Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/7422fe-f013-43e3-be91-d4d35d99981d/1/hJB_9_bKcHXxZa-DbqfONje4GPc.roa
File: hJB_9_bKcHXxZa-DbqfONje4GPc.roa (raw, json)
Hash identifier: Hf1pVhyLNo3Pr5BtShudMn1nbxzPt0ipwspEmng++X8=
Subject key identifier: 84:90:7F:F7:F6:CA:70:75:F1:65:AF:83:6E:A7:CE:36:37:B8:18:F7
Certificate issuer: /CN=1f29bcbd5cfcc195e76b70a1bf0dd991ec7e33d4
Certificate serial: 03E22A6B
Authority key identifier: 1F:29:BC:BD:5C:FC:C1:95:E7:6B:70:A1:BF:0D:D9:91:EC:7E:33:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hym8vVz8wZXna3Chvw3Zkex-M9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/7422fe-f013-43e3-be91-d4d35d99981d/1/hJB_9_bKcHXxZa-DbqfONje4GPc.roa
Signing time: Sat 01 Jan 2022 01:52:02 +0000
ROA not before: Sat 01 Jan 2022 01:52:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207066
IP address blocks: 91.199.86.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65153643 (0x3e22a6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f29bcbd5cfcc195e76b70a1bf0dd991ec7e33d4
Validity
Not Before: Jan 1 01:52:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=84907ff7f6ca7075f165af836ea7ce3637b818f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ef:cf:fc:bd:f4:90:17:a1:e7:c5:08:52:d2:
fe:80:34:c8:87:0c:d6:45:b6:ea:5d:6f:b4:0f:2b:
98:d5:0c:11:19:a5:29:3f:fb:9c:a5:70:8d:1d:28:
c0:7d:57:4d:b6:b7:6f:3f:cd:a4:c1:0f:3b:14:ad:
81:3a:93:b7:0c:0f:e6:d2:7d:fc:cf:a8:ac:45:60:
06:d6:aa:52:ff:a6:92:a0:10:ba:3d:5c:f7:36:ad:
c8:56:7b:e8:41:21:9d:06:e8:54:be:aa:40:82:49:
9b:22:df:8c:a6:61:59:04:8f:44:b5:9e:82:22:11:
f8:0b:69:1b:23:f5:1d:bc:1e:42:e3:16:03:3e:b9:
06:66:c3:7f:e5:b5:08:3c:bf:de:55:97:9b:40:ed:
c8:c3:66:c7:f5:5e:36:91:b0:df:8a:68:b9:14:b2:
4d:6f:bc:76:20:db:0c:d2:d6:42:5e:b7:74:c2:7f:
e5:08:d8:04:ff:07:7b:51:0a:ee:d3:ed:73:91:de:
38:5f:b3:24:4a:43:17:f8:8b:bc:89:00:2b:2f:fa:
2b:7e:0a:2d:e6:a3:3b:42:2b:34:a3:2b:1b:72:b6:
17:1c:5d:56:c1:d4:97:a7:11:35:35:bc:2e:da:cc:
9c:4d:d2:c8:fb:e7:3c:98:bd:50:6f:de:9d:45:0d:
8f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:90:7F:F7:F6:CA:70:75:F1:65:AF:83:6E:A7:CE:36:37:B8:18:F7
X509v3 Authority Key Identifier:
keyid:1F:29:BC:BD:5C:FC:C1:95:E7:6B:70:A1:BF:0D:D9:91:EC:7E:33:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hym8vVz8wZXna3Chvw3Zkex-M9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/7422fe-f013-43e3-be91-d4d35d99981d/1/hJB_9_bKcHXxZa-DbqfONje4GPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/7422fe-f013-43e3-be91-d4d35d99981d/1/Hym8vVz8wZXna3Chvw3Zkex-M9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.86.0/24
Signature Algorithm: sha256WithRSAEncryption
49:ff:bb:f8:6a:b6:f1:c8:15:9e:ba:9a:76:1c:10:aa:aa:7e:
83:17:3c:22:60:8f:07:08:4e:1b:08:42:7a:6c:07:9d:8a:21:
b7:e0:e9:b8:ab:2e:a5:99:12:1f:6d:81:85:e1:49:a8:fc:71:
ea:cd:ab:31:53:53:5f:49:a7:86:cc:c0:5d:f9:ee:18:d2:fb:
48:1b:ab:3b:92:45:8e:f3:5e:0d:f1:7c:e2:52:d6:64:1b:a3:
03:89:49:36:11:86:1f:04:fc:e2:cc:82:e1:a8:88:de:a6:5e:
dd:d2:29:2c:49:7c:1e:90:10:94:e2:04:3e:5c:33:1d:41:7c:
4c:16:66:7d:73:d7:d7:20:ad:78:21:c3:df:d5:92:64:48:7f:
c2:7e:ae:c2:24:4d:bc:fb:76:4b:5a:4c:08:de:f1:06:e6:5b:
71:b7:6d:69:03:36:50:b6:2f:4b:96:c1:ca:58:a5:72:f5:14:
2d:80:26:da:0c:72:3b:16:06:7b:b6:6f:ef:4d:7f:91:ce:c9:
0b:f1:50:d5:e8:7a:7a:71:2b:b4:8b:e4:02:2a:67:26:f0:83:
e3:56:b5:d8:19:51:dd:66:46:ee:03:08:3d:fe:53:cd:07:34:
da:83:51:2f:f1:e3:2a:d7:8c:96:35:50:51:76:da:0c:9a:1d:
74:c2:1f:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:49 2024 by rpki-client on console-fra.rpki-client.org