Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/Hdir4O6ZaIMY3JuQ8hP7gXydvXA.roa
File: Hdir4O6ZaIMY3JuQ8hP7gXydvXA.roa (raw, json)
Hash identifier: IpofLUh/GGDqbcYuE3OIVAr+ebxTQsn71ZKu2uZ88is=
Subject key identifier: 1D:D8:AB:E0:EE:99:68:83:18:DC:9B:90:F2:13:FB:81:7C:9D:BD:70
Certificate issuer: /CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Certificate serial: 04C59EB8
Authority key identifier: F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/Hdir4O6ZaIMY3JuQ8hP7gXydvXA.roa
Signing time: Wed 18 May 2022 02:31:30 +0000
ROA not before: Wed 18 May 2022 02:31:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 45.95.18.0/23 maxlen: 23
185.93.220.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80060088 (0x4c59eb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Validity
Not Before: May 18 02:31:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1dd8abe0ee99688318dc9b90f213fb817c9dbd70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:28:b0:87:8f:b9:fc:c1:ea:29:15:bc:5f:ee:
f4:e9:6f:0b:72:04:4e:02:e9:db:72:c1:f1:3d:02:
50:7f:11:fa:d4:46:ef:0c:e1:d2:88:1a:8a:82:17:
be:ce:22:2f:05:b6:e4:4a:0d:00:e9:36:9e:34:06:
5b:03:42:04:d4:ec:25:21:a4:97:5c:80:32:c0:5f:
5c:b7:a7:46:de:75:3f:86:79:65:64:70:6c:22:0f:
ad:d6:3e:d1:2e:ef:9e:4b:3a:d4:3a:75:05:bd:3e:
9d:aa:12:5e:0c:fe:3e:0c:63:14:dc:31:8b:04:e3:
70:30:8e:e6:d8:f7:f7:45:6a:6b:8a:ac:a3:80:e7:
98:aa:97:80:af:2a:32:65:35:b0:ba:ec:e1:7e:f7:
7c:d4:c9:14:14:7c:d7:c9:f0:f6:16:e6:35:3d:f6:
c0:6b:71:70:66:20:41:b5:5d:e0:9d:a3:56:cf:98:
88:54:2f:7e:17:c5:67:76:70:85:ca:f1:ce:b4:dd:
de:bb:aa:dd:4e:5c:15:cb:d1:2f:23:47:f2:f3:6b:
1d:7e:37:00:eb:59:9a:af:25:86:95:ac:46:da:6e:
ac:8a:f2:07:d9:6c:8a:81:a3:68:01:76:d7:0d:c2:
56:dd:ab:8f:67:aa:75:1c:1d:ed:ee:51:db:8b:0a:
a7:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:D8:AB:E0:EE:99:68:83:18:DC:9B:90:F2:13:FB:81:7C:9D:BD:70
X509v3 Authority Key Identifier:
keyid:F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/Hdir4O6ZaIMY3JuQ8hP7gXydvXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.18.0/23
185.93.220.0/22
Signature Algorithm: sha256WithRSAEncryption
78:90:57:a6:0e:52:a6:70:7f:34:1c:66:7b:f6:e0:33:f3:ad:
aa:16:1e:a1:de:86:d9:87:b2:73:09:a7:ad:0a:c3:25:e4:7a:
6e:87:c2:34:a6:0f:f6:92:86:5c:50:4d:e9:47:39:da:bb:83:
01:99:b1:d9:c9:e4:58:ad:78:02:b6:80:65:cd:da:5e:d5:78:
4b:27:5a:3c:a2:cd:4d:90:0a:b0:89:3e:50:c5:db:1a:c9:83:
a7:c4:53:52:03:19:50:92:21:63:7c:e0:1e:3b:7b:d4:37:ec:
67:c4:15:da:ba:b4:1f:5d:59:22:82:aa:d2:eb:79:3e:39:4b:
3e:50:1e:79:03:96:cf:05:f8:e9:9c:a5:64:86:94:fc:b1:69:
d4:87:b3:b8:f5:bb:3e:27:f5:3a:0d:6a:40:35:9c:06:5d:0a:
ab:bf:67:d2:b5:3d:f4:94:a2:fd:7d:14:1e:2b:45:11:90:be:
32:86:5c:66:3c:a1:4e:43:c1:18:ee:57:50:66:14:a5:a2:80:
a1:a6:95:02:11:9c:b9:5c:f5:f9:0e:06:85:2c:67:e3:51:72:
d5:3a:9c:97:41:bf:04:cc:8b:17:02:d5:62:a2:83:8a:3a:ab:
0d:98:50:ac:fc:66:7f:1a:f5:26:72:9b:5d:de:9e:64:44:f1:
f7:e9:bc:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:32 2023 by rpki-client on console-fra.rpki-client.org