Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/HKd5pqI0FBnnEbXCKN9oCjlF9X0.roa
File: HKd5pqI0FBnnEbXCKN9oCjlF9X0.roa (raw, json)
Hash identifier: hSP0qH4Mtg4l1BWKmI44AGZITwe/4Rn2aKTMojp+qMo=
Subject key identifier: 1C:A7:79:A6:A2:34:14:19:E7:11:B5:C2:28:DF:68:0A:39:45:F5:7D
Certificate issuer: /CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Certificate serial: 045B200A
Authority key identifier: 59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/HKd5pqI0FBnnEbXCKN9oCjlF9X0.roa
Signing time: Wed 09 Mar 2022 05:33:38 +0000
ROA not before: Wed 09 Mar 2022 05:33:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201388
IP address blocks: 84.47.154.0/24 maxlen: 24
84.47.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73080842 (0x45b200a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Validity
Not Before: Mar 9 05:33:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ca779a6a2341419e711b5c228df680a3945f57d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:1f:22:61:69:0f:71:28:b5:99:0f:93:21:85:
96:9b:81:be:36:0b:60:67:ed:ae:a8:00:e6:62:f5:
ad:c0:af:f0:44:39:50:6d:70:83:06:82:1a:d4:82:
f4:72:60:33:4a:0a:e0:0a:50:7c:d7:fe:a3:97:17:
3b:4a:bf:8d:73:6f:19:49:46:f5:f8:56:3b:cf:98:
88:3f:2e:72:ea:46:89:c6:a1:18:9c:ab:18:9e:40:
11:cc:69:96:c9:b6:b7:40:a5:29:46:05:3f:c4:43:
e8:f8:13:0b:13:1c:65:be:c6:fd:76:43:52:a0:c4:
9d:f4:3e:79:41:d6:e8:d8:bc:8b:4b:7c:ad:33:d7:
f3:39:6f:eb:0f:a7:e5:fd:59:1e:17:bf:a6:0a:64:
30:62:26:94:bb:08:34:0e:11:79:9e:cd:67:10:ef:
f8:ba:b0:e3:7e:7b:f6:24:c5:b2:7f:29:71:48:8c:
9c:ad:22:61:02:77:cb:f8:25:11:52:81:3d:4b:b1:
6e:e2:f9:c0:4e:6d:57:cb:43:80:15:25:03:20:27:
04:16:ec:25:38:46:20:75:37:b1:cb:cf:83:e2:ea:
7e:14:30:64:bb:e5:4f:33:0e:71:9e:72:16:53:3b:
9c:d0:e3:2a:78:1b:b9:06:15:d4:0f:d5:e0:92:ad:
2e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:A7:79:A6:A2:34:14:19:E7:11:B5:C2:28:DF:68:0A:39:45:F5:7D
X509v3 Authority Key Identifier:
keyid:59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/HKd5pqI0FBnnEbXCKN9oCjlF9X0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.47.154.0/23
Signature Algorithm: sha256WithRSAEncryption
68:25:0d:e8:f8:4d:e1:e4:e0:8a:84:1a:0d:7c:3a:ed:ee:92:
03:fe:f3:f6:55:24:9d:38:02:ad:99:10:24:8a:fd:97:d5:f7:
c7:2e:b5:79:e1:f1:2a:e5:0f:27:d7:8a:3a:18:bc:7d:6f:cf:
9a:69:a5:aa:7b:f7:38:19:3b:ef:62:72:c0:ad:f5:39:dc:c4:
0e:a2:9c:f3:88:cc:3e:36:12:d0:13:47:22:25:b7:a9:b8:05:
10:1b:00:41:3a:fd:c1:11:33:aa:79:96:bd:95:57:81:7e:b2:
19:37:7e:d7:91:f8:c6:6b:0c:66:47:8b:d0:0b:87:47:ba:8e:
92:94:95:fb:36:50:06:fd:eb:ac:20:af:27:91:29:be:3c:9c:
19:a8:0f:55:6f:3d:d8:85:a8:93:e4:e6:77:ca:b2:da:fd:b7:
60:ce:e5:3b:be:fb:cd:47:82:83:6d:31:eb:5b:dd:ae:d8:45:
89:49:fc:db:d3:7e:53:12:f2:5e:cc:7b:ab:85:ed:db:45:82:
61:ab:10:3d:ee:2d:e7:9a:82:ba:65:21:1a:61:7e:38:65:b0:
10:64:93:ba:ac:96:ec:5f:e6:a3:33:b5:9c:da:62:6f:8e:3b:
08:50:1b:3a:6d:20:8f:0e:1c:d5:b8:88:e8:54:c1:05:cc:19:
3a:3b:7b:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:20 2024 by rpki-client on console-ams.rpki-client.org