Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/hCgqea4LVpWdRjQqpvqNV3bPOBk.roa
File: hCgqea4LVpWdRjQqpvqNV3bPOBk.roa (raw, json)
Hash identifier: YNcPcMGxkZBclN5l+Zxr3cqDfl5Qa5HKB7n3P0ZvQ8M=
Subject key identifier: 84:28:2A:79:AE:0B:56:95:9D:46:34:2A:A6:FA:8D:57:76:CF:38:19
Certificate issuer: /CN=1e14eb1eef66c2d349f3f7d7bafa68e49fbfec9c
Certificate serial: 018200C5A8DA7EE74FC9D4406C022B97DA88
Authority key identifier: 1E:14:EB:1E:EF:66:C2:D3:49:F3:F7:D7:BA:FA:68:E4:9F:BF:EC:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/hCgqea4LVpWdRjQqpvqNV3bPOBk.roa
Signing time: Fri 15 Jul 2022 07:32:09 +0000
ROA not before: Fri 15 Jul 2022 07:32:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210421
IP address blocks: 94.45.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:00:c5:a8:da:7e:e7:4f:c9:d4:40:6c:02:2b:97:da:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e14eb1eef66c2d349f3f7d7bafa68e49fbfec9c
Validity
Not Before: Jul 15 07:32:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=84282a79ae0b56959d46342aa6fa8d5776cf3819
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:73:30:cc:20:64:d6:86:d2:b7:e3:6f:52:41:
0e:90:ea:73:9d:b6:a2:5f:fe:a4:6e:80:20:da:cb:
e7:9b:20:b7:2c:b7:47:0c:b2:f4:c8:28:57:9e:e2:
c2:d5:a3:d1:4d:d1:26:b2:ca:15:28:32:b8:96:9a:
73:d3:00:60:68:b5:3d:88:65:43:68:3d:5a:6d:9a:
7d:67:35:60:20:ef:04:b5:55:13:c1:e3:aa:7b:7a:
56:9a:7e:71:57:b5:a1:ab:6d:eb:3a:5a:b2:8f:5c:
d2:81:85:dc:f4:49:0e:6c:19:6c:3a:bf:83:22:87:
52:83:92:28:f3:0f:8a:ac:5f:aa:ce:1f:32:d8:fd:
63:41:05:41:d0:b0:7b:fb:b7:bb:59:00:f6:22:44:
ea:db:d3:c1:52:cf:f4:54:84:02:80:58:5b:4e:01:
0e:1b:c4:e9:e4:f3:eb:38:36:02:9b:fe:1c:cf:05:
3f:13:ab:ff:e3:39:ba:ce:c6:2e:5a:e2:f4:c0:1d:
10:3c:d7:24:fb:3a:dc:96:e3:01:18:19:a2:18:c1:
76:14:94:28:7b:6d:b3:81:91:5b:06:6e:01:bf:f7:
d7:7a:88:dd:66:68:7c:85:8f:dd:bb:81:3a:87:9c:
83:d7:76:f6:ca:ee:aa:75:20:f8:7b:e3:3f:8b:4e:
83:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:28:2A:79:AE:0B:56:95:9D:46:34:2A:A6:FA:8D:57:76:CF:38:19
X509v3 Authority Key Identifier:
keyid:1E:14:EB:1E:EF:66:C2:D3:49:F3:F7:D7:BA:FA:68:E4:9F:BF:EC:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/hCgqea4LVpWdRjQqpvqNV3bPOBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.45.142.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:5e:07:83:90:6b:5d:01:47:8c:92:5e:e0:15:72:7e:36:cd:
d7:99:d1:2d:0d:c9:4d:fc:ea:bb:56:c6:e5:18:d8:5c:b9:a8:
08:66:89:7d:92:a5:e7:5a:75:fa:1c:b9:12:27:f5:8b:6d:dc:
65:d4:a8:45:d9:19:84:11:8d:05:36:2b:6d:92:e9:4b:1e:4a:
cb:8e:74:ac:a5:85:18:03:7d:3b:90:0e:98:21:c8:9c:ee:56:
fa:25:80:82:31:59:29:57:ae:e9:65:53:66:11:d2:a5:50:e5:
4e:28:6e:1b:10:e0:79:48:a8:aa:c7:20:2a:ec:93:77:90:2a:
d4:2c:d3:b5:92:5f:e9:d5:9c:23:7b:c4:c9:f5:34:18:6a:a2:
23:ba:6c:26:6e:89:1b:79:2a:b2:91:c3:9f:16:ab:ac:05:6b:
a7:73:21:73:03:cc:64:99:33:27:da:37:b8:f0:7f:b4:fb:61:
31:69:ff:aa:2d:a5:5b:1c:b2:51:f0:76:54:da:15:81:84:bc:
72:e4:bb:86:0f:c8:77:63:5c:97:3f:42:a6:0c:5a:0a:08:92:
cc:cf:8a:b6:a7:c6:72:84:7e:4d:6e:f4:27:84:e1:20:3a:0a:
48:f9:59:16:57:3b:9b:64:ec:ac:04:48:bb:aa:cf:24:82:33:
96:83:69:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:17 2023 by rpki-client on console-fra.rpki-client.org