Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Hj4tQ6olecFOFpwIFmkPjtxHpVQ.roa
File: Hj4tQ6olecFOFpwIFmkPjtxHpVQ.roa (raw, json)
Hash identifier: Yb0YRqCw45WTcb4ru8AyjhRz2edTGvyxOIaiRFC1GRU=
Subject key identifier: 1E:3E:2D:43:AA:25:79:C1:4E:16:9C:08:16:69:0F:8E:DC:47:A5:54
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1D90C47B
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Hj4tQ6olecFOFpwIFmkPjtxHpVQ.roa
Signing time: Mon 21 Mar 2022 14:04:17 +0000
ROA not before: Mon 21 Mar 2022 14:04:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 94.156.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 496026747 (0x1d90c47b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Mar 21 14:04:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e3e2d43aa2579c14e169c0816690f8edc47a554
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:0e:95:d5:86:29:9b:89:28:94:65:2d:59:07:
ef:ce:55:c7:53:83:6e:c0:76:a2:29:bb:b7:2c:06:
1e:c6:cd:5b:ff:db:c4:91:83:ea:22:7f:d8:a6:cf:
7c:ee:4a:c5:98:1e:a2:4e:06:5d:01:2f:c2:50:c5:
45:57:71:57:73:11:2c:ce:2b:a4:e0:4d:86:95:09:
33:3a:2e:2b:a8:9c:11:1e:e0:66:95:07:83:18:23:
3c:23:e1:63:a7:0e:5f:d1:7e:0a:0c:d1:97:7c:1f:
e6:a0:2d:e3:c4:45:e3:ec:6f:56:e9:bd:cd:f5:03:
48:22:0d:3a:03:dc:40:1e:0e:ce:cc:c3:35:c6:5f:
7c:66:96:d8:2a:af:d7:00:2c:5d:d5:a4:29:81:9c:
d7:fc:8a:f3:0d:bd:8f:cf:4a:d9:d4:7c:7d:16:fe:
78:0a:1b:fb:8c:18:8a:8b:f5:37:65:09:64:68:78:
b7:21:f2:17:e0:7d:ae:a4:5f:ec:ea:60:5f:61:d2:
1f:3d:68:40:cf:ed:10:3e:28:d4:17:7f:4e:72:11:
43:ac:6f:1f:67:04:c0:29:c8:4d:ad:fc:c1:0c:b6:
2e:a7:98:2a:2e:2d:9b:dd:f0:ce:b9:b7:94:03:9a:
7b:e2:a0:40:2e:cd:1e:42:25:3e:75:b6:12:55:9b:
4b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:3E:2D:43:AA:25:79:C1:4E:16:9C:08:16:69:0F:8E:DC:47:A5:54
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Hj4tQ6olecFOFpwIFmkPjtxHpVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.156.14.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:0b:b8:9e:c8:3b:13:b0:4e:91:66:2b:c8:2a:57:1f:bf:9b:
63:38:49:c0:b2:e9:92:19:29:d9:07:a9:af:03:bc:43:68:d4:
5c:b5:3b:f8:78:c1:15:71:77:bd:bf:ae:b1:e8:ed:c3:53:05:
fb:df:3a:bd:1c:1e:5e:31:d6:b2:43:a1:f2:cd:5b:eb:dd:c4:
37:ea:82:97:11:d8:dc:53:38:a7:a3:f6:3a:ac:69:d5:6d:9b:
af:04:f1:08:84:85:a6:5e:95:91:1e:33:6c:fb:af:8a:cc:b7:
11:92:b2:06:2f:5a:37:40:26:75:7f:01:ac:14:15:c9:44:f4:
f4:11:dc:c5:10:dc:eb:87:6b:4a:e9:65:41:b6:59:3d:65:3b:
c2:be:a5:b2:17:56:f3:d8:a8:8e:f5:46:49:93:f2:89:4c:5c:
58:7c:30:8f:e0:f8:fe:5e:b1:37:b7:3e:3a:5d:12:68:25:16:
a9:13:a3:49:bb:d9:93:5b:fe:bf:52:6b:d7:6e:43:70:76:00:
0b:d2:ea:a0:7d:c2:94:fd:bc:f0:f6:9c:83:ac:49:b2:df:bb:
b9:0e:04:2e:b9:75:da:fa:49:6e:92:5d:8a:15:c5:19:08:85:
3c:5c:14:2a:cd:05:a2:17:35:9d:42:02:9b:f9:7d:0e:6a:61:
8a:84:d2:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:34 2023 by rpki-client on console-ams.rpki-client.org