Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/78fde9-6df0-4ae2-9b37-a7c4b2f6e276/1/hyIN_ScZyPIKWOWduSbrW2SGY9U.roa
File: hyIN_ScZyPIKWOWduSbrW2SGY9U.roa (raw, json)
Hash identifier: dNLO8vhgQvgGZzySlCh06leaGHZuhlx81sn8J/rs0DY=
Subject key identifier: 87:22:0D:FD:27:19:C8:F2:0A:58:E5:9D:B9:26:EB:5B:64:86:63:D5
Certificate issuer: /CN=d3c6178fb034905130af0ce1cd275154f2b59b78
Certificate serial: 090F982A
Authority key identifier: D3:C6:17:8F:B0:34:90:51:30:AF:0C:E1:CD:27:51:54:F2:B5:9B:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/08YXj7A0kFEwrwzhzSdRVPK1m3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/78fde9-6df0-4ae2-9b37-a7c4b2f6e276/1/hyIN_ScZyPIKWOWduSbrW2SGY9U.roa
Signing time: Sat 01 Jan 2022 07:02:25 +0000
ROA not before: Sat 01 Jan 2022 07:02:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205166
IP address blocks: 185.228.28.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152016938 (0x90f982a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3c6178fb034905130af0ce1cd275154f2b59b78
Validity
Not Before: Jan 1 07:02:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87220dfd2719c8f20a58e59db926eb5b648663d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9c:5b:c4:4d:75:58:2b:e3:8e:4c:ed:43:c4:
81:cb:9d:0d:0e:47:2e:4f:1b:74:22:9a:36:30:32:
e1:64:ea:cc:91:6d:50:af:28:ed:b4:60:cd:11:04:
6b:af:09:83:48:f8:12:fd:42:2b:db:5f:7d:82:9f:
c2:7e:e6:ea:02:a3:9a:6c:41:64:d4:7a:8d:64:12:
63:b3:9c:cc:cc:d2:9b:75:7b:71:bb:6b:39:d5:43:
2a:14:f9:99:12:a0:88:2c:c8:e5:e7:19:3a:66:44:
f7:3e:0c:a2:4f:1c:e8:f3:7f:43:63:ea:d6:d1:f6:
3f:87:4b:28:61:8d:aa:34:cd:78:bb:59:ec:0e:96:
43:23:2f:8f:40:71:56:62:f0:3a:b7:0f:c7:c3:52:
02:14:fa:de:49:05:a2:fe:72:bf:b7:f8:cb:c4:1d:
c3:6f:d5:19:4b:c7:42:10:20:30:9f:d8:4a:94:1a:
57:d8:3b:8f:5f:d2:80:88:c7:c8:24:93:db:49:d4:
53:f3:e7:cd:0c:d2:8a:6d:a2:b6:d8:a8:07:d8:86:
73:14:77:9c:a2:d8:c7:f3:8f:07:b4:ad:0c:c1:ba:
19:45:b4:fb:aa:d7:ca:6a:88:76:4b:d8:b2:b5:b7:
d9:b0:b4:c1:e5:fe:9a:03:e1:c3:ce:c5:f6:8d:18:
27:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:22:0D:FD:27:19:C8:F2:0A:58:E5:9D:B9:26:EB:5B:64:86:63:D5
X509v3 Authority Key Identifier:
keyid:D3:C6:17:8F:B0:34:90:51:30:AF:0C:E1:CD:27:51:54:F2:B5:9B:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/08YXj7A0kFEwrwzhzSdRVPK1m3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/78fde9-6df0-4ae2-9b37-a7c4b2f6e276/1/hyIN_ScZyPIKWOWduSbrW2SGY9U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/78fde9-6df0-4ae2-9b37-a7c4b2f6e276/1/08YXj7A0kFEwrwzhzSdRVPK1m3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.28.0/22
Signature Algorithm: sha256WithRSAEncryption
02:7b:87:7e:62:f1:4e:23:ef:27:25:63:0a:f8:cb:49:de:cb:
3e:31:b6:19:3a:6a:e9:1d:56:b5:92:e6:aa:59:39:5c:77:7a:
67:df:9f:0c:02:3c:e7:1a:9f:9f:6e:4d:11:c6:9b:f7:9d:26:
b1:ef:1e:53:8f:46:db:8d:78:b3:50:ed:b5:26:3a:30:00:ac:
eb:b1:b8:3e:4b:d2:31:06:9c:3f:2a:c0:a3:be:d9:bd:34:ac:
ff:aa:4c:59:75:37:a7:a6:b0:a4:db:e1:c6:95:cf:80:db:50:
96:d5:f4:56:84:f5:11:1d:86:0a:65:da:b5:f7:cc:d2:fe:05:
15:fc:1a:2e:01:28:7c:76:9a:9a:b9:e6:24:db:f7:f9:21:ba:
84:a0:25:98:f1:f9:0c:86:d3:ee:03:07:cb:02:e5:5e:c5:19:
19:73:38:b1:d9:9e:94:d1:a7:83:3c:0a:37:be:32:dc:f6:01:
ac:32:d7:78:24:23:11:1d:c7:e3:59:c3:90:7b:0f:70:d5:78:
bf:a2:d5:e0:f2:31:e9:13:2e:29:4d:81:83:c3:ba:0c:10:4c:
ef:fc:b5:a2:c0:c7:60:03:22:5d:ac:64:34:82:77:ee:23:84:
e1:e9:94:d9:16:96:3a:ff:ae:00:a5:71:34:a2:38:84:63:5d:
0c:6a:3d:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:29 2023 by rpki-client on console-fra.rpki-client.org