Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/HR5we63BBclD-NZin-v0SRMinzM.roa
File: HR5we63BBclD-NZin-v0SRMinzM.roa (raw, json)
Hash identifier: /8+2TCrS1i50UcNZ+9vB6zGlNGYzfH344Cn4USFO8Xc=
Subject key identifier: 1D:1E:70:7B:AD:C1:05:C9:43:F8:D6:62:9F:EB:F4:49:13:22:9F:33
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 38830BE9
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/HR5we63BBclD-NZin-v0SRMinzM.roa
Signing time: Sat 01 Jan 2022 05:54:18 +0000
ROA not before: Sat 01 Jan 2022 05:54:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43188
IP address blocks: 85.254.156.0/23 maxlen: 23
85.254.156.0/24 maxlen: 24
85.254.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 948112361 (0x38830be9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 1 05:54:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d1e707badc105c943f8d6629febf44913229f33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:06:ab:fb:ae:9f:a7:63:15:ec:11:cc:fd:c8:
53:df:f9:7c:e4:f5:ba:1d:30:4b:cb:cd:1e:e3:88:
d3:eb:be:d7:8e:3b:a7:18:5b:2a:cb:db:f2:8c:1f:
b3:35:10:15:05:a7:67:26:64:73:d2:6e:45:a0:f2:
0c:37:ad:f0:24:de:0f:b6:cd:7c:33:da:65:2e:7e:
b2:9f:ef:45:7b:5d:44:58:44:fd:d5:57:ca:bd:91:
8c:a8:01:47:b5:52:8f:4d:ff:13:b6:25:1b:2a:c5:
89:35:7a:48:3c:33:c8:ae:2c:cb:13:ce:e2:0d:5f:
7d:d8:81:11:55:76:3d:fe:58:c5:30:50:4a:23:ae:
26:e9:16:4c:52:cc:59:29:5b:90:bd:2d:8e:9a:c8:
f8:f3:5a:42:3a:3f:b0:cb:17:28:d1:20:87:cc:78:
4f:de:99:ac:03:70:b3:8a:f0:50:ee:5a:6a:a2:0f:
08:ba:2f:dc:11:e8:63:9e:d0:5b:bd:56:fd:95:35:
3b:3f:ac:82:dd:1d:6f:06:ca:46:e1:7d:78:b3:8d:
e9:39:3f:d0:6a:85:6a:ad:12:bc:4d:d6:5e:40:a4:
e2:d6:0b:80:3c:eb:ce:ad:d8:f0:b2:68:1a:f1:61:
be:c4:10:7f:1b:12:f7:e7:35:b7:8a:09:da:be:21:
32:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:1E:70:7B:AD:C1:05:C9:43:F8:D6:62:9F:EB:F4:49:13:22:9F:33
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/HR5we63BBclD-NZin-v0SRMinzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.254.156.0/23
Signature Algorithm: sha256WithRSAEncryption
78:82:0f:f7:9c:27:1d:b4:13:a8:2d:55:e0:71:c1:9e:c7:b8:
c6:ff:7f:db:18:ab:b9:c8:04:45:2c:7f:da:b6:19:fc:3e:c7:
2c:31:4a:51:92:0b:eb:e0:56:77:7e:26:00:09:b2:71:73:bf:
08:4c:04:39:f1:7d:47:22:bd:a9:ec:a7:ee:3f:f0:85:60:99:
bb:44:5f:54:5a:49:75:b4:32:9a:99:2c:c3:e5:6e:c2:51:45:
10:1a:30:4d:f3:6d:54:7a:6a:bb:ec:8b:63:83:a1:19:d3:d7:
86:2d:49:b8:4a:ac:19:4f:d7:79:ee:db:bf:06:f4:12:92:69:
5c:db:5a:16:5f:bc:13:55:8b:9f:8e:c9:5a:c0:83:7f:a2:49:
1e:52:4a:3b:1a:70:9d:30:b8:27:95:36:cd:59:0c:8d:2f:2b:
4a:0d:c4:b7:cc:fe:85:e1:db:11:34:8e:a5:a8:da:a7:12:30:
bb:85:7a:dd:b9:b5:e7:57:ca:27:e6:69:66:57:f7:8e:c6:6a:
27:97:1c:11:d5:5e:22:41:5f:19:ea:e0:58:6e:d2:78:89:c6:
95:34:ad:b3:71:13:12:7a:00:e5:91:ec:cd:a4:9d:42:d2:f4:
4e:bb:fb:2a:95:6b:71:15:33:47:50:72:32:43:9b:bc:84:29:
c7:df:3e:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:37 2023 by rpki-client on console-ams.rpki-client.org