Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/HzsXkq-osjJQ7AaM4DZCocdDgbI.roa
File: HzsXkq-osjJQ7AaM4DZCocdDgbI.roa (raw, json)
Hash identifier: t/q+6Y20c3U8pZ5BACcBsiS0u4d6od8PAoPWHVW6jQE=
Subject key identifier: 1F:3B:17:92:AF:A8:B2:32:50:EC:06:8C:E0:36:42:A1:C7:43:81:B2
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 2C9B8AF4
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/HzsXkq-osjJQ7AaM4DZCocdDgbI.roa
Signing time: Sat 01 Jan 2022 04:59:33 +0000
ROA not before: Sat 01 Jan 2022 04:59:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25154
IP address blocks: 212.91.19.0/24 maxlen: 24
212.91.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 748391156 (0x2c9b8af4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 1 04:59:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f3b1792afa8b23250ec068ce03642a1c74381b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ae:58:68:05:13:c2:f7:f0:ba:dc:b0:12:1d:
69:c1:55:e3:05:23:b1:fe:7e:ad:d6:7c:da:50:f1:
97:fe:76:aa:21:ed:24:79:fe:c3:04:69:25:ef:f1:
24:a4:e3:9c:c1:ff:4c:a2:d9:c4:93:ca:48:5d:1a:
4b:89:c8:6f:be:44:8f:5a:4e:92:cb:7a:af:63:35:
1f:60:a4:24:c0:4f:8e:c7:66:43:ed:c0:a9:6e:ad:
29:a4:e0:02:0e:b2:8c:8c:18:a1:7a:91:bc:62:9a:
1f:0d:ad:e3:ad:81:bc:09:f3:11:11:40:b9:fa:a1:
90:17:52:07:df:55:0e:eb:aa:87:ec:9f:57:2e:4f:
b7:2b:99:7a:e9:da:ff:0c:80:50:56:31:3a:4b:e2:
6f:66:9e:c4:a0:f4:74:d1:d8:0d:03:60:79:2e:54:
d2:b2:81:8c:2d:05:59:e2:9c:49:5f:c3:98:d8:28:
d1:36:f7:be:a5:1f:18:a4:59:16:cf:78:09:dc:2e:
5c:72:0c:27:08:2c:07:69:0f:b2:80:13:6d:c0:db:
fd:86:1c:ec:ac:7e:9c:42:26:62:c8:d2:4c:6b:f7:
a5:02:16:dd:74:75:9a:e5:c7:4e:a0:8b:27:5a:5c:
0a:f8:5d:5c:4e:46:3e:0d:8c:74:aa:ea:3c:62:ec:
be:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:3B:17:92:AF:A8:B2:32:50:EC:06:8C:E0:36:42:A1:C7:43:81:B2
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/HzsXkq-osjJQ7AaM4DZCocdDgbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.91.18.0/23
Signature Algorithm: sha256WithRSAEncryption
ab:4e:2b:f2:95:f5:6d:f4:c7:0e:02:1f:08:83:28:dc:65:8b:
3f:75:9f:58:7f:b7:70:dd:4f:86:d1:d6:5c:2d:4b:50:00:09:
b8:88:b0:e8:3b:ed:ae:09:d5:65:e4:9e:5e:57:47:f0:07:7d:
e9:0d:3e:fc:1c:37:91:89:c0:04:6c:e1:ff:45:e2:5c:a0:a4:
6d:de:f9:f8:ba:48:5b:6e:b6:b7:65:a2:a1:33:66:51:17:9d:
b1:8f:53:3c:7a:74:fd:24:93:cd:45:ef:21:85:c7:6e:61:b4:
38:34:16:db:a6:f5:9d:0c:ad:5f:d8:f4:9a:51:b1:b5:99:87:
c8:c3:b8:ea:96:8c:9b:eb:b4:88:75:5d:86:08:cf:98:a2:d2:
60:3f:e3:d0:93:d8:13:bd:90:75:b1:41:27:44:e3:c2:c0:c7:
9c:5a:50:01:9c:2c:d9:fd:8b:52:f8:a3:ba:2b:80:e5:7f:b9:
b0:08:db:72:54:f4:dc:5c:53:12:ac:fa:c7:18:c1:ad:da:99:
ad:68:8f:1a:a5:b8:af:a9:a3:3e:2c:80:91:8b:18:9e:b7:a5:
de:c0:d9:bf:b2:99:f5:3b:43:47:d7:da:2e:b9:3a:47:b9:f0:
ca:03:1c:c7:cf:16:77:cd:62:86:ba:3a:3e:73:9c:ff:b7:b8:
b1:91:0f:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:52 2024 by rpki-client on console-ams.rpki-client.org