:8f:5a:a3:12:d0:d1:ee:c1:a9:58:
19:60:da:dc:b4:4a:d9:a9:04:98:2d:c0:51:7c:ff:59:01:fb:
ac:62:8b:52:be:1e:77:d3:af:f8:04:64:d1:60:22:67:90:9d:
fb:46:ec:0a:9b:26:ea:f0:5a:e4:38:e0:c4:63:98:94:0d:8a:
28:ab:0a:8e:b3:e8:33:a0:04:6d:be:2f:f3:be:ea:3f:8f:08:
95:b0:89:2c:61:c0:f4:e5:1b:6e:52:05:a9:65:6e:b5:e3:26:
75:dd:cf:8c:84:ea:28:f8:af:eb:bf:68:dd:69:bc:50:6d:db:
21:3f:d1:f5:9f:ad:66:d4:3c:69:f6:91:e5:db:89:be:de:1f:
ab:59:80:4e:03:30:33:1f:88:fa:da:40:18:70:11:fb:05:9d:
56:fe:75:39:66:b5:8c:a3:d7:6c:ce:c3:da:03:fe:01:87:73:
0a:19:20:a5:35:12:83:0b:f9:fe:d8:6b:25:aa:db:f5:62:40:
25:9d:8a:e7:95:00:90:9d:7b:51:f9:1f:74:12:89:f3:73:11:
f9:fd:ef:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:50 2023 by rpki-client on console-ams.rpki-client.org