Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Hoq0Bv_gHXRVOw8DYcfkrx4CSZc.roa
File: Hoq0Bv_gHXRVOw8DYcfkrx4CSZc.roa (raw, json)
Hash identifier: 0AZQLZTYH4sZjDg0eNKr7bQ8CE9EV4juKhtPty5pRhk=
Subject key identifier: 1E:8A:B4:06:FF:E0:1D:74:55:3B:0F:03:61:C7:E4:AF:1E:02:49:97
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1B47F7B8
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Hoq0Bv_gHXRVOw8DYcfkrx4CSZc.roa
Signing time: Thu 26 May 2022 09:00:13 +0000
ROA not before: Thu 26 May 2022 09:00:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61224
IP address blocks: 217.156.20.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 457701304 (0x1b47f7b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: May 26 09:00:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e8ab406ffe01d74553b0f0361c7e4af1e024997
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d6:34:3d:b8:30:98:38:13:c7:dd:2b:a0:b1:
9d:d9:04:a3:72:61:51:ff:7e:73:21:83:e1:3c:0e:
d5:94:72:43:7a:95:7e:b8:48:dc:00:27:72:a0:e1:
7d:16:49:4d:2b:f3:2d:f0:82:95:90:ef:d0:df:cd:
e2:24:06:ed:c9:e2:b0:ae:5d:33:b0:fe:85:ad:5b:
6d:64:38:c2:00:72:d5:82:62:5c:d3:1c:c5:66:e5:
e3:9b:b5:1d:da:47:1d:fc:9e:a6:d7:ce:eb:bb:2a:
7b:6e:61:9d:37:6a:f9:34:34:5a:36:c4:a1:71:f7:
74:f1:a9:3b:f8:7f:02:a2:0c:32:9e:19:4c:79:3a:
bb:1b:2f:3a:6f:09:e2:61:20:8a:ae:a0:1e:ee:57:
05:db:60:3f:cb:e2:e9:50:3d:0f:f1:4f:d7:c5:61:
61:e9:f9:3c:96:16:c6:9e:46:b1:c2:d1:9a:f5:ab:
8c:eb:ff:75:26:5f:69:7a:bd:d5:43:38:a2:b0:d8:
ab:d6:0b:4a:55:fe:3d:fa:86:be:ee:97:6e:19:35:
bb:ba:ad:38:f0:84:14:0f:66:dc:e2:35:5f:87:30:
07:9b:8b:8e:dc:6d:cf:c0:ef:8a:08:5f:24:7b:ad:
ba:da:a3:45:10:30:81:7c:e6:23:03:6c:2a:43:6d:
e9:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:8A:B4:06:FF:E0:1D:74:55:3B:0F:03:61:C7:E4:AF:1E:02:49:97
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Hoq0Bv_gHXRVOw8DYcfkrx4CSZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.156.20.0/23
Signature Algorithm: sha256WithRSAEncryption
48:94:c3:7c:ec:0d:11:3a:98:74:4d:45:81:94:54:66:b9:9a:
f6:46:8e:e3:84:97:7e:ab:37:4c:a4:24:25:8b:d1:e7:46:ef:
c4:b5:87:13:c3:e2:2c:61:42:ca:07:a5:c7:6f:3c:ba:e2:91:
e9:56:7f:9e:3f:7d:34:61:d0:c8:8c:e0:1b:78:df:27:0a:3b:
37:c4:7e:65:8a:f1:97:fc:1a:cc:1d:45:2d:e0:5b:51:bc:9e:
ff:ac:9b:db:ac:60:b5:2a:02:f0:0f:f1:9c:ea:44:5a:3d:e7:
63:58:65:ae:e0:ce:98:2f:07:92:4c:e0:0b:f6:8e:4d:19:e7:
2a:5d:25:1b:6b:8a:93:22:03:d0:e8:fa:c5:f5:5c:16:19:f4:
ca:8f:0f:bc:bd:00:80:6b:22:36:da:5f:05:f5:a6:0d:da:bd:
eb:16:0e:ae:4e:bc:6f:69:16:e6:28:de:63:5d:e8:64:42:42:
1e:9a:99:1b:c8:a6:bd:7e:62:ae:7a:91:df:8d:6b:df:ab:ff:
8d:47:4f:38:10:e6:a9:a5:c1:cb:ff:47:1f:ed:d4:41:13:cc:
c5:ce:33:2e:c4:dd:d2:2f:cd:49:59:07:26:c2:19:d5:15:ed:
8a:0f:ad:ff:7b:45:59:5b:99:bf:7e:fa:43:70:79:30:07:05:
59:a0:cc:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:28 2023 by rpki-client on console-fra.rpki-client.org