Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Hsg-SAR83ON9U4nS7f7XidD38-A.roa
File: Hsg-SAR83ON9U4nS7f7XidD38-A.roa (raw, json)
Hash identifier: eV/+dwN3nRa7TjA12fAyF6E9dzk9i+k8AJZZqs3orGE=
Subject key identifier: 1E:C8:3E:48:04:7C:DC:E3:7D:53:89:D2:ED:FE:D7:89:D0:F7:F3:E0
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 1804186A
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Hsg-SAR83ON9U4nS7f7XidD38-A.roa
Signing time: Sat 01 Jan 2022 04:00:31 +0000
ROA not before: Sat 01 Jan 2022 04:00:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197304
IP address blocks: 213.91.136.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 402921578 (0x1804186a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 04:00:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ec83e48047cdce37d5389d2edfed789d0f7f3e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:99:fb:37:0e:85:ae:b6:0d:aa:ab:83:2a:b0:
3c:5f:15:40:ec:93:4e:90:72:b9:15:e3:4f:42:0a:
76:18:eb:3a:99:22:78:7a:b2:96:a1:61:c6:f4:8e:
b2:a4:00:3e:49:c3:a9:b5:83:9a:c4:31:33:72:ab:
45:25:97:06:3d:36:df:9b:c0:47:2a:9a:a8:0e:de:
c5:8c:c0:a5:22:f0:e9:be:6c:3c:56:7c:9c:8a:2e:
a8:2a:72:88:cf:cb:1d:8e:fd:b5:e1:75:53:29:99:
9f:82:28:bf:3b:5a:0c:43:23:90:3f:b0:09:5b:43:
7b:62:9a:4d:be:08:cd:fe:1f:90:c9:1f:e9:86:7f:
2c:c4:13:c8:f7:cf:ff:c8:43:e6:11:6e:e1:fe:0f:
26:46:36:d5:62:7c:33:ba:e8:26:0c:9b:8a:6a:b2:
fb:57:ae:70:4b:49:81:00:2f:4a:ec:2c:0c:2a:8f:
03:98:93:38:e2:e6:da:c7:d3:81:9c:0c:b0:f2:d4:
f0:5e:2d:d4:a6:ef:c8:76:3e:ab:9d:b1:0c:cf:0c:
53:af:5e:9c:ef:f5:e5:36:b4:a7:77:51:70:b1:49:
51:60:7f:2d:d8:23:c5:12:a7:cd:b7:e5:bb:b5:cb:
4c:0c:14:b8:f8:d9:7e:0a:6a:6e:ec:ac:b5:f3:fd:
cc:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:C8:3E:48:04:7C:DC:E3:7D:53:89:D2:ED:FE:D7:89:D0:F7:F3:E0
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Hsg-SAR83ON9U4nS7f7XidD38-A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.91.136.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:06:91:85:1b:a6:0c:f5:a4:7c:99:8c:4c:25:0c:5e:8d:98:
7c:0b:70:14:dd:10:b4:09:f7:b0:a2:fe:01:49:a1:2f:52:8c:
26:e8:91:96:e2:25:7a:56:87:bb:34:9e:ce:bf:9c:4a:aa:a4:
6c:d2:71:41:e0:08:6e:12:e2:cb:42:9d:cc:ba:26:97:94:e0:
67:41:be:71:fe:88:fa:28:19:6e:ba:73:ce:c2:d7:55:d8:a0:
f0:6b:c3:2a:5a:b3:bb:ac:4f:d7:00:0e:39:a2:cd:43:64:88:
10:10:d4:17:e9:af:38:82:78:11:ad:1b:5b:14:59:15:45:62:
2b:71:8f:ec:43:18:eb:28:2e:10:2e:b7:72:a5:58:0c:cc:f8:
31:ae:a6:4a:96:e3:bf:b6:ac:1c:a5:a8:46:50:d9:61:54:b5:
b2:08:58:cd:d9:3b:65:24:6c:a9:6f:1a:64:9d:dc:ec:fe:55:
d5:2a:b7:91:ac:78:12:48:09:7d:80:96:54:19:e3:a7:0e:f3:
52:1c:a2:99:58:6c:bd:11:54:6e:01:84:8e:da:77:c1:e5:53:
71:2d:1f:30:79:77:15:77:86:93:82:5a:04:5a:ef:b1:0e:83:
ab:70:14:9d:1a:3c:3b:fd:12:5f:03:a7:fa:78:8c:07:12:c1:
f5:d5:d8:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org