Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/929f1b-b047-48bf-a8f1-1bed2ee065f0/1/hYWpmOJWtTyY51f-1VC3jO2CE8Q.roa
File: hYWpmOJWtTyY51f-1VC3jO2CE8Q.roa (raw, json)
Hash identifier: BK5R8JikACu4LkzvRl5Li46g/6lKApdhZmqrSRSqQOQ=
Subject key identifier: 85:85:A9:98:E2:56:B5:3C:98:E7:57:FE:D5:50:B7:8C:ED:82:13:C4
Certificate issuer: /CN=057407d2e7b2ff4bcee6ea10d40852ecdcbc69b8
Certificate serial: 0DF591EA
Authority key identifier: 05:74:07:D2:E7:B2:FF:4B:CE:E6:EA:10:D4:08:52:EC:DC:BC:69:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BXQH0uey_0vO5uoQ1AhS7Ny8abg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/929f1b-b047-48bf-a8f1-1bed2ee065f0/1/hYWpmOJWtTyY51f-1VC3jO2CE8Q.roa
Signing time: Sat 01 Jan 2022 04:56:07 +0000
ROA not before: Sat 01 Jan 2022 04:56:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47866
IP address blocks: 93.158.36.0/23 maxlen: 23
93.158.32.0/19 maxlen: 19
93.158.32.0/21 maxlen: 21
185.28.28.0/22 maxlen: 22
93.158.0.0/18 maxlen: 18
93.158.16.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 234197482 (0xdf591ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=057407d2e7b2ff4bcee6ea10d40852ecdcbc69b8
Validity
Not Before: Jan 1 04:56:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8585a998e256b53c98e757fed550b78ced8213c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:9e:9c:37:67:01:03:65:7f:7c:07:9e:5c:00:
62:44:e7:76:09:84:4f:6b:29:89:be:d1:8d:97:49:
b8:8e:fa:b8:ec:63:48:33:0d:66:98:ce:fc:ea:3b:
ef:d8:f6:d0:48:26:e7:26:59:1f:93:1b:9c:34:18:
23:24:74:66:ab:45:b6:86:a0:d3:39:dc:51:11:7e:
61:1c:7a:8e:79:07:39:94:71:5c:b4:48:68:2f:81:
38:f8:d9:81:ad:e2:af:b3:8b:6a:6f:1b:15:6a:d5:
49:d5:53:30:83:19:33:24:9d:96:b7:2e:d9:0c:16:
7d:94:65:cf:eb:67:43:14:1a:da:cf:f7:ed:c1:af:
66:56:b7:fb:e9:a6:87:01:24:c5:d2:b5:23:79:bd:
14:f0:2c:92:ce:a2:15:58:59:87:e4:65:a8:95:53:
40:d4:56:78:4a:32:01:7b:98:79:20:4d:98:1b:ae:
28:51:ae:06:9f:a5:3f:d0:ff:7d:7d:d2:82:85:b6:
98:26:d3:73:a3:1a:11:fd:ba:ee:9f:57:84:62:f2:
ae:ab:6d:dc:81:a5:ca:73:5a:c5:ac:8a:43:36:ca:
98:05:41:bb:5b:8f:af:1b:9c:b8:e0:fe:19:54:f1:
c8:5f:ce:89:9b:ac:24:f3:50:22:0d:c0:55:c1:c6:
b0:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:85:A9:98:E2:56:B5:3C:98:E7:57:FE:D5:50:B7:8C:ED:82:13:C4
X509v3 Authority Key Identifier:
keyid:05:74:07:D2:E7:B2:FF:4B:CE:E6:EA:10:D4:08:52:EC:DC:BC:69:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BXQH0uey_0vO5uoQ1AhS7Ny8abg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/929f1b-b047-48bf-a8f1-1bed2ee065f0/1/hYWpmOJWtTyY51f-1VC3jO2CE8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/929f1b-b047-48bf-a8f1-1bed2ee065f0/1/BXQH0uey_0vO5uoQ1AhS7Ny8abg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.158.0.0/18
185.28.28.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:4e:f8:51:fd:63:c6:5a:dd:07:2b:99:98:4b:22:82:f4:73:
02:d7:10:2f:51:d4:a1:b9:5f:13:3a:7d:0f:33:c4:12:56:a4:
2e:e8:f7:34:6e:93:30:41:a9:9c:78:7c:ca:0f:b6:57:4b:02:
43:f2:cf:ea:4a:dc:01:a2:b9:6b:b7:89:73:00:eb:ab:d6:4e:
76:35:13:89:5d:19:de:37:68:54:de:bd:3b:bb:0e:70:c8:4d:
4e:db:24:df:fa:de:29:78:01:71:aa:97:e2:1f:3b:ac:72:8e:
d1:9a:b6:1b:af:61:35:db:07:12:b1:e6:e2:66:c9:ed:55:aa:
c8:cf:f4:b9:b9:76:aa:5a:b1:d9:17:e2:00:de:5a:9e:45:f5:
2c:27:8c:d5:00:f8:58:fa:9d:7c:ec:5b:2c:c5:30:06:f2:22:
56:cf:0e:e6:63:93:8f:78:ec:2f:e5:36:e8:bc:bf:47:c5:e1:
83:96:cc:d6:e7:43:80:fe:28:09:76:be:c2:b6:90:6d:bd:f3:
65:66:b8:07:89:23:9a:31:12:e6:55:19:a6:fa:98:a8:83:39:
d6:48:53:79:4f:bb:9a:b6:3c:1b:5a:ec:36:0a:b7:7c:32:4f:
a9:68:48:13:0c:02:f3:49:a1:a0:1d:c5:01:bf:5d:fa:d8:93:
46:c6:88:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:06 2024 by rpki-client on console-fra.rpki-client.org