Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/5e6116-56e6-4c1d-9683-4b22fc5184a2/1/HI1UCWR79PeQV8GYcS_jLJ9CQtk.roa
File: HI1UCWR79PeQV8GYcS_jLJ9CQtk.roa (raw, json)
Hash identifier: Boand5YDHZeoYwOTmGMm24AN8cG7xnB/imcWiJrf0Pw=
Subject key identifier: 1C:8D:54:09:64:7B:F4:F7:90:57:C1:98:71:2F:E3:2C:9F:42:42:D9
Certificate issuer: /CN=45b9854b044594e6cf0846fb41de7b0908fb5f72
Certificate serial: 01856D0162F725E5A8FE487D736C41A56176
Authority key identifier: 45:B9:85:4B:04:45:94:E6:CF:08:46:FB:41:DE:7B:09:08:FB:5F:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RbmFSwRFlObPCEb7Qd57CQj7X3I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/5e6116-56e6-4c1d-9683-4b22fc5184a2/1/HI1UCWR79PeQV8GYcS_jLJ9CQtk.roa
Signing time: Sun 01 Jan 2023 11:04:45 +0000
ROA not before: Sun 01 Jan 2023 11:04:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39756
IP address blocks: 83.246.0.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:01:62:f7:25:e5:a8:fe:48:7d:73:6c:41:a5:61:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45b9854b044594e6cf0846fb41de7b0908fb5f72
Validity
Not Before: Jan 1 11:04:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c8d5409647bf4f79057c198712fe32c9f4242d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a0:58:89:c1:17:77:9b:70:51:a1:6f:87:f1:
03:63:54:d0:3d:89:7a:a1:f4:9c:05:fc:98:d1:c7:
0e:6f:46:99:3a:fd:3b:88:82:3d:4b:a2:32:aa:84:
e5:2c:5c:a4:16:1c:20:f1:f5:34:4d:9a:a7:f6:6f:
39:fb:a5:aa:fb:44:bf:c7:b5:10:02:3b:a7:61:7c:
34:91:43:06:73:86:51:43:41:d1:02:4b:57:be:18:
4a:89:da:d3:01:2c:d5:c2:d7:bf:29:b9:40:ba:64:
1e:0f:0c:08:1a:cc:ed:58:c7:b5:56:23:31:e8:4b:
20:11:0d:e0:86:9d:2d:f3:0b:95:ae:2f:96:ea:af:
30:d7:e7:92:03:a4:68:f7:ef:2a:d2:1d:d8:14:47:
35:5d:39:d1:09:28:35:5b:0b:33:6c:06:01:6b:03:
40:49:90:fe:f9:ec:96:80:ba:46:ea:5a:cd:1a:df:
09:16:76:06:46:f0:75:94:f8:16:b7:0b:ee:b7:24:
c7:0f:7d:42:de:e4:da:35:4d:f8:ba:18:6c:5a:16:
a2:3e:de:c4:a6:44:b7:1d:f5:16:bf:27:5c:de:0e:
c1:8b:c2:2b:73:4f:b8:e3:93:1e:ed:64:5d:43:12:
89:36:1f:1d:91:e0:f8:c9:7d:ac:e0:b6:0a:c2:26:
13:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:8D:54:09:64:7B:F4:F7:90:57:C1:98:71:2F:E3:2C:9F:42:42:D9
X509v3 Authority Key Identifier:
keyid:45:B9:85:4B:04:45:94:E6:CF:08:46:FB:41:DE:7B:09:08:FB:5F:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RbmFSwRFlObPCEb7Qd57CQj7X3I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/5e6116-56e6-4c1d-9683-4b22fc5184a2/1/HI1UCWR79PeQV8GYcS_jLJ9CQtk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/5e6116-56e6-4c1d-9683-4b22fc5184a2/1/RbmFSwRFlObPCEb7Qd57CQj7X3I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.246.0.0/20
Signature Algorithm: sha256WithRSAEncryption
9d:cf:96:77:54:50:ed:8b:93:2b:b3:9e:62:55:d8:27:45:17:
55:0d:cf:f1:fe:be:9b:ee:07:b7:00:33:00:82:bc:a5:b1:06:
9f:7b:ad:81:35:61:8f:c6:5e:1a:f5:eb:6a:fa:77:de:cf:67:
7c:85:7f:c4:e7:42:fe:8c:24:79:5c:f3:99:4d:36:45:7d:2c:
89:5f:98:e0:52:c3:93:0f:a1:9e:b3:84:e1:4a:a6:07:53:d4:
15:32:ca:df:99:62:b8:ce:95:f0:b9:86:ef:2d:38:a4:ac:65:
2b:10:5b:35:96:ef:d0:25:a3:15:3e:db:ad:0f:ab:d0:ca:da:
6b:1d:aa:d9:cc:23:59:5a:8c:63:3e:c9:8e:c2:20:9f:d1:f0:
58:ab:96:0b:7f:19:ea:60:2b:41:94:90:4d:af:0c:b7:e9:5b:
37:19:36:ca:91:ed:a8:71:15:e9:8c:d4:6e:47:71:fd:b3:3c:
41:d8:76:3c:1e:74:cd:78:58:97:b7:be:e0:c0:25:39:37:e2:
d4:39:ee:27:52:60:8b:63:a8:ce:37:e4:0b:42:af:95:21:fb:
06:01:7b:9c:b3:87:1b:28:8a:9d:33:40:af:31:bd:0f:f4:5b:
80:eb:34:db:57:f6:fe:08:0c:3d:1f:ed:85:19:82:b5:47:01:
64:2f:dd:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:31 2025 by rpki-client