Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/54e912-b503-454c-a433-4def57365169/1/hnUUNRhTnXI4L84jGmO3-KW6tTQ.roa
File: hnUUNRhTnXI4L84jGmO3-KW6tTQ.roa (raw, json)
Hash identifier: qMRrw2Y06TDaMys4TDqfAyNkjlzrztZExDQ1yoRt2wA=
Subject key identifier: 86:75:14:35:18:53:9D:72:38:2F:CE:23:1A:63:B7:F8:A5:BA:B5:34
Certificate issuer: /CN=7a0bcdee8ce839c4d20413c862423cca04fdc60a
Certificate serial: 0183CAFDD6BF97C0739868CFEB813473DF8B
Authority key identifier: 7A:0B:CD:EE:8C:E8:39:C4:D2:04:13:C8:62:42:3C:CA:04:FD:C6:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/egvN7ozoOcTSBBPIYkI8ygT9xgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/54e912-b503-454c-a433-4def57365169/1/hnUUNRhTnXI4L84jGmO3-KW6tTQ.roa
Signing time: Wed 12 Oct 2022 06:59:36 +0000
ROA not before: Wed 12 Oct 2022 06:59:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29319
IP address blocks: 84.23.32.0/20 maxlen: 32
217.70.16.0/20 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ca:fd:d6:bf:97:c0:73:98:68:cf:eb:81:34:73:df:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a0bcdee8ce839c4d20413c862423cca04fdc60a
Validity
Not Before: Oct 12 06:59:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8675143518539d72382fce231a63b7f8a5bab534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0d:99:0b:3c:3d:c8:ea:f1:30:fd:ed:80:4c:
e1:13:fd:f7:88:af:ae:9b:cc:72:5c:8e:0f:64:2e:
a7:90:f2:94:81:4f:d9:ef:b8:76:30:ed:5b:92:dd:
ee:23:ab:90:0f:e1:1b:93:24:28:c5:d9:0d:61:ba:
d4:a1:bb:56:88:d3:f0:61:59:98:89:f0:81:bd:58:
23:14:3a:89:9d:70:ab:ac:25:e1:56:48:82:4f:2e:
0c:d2:93:70:5e:13:57:eb:42:25:86:04:ac:bd:0e:
93:43:28:13:b2:5e:73:a6:38:41:6f:94:ea:86:d0:
f7:09:96:52:63:1b:33:ef:15:3c:c4:79:d4:c8:d2:
ef:80:a3:cc:2e:82:69:31:cd:f9:62:b1:9c:39:9f:
df:d8:97:96:0e:b5:86:d7:6c:eb:ba:82:55:5d:c4:
24:ba:18:46:1e:8f:ee:8d:ce:54:fb:df:3c:62:99:
71:71:43:16:f8:f0:10:12:87:8b:21:b1:7a:73:1c:
72:67:61:4f:db:48:cc:97:96:b3:47:d7:cf:b1:54:
30:c5:75:c8:42:37:91:be:64:e1:58:7a:cd:d3:1d:
89:05:89:76:be:e0:c7:45:f5:28:3c:95:65:13:8a:
84:74:85:2d:7c:74:1b:36:51:8f:eb:1f:63:27:10:
90:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:75:14:35:18:53:9D:72:38:2F:CE:23:1A:63:B7:F8:A5:BA:B5:34
X509v3 Authority Key Identifier:
keyid:7A:0B:CD:EE:8C:E8:39:C4:D2:04:13:C8:62:42:3C:CA:04:FD:C6:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/egvN7ozoOcTSBBPIYkI8ygT9xgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/54e912-b503-454c-a433-4def57365169/1/hnUUNRhTnXI4L84jGmO3-KW6tTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/54e912-b503-454c-a433-4def57365169/1/egvN7ozoOcTSBBPIYkI8ygT9xgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.23.32.0/20
217.70.16.0/20
Signature Algorithm: sha256WithRSAEncryption
a1:bb:a7:d9:87:59:20:2d:68:ff:92:db:5e:57:01:02:50:5d:
32:87:bc:7a:7c:21:ad:fd:43:58:c5:fe:07:69:c0:62:84:b4:
90:71:a9:8b:3e:23:6b:25:27:25:e6:17:b3:11:27:9d:d4:12:
42:93:3e:f3:54:be:83:af:36:15:6b:09:cb:a4:ac:20:c9:92:
c6:4f:59:ef:30:df:00:9a:30:9c:dd:42:18:ec:d5:d8:25:0a:
34:db:80:dd:8a:28:84:6c:e2:ff:17:ba:bc:bf:b9:0a:3c:d1:
53:17:69:21:0c:68:66:ab:5b:91:06:05:fe:9b:38:04:19:dd:
a3:b4:83:aa:c9:6e:a3:8a:d7:68:f8:b6:65:31:b9:f9:92:4b:
9b:3f:1d:80:64:08:48:35:e9:2a:1a:90:e3:64:6e:6b:ba:b8:
c2:51:70:b2:6a:2b:d1:26:d7:e2:10:39:18:08:73:5d:5f:e8:
5a:6a:44:c6:74:13:d9:7b:34:bf:d7:59:3f:50:df:a0:6f:d5:
5e:f8:d7:68:ac:a1:8c:f2:9e:83:db:f7:6c:ae:6c:28:86:ec:
63:43:b6:f0:f5:37:65:1f:05:f1:07:e0:56:32:d7:3e:de:f7:
30:9d:40:de:56:69:6f:26:88:fc:b3:3c:ae:dd:18:df:8f:67:
3a:e6:4e:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:48 2024 by rpki-client on console-fra.rpki-client.org