Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/HDS7HtdM3sryemMBlGomQI9zcZQ.roa
File: HDS7HtdM3sryemMBlGomQI9zcZQ.roa (raw, json)
Hash identifier: zN1H0WITsd9hFL5AWfGMuIGRQ4ilL4BiJv22E+OG+lA=
Subject key identifier: 1C:34:BB:1E:D7:4C:DE:CA:F2:7A:63:01:94:6A:26:40:8F:73:71:94
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 01821FF802627C5A1BB4993C6C1713EE7A98
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/HDS7HtdM3sryemMBlGomQI9zcZQ.roa
Signing time: Thu 21 Jul 2022 08:55:23 +0000
ROA not before: Thu 21 Jul 2022 08:55:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207713
IP address blocks: 5.44.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1f:f8:02:62:7c:5a:1b:b4:99:3c:6c:17:13:ee:7a:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Jul 21 08:55:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c34bb1ed74cdecaf27a6301946a26408f737194
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:d3:9f:2b:65:1b:80:81:c1:91:0d:7d:c8:03:
ca:da:20:c6:dd:4a:0a:d6:a9:f9:c3:ec:d6:6d:c7:
43:74:15:b1:f1:de:bf:bd:d2:11:32:b7:dd:d0:81:
a1:eb:61:05:e6:07:6f:44:7a:cf:1c:52:de:94:55:
d4:d6:03:3a:65:0b:0e:f1:f5:a8:d3:00:22:f6:ad:
cf:2d:2a:f5:f1:24:86:b3:ae:40:fb:f7:c5:cf:93:
75:5b:1f:7c:2f:63:e8:40:5d:1e:4a:7a:96:84:50:
86:e3:33:2f:e1:2f:b1:f1:4d:33:a0:09:29:8f:62:
3c:15:1e:b2:f4:71:fb:22:b4:85:b5:d2:a5:10:35:
96:e6:67:82:fa:c5:05:87:9a:97:43:2d:32:c1:2e:
3f:f9:36:f0:4a:c1:f4:2d:96:39:94:2f:fa:86:f7:
fc:da:44:0a:ca:21:a9:1e:6b:04:53:d0:98:b1:bd:
3f:8a:a4:f2:ca:cf:68:8c:a5:ad:8d:0a:c1:e6:18:
b1:3d:9a:f5:97:35:2d:29:97:21:26:70:3f:ab:9d:
ea:18:86:a5:41:a5:da:58:b0:63:bf:8e:b1:a2:ae:
e3:d9:bf:66:84:be:ab:ae:5d:f9:d2:18:3a:bf:dd:
a0:a9:2b:81:06:6d:44:78:d7:57:e2:5e:a9:b3:4b:
f2:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:34:BB:1E:D7:4C:DE:CA:F2:7A:63:01:94:6A:26:40:8F:73:71:94
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/HDS7HtdM3sryemMBlGomQI9zcZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.42.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:8a:b3:5a:80:1b:8c:74:ba:9a:06:e0:5b:e7:8c:d8:65:9f:
b5:da:f8:f2:07:5d:f5:91:9b:f1:b6:5a:87:2e:f8:f9:fd:09:
c9:76:5a:83:82:77:63:22:b4:d5:b5:a0:77:f8:cd:dd:74:54:
57:29:76:70:86:34:7e:cf:aa:7a:76:09:34:5a:5d:7b:4d:44:
b0:8d:5e:d2:d5:5a:e3:cd:7f:0c:1a:36:15:15:f5:01:c8:0d:
43:e3:81:86:6a:88:25:1a:fe:e1:40:32:dc:85:32:23:aa:3d:
05:80:aa:8b:ad:8c:da:88:a3:7d:27:4f:8e:56:89:dc:d2:b6:
88:33:f5:4d:08:5a:8c:14:ae:c1:0b:9e:8c:5b:af:fe:0e:ba:
06:4a:ac:e4:90:87:96:c2:a6:bd:75:42:a2:0c:74:aa:eb:d9:
32:8f:74:cb:f2:3a:a4:97:c8:2e:92:e6:6f:cd:e5:02:36:31:
f2:5c:4f:91:a1:5d:21:1b:ab:c3:a4:5f:08:80:f6:3e:a4:e4:
6c:53:2d:7c:8c:7d:47:31:d2:c5:de:9f:a5:52:e4:f7:4c:43:
67:e3:d1:dd:b1:08:1c:01:31:12:62:0e:48:6f:32:5f:af:70:
1c:bb:fb:0d:69:10:8f:4c:66:aa:af:a5:cf:51:78:f4:c1:be:
f1:ec:4f:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:54 2023 by rpki-client on console-fra.rpki-client.org