Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/HSHbe5NX1_UXXwHbRgnuKKLo8xU.roa
File: HSHbe5NX1_UXXwHbRgnuKKLo8xU.roa (raw, json)
Hash identifier: jb+7Q/BGZeBlQEnFqucEdzMjqG/0GBJ83cqfuabzJpA=
Subject key identifier: 1D:21:DB:7B:93:57:D7:F5:17:5F:01:DB:46:09:EE:28:A2:E8:F3:15
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1C7F2087
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/HSHbe5NX1_UXXwHbRgnuKKLo8xU.roa
Signing time: Sat 01 Jan 2022 01:02:45 +0000
ROA not before: Sat 01 Jan 2022 01:02:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199759
IP address blocks: 87.120.143.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 478093447 (0x1c7f2087)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 01:02:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d21db7b9357d7f5175f01db4609ee28a2e8f315
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:de:8f:37:47:2a:d6:49:c4:e6:17:3b:dd:d4:
84:05:24:55:dc:a3:98:b4:5f:2c:33:b4:fc:2a:3c:
56:7a:06:87:2c:8c:b8:f4:1c:6b:08:3d:cb:ed:1b:
ca:32:e2:b1:1a:24:bb:19:bb:de:93:cb:78:39:09:
d5:fc:34:f0:27:95:8c:a5:d8:89:2c:ca:71:75:a2:
f9:73:14:64:be:05:10:c7:34:b7:68:d3:c0:05:d4:
b2:00:0a:32:fd:89:e1:e6:e4:4a:cf:ac:dc:78:99:
27:e1:07:7f:f4:07:1c:28:9d:0e:57:5c:43:94:c8:
a2:7e:92:22:85:dd:6f:13:00:10:22:cf:37:df:b2:
1e:43:f4:d3:6b:23:a7:c4:1e:f9:c1:1f:e7:09:d8:
11:2d:38:ec:3d:df:2c:39:03:1c:ea:2d:9d:3c:6d:
fe:9a:a0:eb:58:85:db:a6:1c:2c:d1:99:05:fa:e6:
d2:93:de:be:a3:40:74:06:6d:76:f1:72:f0:6e:2f:
58:67:4d:9e:32:22:87:4a:93:df:80:4d:13:0e:17:
6f:e6:ab:da:24:9a:38:db:3b:67:ba:7d:fc:a7:6e:
51:7f:fd:fc:e4:eb:12:92:fd:e2:7f:c3:69:a1:46:
f4:e4:61:bf:b7:7a:02:73:77:01:6d:22:94:e8:78:
cc:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:21:DB:7B:93:57:D7:F5:17:5F:01:DB:46:09:EE:28:A2:E8:F3:15
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/HSHbe5NX1_UXXwHbRgnuKKLo8xU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.120.143.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:57:fc:79:31:43:c4:71:f5:8e:85:3c:07:3e:02:a5:2d:54:
a7:b1:04:a0:21:88:56:88:12:74:37:5f:ca:1b:27:fe:2f:97:
62:f6:b4:80:6e:1a:46:33:81:08:4a:27:6b:b0:80:59:3e:95:
42:45:93:57:7a:e4:63:f8:88:6c:a9:54:95:f2:51:3e:8c:45:
9a:6e:46:f1:7b:16:51:4f:c2:0f:01:c3:e9:de:75:74:08:2e:
9a:05:02:51:26:af:86:53:b5:95:1a:da:de:a0:8d:15:0d:eb:
32:90:91:15:f8:84:40:9c:8f:8e:c4:aa:e0:96:02:1d:69:b5:
d8:b2:9d:8b:d5:5f:16:5a:83:cb:75:a9:96:60:d6:96:fe:1f:
a0:88:74:50:38:20:38:ca:ba:45:78:57:50:02:16:28:23:18:
49:0c:3c:41:44:bb:79:30:ab:3a:6a:ef:d4:4e:a4:f7:ce:fd:
bb:56:c4:d1:78:34:9c:58:91:9f:64:af:dc:ec:4e:77:13:45:
13:69:d3:f2:b5:b1:95:36:79:00:68:a3:f4:a8:a2:85:ad:a4:
67:1b:da:8a:ff:61:ac:40:aa:88:8b:f4:da:01:7a:a5:9c:a0:
7d:96:82:bd:75:1a:07:da:28:d4:41:7c:32:53:72:10:74:fa:
57:68:69:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:40 2023 by rpki-client on console-fra.rpki-client.org