Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/9df9f2-a20a-429c-82e8-a5716865fd35/1/hQX0inYZ8Gf4onrqpHOKk15WAyI.roa
File: hQX0inYZ8Gf4onrqpHOKk15WAyI.roa (raw, json)
Hash identifier: R2lZ6P9K+eHfaQ3I+DCn7Mat2kzCI5bhrydOOUw/FQY=
Subject key identifier: 85:05:F4:8A:76:19:F0:67:F8:A2:7A:EA:A4:73:8A:93:5E:56:03:22
Certificate issuer: /CN=34f78361a077b0d789135ccd68b1261db138f950
Certificate serial: 014F883A
Authority key identifier: 34:F7:83:61:A0:77:B0:D7:89:13:5C:CD:68:B1:26:1D:B1:38:F9:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NPeDYaB3sNeJE1zNaLEmHbE4-VA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/9df9f2-a20a-429c-82e8-a5716865fd35/1/hQX0inYZ8Gf4onrqpHOKk15WAyI.roa
Signing time: Sat 01 Jan 2022 04:02:25 +0000
ROA not before: Sat 01 Jan 2022 04:02:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197881
IP address blocks: 91.227.110.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21989434 (0x14f883a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34f78361a077b0d789135ccd68b1261db138f950
Validity
Not Before: Jan 1 04:02:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8505f48a7619f067f8a27aeaa4738a935e560322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e5:42:e4:ad:26:cc:eb:d1:a8:8a:27:07:ce:
a4:3e:3a:73:1a:a2:23:ee:fd:e7:3c:55:50:38:02:
f0:57:bd:76:d4:e1:66:ea:58:cd:ec:16:ab:9d:c4:
43:d7:b9:8a:fd:83:f4:a0:8a:50:ea:5d:9c:08:47:
5f:85:fb:2e:b9:07:a1:33:37:c2:fe:83:b2:bc:42:
34:f7:40:61:a0:a0:b4:3d:de:1f:99:12:88:2d:b3:
05:e9:cc:90:a7:e8:b9:0c:14:a5:d7:49:6e:15:7a:
32:77:7f:8d:25:be:f8:32:f4:f9:3f:9f:89:2f:ce:
1a:88:3e:41:a4:56:77:e6:33:f9:0a:a6:b3:45:d0:
ba:99:2b:54:72:2a:70:e0:1a:80:56:aa:2c:18:da:
1b:8d:fc:ec:a9:cc:f4:93:52:99:33:08:71:e9:d5:
24:f2:f4:41:b1:73:c2:a8:ec:c9:3b:7c:b2:47:f2:
e3:ee:3d:3b:b9:24:07:df:1c:98:6b:a8:10:64:cd:
05:7a:a9:6c:93:db:40:9f:3e:2b:8e:d0:ca:06:45:
5a:02:1a:77:94:05:6b:d2:de:db:e5:6a:49:d8:84:
29:66:10:a3:94:a4:8a:db:8c:4c:49:fc:da:4e:98:
04:e1:1e:a5:fc:dc:c3:6a:53:95:5e:18:fe:29:43:
4d:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:05:F4:8A:76:19:F0:67:F8:A2:7A:EA:A4:73:8A:93:5E:56:03:22
X509v3 Authority Key Identifier:
keyid:34:F7:83:61:A0:77:B0:D7:89:13:5C:CD:68:B1:26:1D:B1:38:F9:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NPeDYaB3sNeJE1zNaLEmHbE4-VA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/9df9f2-a20a-429c-82e8-a5716865fd35/1/hQX0inYZ8Gf4onrqpHOKk15WAyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/9df9f2-a20a-429c-82e8-a5716865fd35/1/NPeDYaB3sNeJE1zNaLEmHbE4-VA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.110.0/23
Signature Algorithm: sha256WithRSAEncryption
37:27:50:90:f0:60:ee:4a:1a:41:e8:9e:90:d6:0a:dc:2c:b3:
b0:87:f5:3d:9d:2f:74:f1:1d:17:1d:c6:0e:18:24:ba:34:79:
8c:12:1a:34:b1:98:1b:13:ac:16:94:d6:f9:66:ef:0f:46:1a:
79:12:00:8b:b6:92:5b:f5:b8:c7:89:73:40:89:4b:c1:ec:39:
fe:bb:2d:45:a9:bd:d1:46:59:f8:ee:2a:d8:ce:f5:1a:f2:41:
05:24:2c:0a:09:c7:ac:9c:9e:ab:52:bd:42:9e:ed:ac:a3:ab:
e6:ae:b3:d9:08:c3:1e:c0:c5:b5:e4:d5:5b:2e:a3:d5:66:4e:
30:fa:d2:ea:30:3c:ce:d1:ca:9a:c5:5e:a9:3e:b3:1a:15:bf:
67:97:33:aa:e1:e8:a5:c8:7c:49:b8:20:dd:32:65:08:0d:a1:
6e:3c:1e:44:48:2e:10:e6:d5:98:ca:f2:6a:e7:91:1a:74:51:
b4:b4:b2:0f:f0:30:58:d3:6b:6f:1b:ca:3d:ef:2d:e3:26:b2:
b9:3f:5b:27:21:4d:ab:64:52:02:34:28:60:f9:f6:8d:02:50:
03:58:78:45:9d:b9:b8:f1:64:d8:4f:8c:52:26:c3:93:5e:16:
37:d8:6d:a8:3f:76:2f:69:39:6e:77:c2:8f:c2:6a:56:1c:d5:
fa:92:0d:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:25 2024 by rpki-client on console-ams.rpki-client.org