Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/73e1e0-3d46-428c-ab3b-2159efee6a07/1/HAWQIVzOqteBCoVuYeeUV0AvwtU.roa
File: HAWQIVzOqteBCoVuYeeUV0AvwtU.roa (raw, json)
Hash identifier: yu6YSj9UpUiXhZIzp8r46eHAGcELkTUNmDd18PfgHpg=
Subject key identifier: 1C:05:90:21:5C:CE:AA:D7:81:0A:85:6E:61:E7:94:57:40:2F:C2:D5
Certificate issuer: /CN=bb528c126aed0d7f5a06950eb2c2033486856a15
Certificate serial: E7797A
Authority key identifier: BB:52:8C:12:6A:ED:0D:7F:5A:06:95:0E:B2:C2:03:34:86:85:6A:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u1KMEmrtDX9aBpUOssIDNIaFahU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/73e1e0-3d46-428c-ab3b-2159efee6a07/1/HAWQIVzOqteBCoVuYeeUV0AvwtU.roa
Signing time: Thu 27 Jan 2022 20:06:46 +0000
ROA not before: Thu 27 Jan 2022 20:06:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211073
IP address blocks: 91.207.176.0/24 maxlen: 24
91.207.177.0/24 maxlen: 24
91.207.176.0/23 maxlen: 23
2001:67c:414::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15169914 (0xe7797a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb528c126aed0d7f5a06950eb2c2033486856a15
Validity
Not Before: Jan 27 20:06:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c0590215cceaad7810a856e61e79457402fc2d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:10:a5:1a:9d:96:0d:fc:3d:25:6d:26:ec:17:
9a:38:9b:ef:e0:50:f6:3e:e1:94:7d:12:37:89:71:
bf:9f:9a:d7:aa:9a:75:9a:b7:ce:eb:65:77:3d:bd:
d4:78:c8:49:e5:03:90:20:47:51:3e:f2:ee:e8:b4:
86:14:26:8d:40:2d:0f:3b:aa:83:d8:1d:ee:74:05:
ff:80:f6:79:9f:70:94:a2:88:74:16:b4:14:e9:56:
d2:d2:e6:41:f3:c6:b1:f7:09:a0:a0:a5:80:e3:d9:
81:4c:89:40:4d:b5:2b:e9:e2:bd:64:bd:f3:69:79:
54:42:0b:bb:fc:cb:b6:c3:d7:b6:5e:92:33:23:2b:
1a:7a:3b:2c:41:b8:ab:5e:32:7c:c3:89:a9:0f:21:
60:be:29:a9:1c:31:eb:f0:84:b1:e4:9c:5a:ae:6d:
82:5d:69:0d:16:1c:ee:7b:70:bc:b9:31:8e:04:8c:
4e:d8:5c:c8:e6:4a:7a:74:be:49:d4:cd:58:36:df:
ae:80:bf:12:60:69:53:c2:77:78:7a:b8:16:90:72:
d4:ce:dc:c9:6d:16:9f:03:9d:12:c6:51:a7:ef:48:
4b:27:19:fd:87:49:01:6f:ee:ad:e0:b1:4f:df:9c:
c0:b8:a5:04:37:9a:29:76:2d:92:74:c2:53:49:b0:
dc:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:05:90:21:5C:CE:AA:D7:81:0A:85:6E:61:E7:94:57:40:2F:C2:D5
X509v3 Authority Key Identifier:
keyid:BB:52:8C:12:6A:ED:0D:7F:5A:06:95:0E:B2:C2:03:34:86:85:6A:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u1KMEmrtDX9aBpUOssIDNIaFahU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/73e1e0-3d46-428c-ab3b-2159efee6a07/1/HAWQIVzOqteBCoVuYeeUV0AvwtU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/73e1e0-3d46-428c-ab3b-2159efee6a07/1/u1KMEmrtDX9aBpUOssIDNIaFahU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.176.0/23
IPv6:
2001:67c:414::/48
Signature Algorithm: sha256WithRSAEncryption
14:ed:91:26:12:5d:2e:13:f0:47:87:7e:b3:c7:07:35:6c:e8:
29:97:9c:63:2b:af:11:3d:5a:19:3f:82:6e:9e:ca:ca:f0:12:
35:76:cc:38:f5:f8:22:0b:9f:98:8c:40:09:fe:7c:27:79:45:
06:4b:3c:08:d6:2e:5a:21:5a:dc:b1:39:18:5e:93:87:34:95:
c5:1b:81:d9:cc:d9:21:c2:d2:11:0b:54:8d:24:ad:1f:06:c4:
56:45:f1:0f:60:57:b7:72:ba:f1:07:71:f8:3c:ba:11:36:17:
4d:16:84:7f:fc:b5:2f:06:d7:c0:27:23:59:d0:06:7e:ff:7f:
3c:57:c4:58:2d:2e:85:68:6d:45:e6:39:4f:38:30:c4:d2:d8:
3f:0c:45:3f:19:11:86:bc:6b:6d:46:6b:99:56:ff:3c:3b:34:
ca:b7:41:8e:65:27:4a:d5:eb:02:3a:76:0c:2d:27:32:74:49:
f6:34:b1:d5:69:8a:df:3a:90:57:a4:5c:29:8f:14:28:3a:83:
6a:77:4a:80:2d:74:30:3d:b5:11:54:46:06:3e:6b:4b:56:ec:
e7:bf:90:1b:d2:dc:6a:d4:d8:42:17:21:7b:1c:12:fb:1b:bc:
c5:dd:04:c8:dd:88:6a:25:04:81:38:a2:69:cf:cd:77:c9:95:
22:a5:f1:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:23 2024 by rpki-client on console-fra.rpki-client.org