Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/840757-8149-40fe-a49b-ae5e74ed5ba0/1/hrh0YHi_AEkp0sLyJMxyEB-ORAQ.roa
File: hrh0YHi_AEkp0sLyJMxyEB-ORAQ.roa (raw, json)
Hash identifier: 1X6fnQW2c6EJz0E1eNEK8D8J9yx89W0gNPpfs9Js4hw=
Subject key identifier: 86:B8:74:60:78:BF:00:49:29:D2:C2:F2:24:CC:72:10:1F:8E:44:04
Certificate issuer: /CN=f9a3520fd9c299a2874df5e47b6302a4252a726b
Certificate serial: 0AAD0C8F
Authority key identifier: F9:A3:52:0F:D9:C2:99:A2:87:4D:F5:E4:7B:63:02:A4:25:2A:72:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-aNSD9nCmaKHTfXke2MCpCUqcms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/840757-8149-40fe-a49b-ae5e74ed5ba0/1/hrh0YHi_AEkp0sLyJMxyEB-ORAQ.roa
Signing time: Sat 01 Jan 2022 01:02:01 +0000
ROA not before: Sat 01 Jan 2022 01:02:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202253
IP address blocks: 62.182.44.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179113103 (0xaad0c8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f9a3520fd9c299a2874df5e47b6302a4252a726b
Validity
Not Before: Jan 1 01:02:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86b8746078bf004929d2c2f224cc72101f8e4404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:49:b7:70:af:34:23:83:d2:82:40:ed:b2:e2:
f5:7f:7f:46:e3:b1:8c:55:99:c7:02:04:5b:fa:a6:
b4:3b:5f:10:3b:d3:de:54:6e:da:20:ba:d2:b2:8b:
c1:aa:4a:f5:1e:e1:71:96:8f:f7:55:b1:32:fe:54:
a1:d6:af:ff:4b:fe:5f:80:63:ed:ce:23:c9:c3:df:
fc:32:aa:76:dc:36:92:da:fd:7a:1c:38:cb:76:8f:
46:86:3a:7b:3c:09:b9:17:9e:67:cd:36:0c:48:f6:
25:60:63:e4:49:6b:9b:f2:6f:30:20:ba:f1:12:b7:
01:f9:e5:44:2a:7b:a5:79:8c:b6:93:be:79:da:b5:
4f:d3:ee:43:19:9f:3c:4e:43:ba:fc:8f:12:db:fa:
2c:2e:98:ff:0d:cf:89:6c:f9:95:ee:1a:1b:8a:a6:
e1:b8:16:49:a5:39:e9:cf:7f:4e:22:28:c1:00:cd:
84:9e:79:f7:a4:24:e0:68:24:f2:ea:66:5c:6f:b9:
1f:c0:0f:e8:63:87:1e:a2:ed:bd:94:08:36:a4:e8:
cd:80:1c:32:12:57:c9:c0:96:4a:8c:26:e0:da:8c:
62:e7:f2:f8:56:7d:66:fa:00:5a:fb:f3:7a:1d:54:
ce:0e:02:fe:96:08:86:21:61:10:46:9b:be:66:c0:
e6:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:B8:74:60:78:BF:00:49:29:D2:C2:F2:24:CC:72:10:1F:8E:44:04
X509v3 Authority Key Identifier:
keyid:F9:A3:52:0F:D9:C2:99:A2:87:4D:F5:E4:7B:63:02:A4:25:2A:72:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-aNSD9nCmaKHTfXke2MCpCUqcms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/840757-8149-40fe-a49b-ae5e74ed5ba0/1/hrh0YHi_AEkp0sLyJMxyEB-ORAQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/840757-8149-40fe-a49b-ae5e74ed5ba0/1/1-aNSD9nCmaKHTfXke2MCpCUqcms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.182.44.0/22
Signature Algorithm: sha256WithRSAEncryption
15:34:7f:c9:20:ac:35:ee:e8:3a:83:fb:0e:77:f9:4f:05:c1:
53:10:4e:af:85:f2:68:d0:67:cd:5a:84:af:86:38:97:f2:1b:
f0:59:dd:6c:d9:b9:05:1a:55:5e:3d:65:46:8b:0c:66:6e:28:
9d:6e:7d:a3:41:21:99:5a:73:47:8e:bc:bd:ad:c3:94:db:d1:
f0:06:d8:a1:fd:94:f0:1e:1d:a3:41:71:d4:9a:ae:ab:86:5a:
78:8c:9a:3f:c4:85:f6:90:74:d3:45:54:e6:b4:5b:d1:24:06:
ac:24:6b:09:81:43:51:2d:f4:e4:b7:4a:b0:54:49:72:d4:de:
d6:d3:ae:d5:2b:43:cf:f0:25:6a:17:d6:9c:05:5b:da:08:5e:
ac:da:7a:c7:fa:4c:07:2a:95:c1:66:e2:39:f1:96:d4:15:5e:
a4:71:5c:d3:df:29:02:7d:98:a4:15:37:c0:c5:85:87:f7:80:
00:10:72:8f:cd:f6:84:fc:5d:fc:e1:bf:2c:78:84:f8:79:57:
51:a8:31:3e:da:7f:7b:66:aa:3e:13:5b:13:06:17:3f:f1:d0:
ba:60:60:7a:e3:b1:29:f7:75:ca:9c:72:29:ab:93:d1:21:82:
7d:4b:32:d7:28:ee:4d:59:0e:f8:f1:40:cf:44:b4:ec:7b:7d:
95:07:f3:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:25 2023 by rpki-client on console-fra.rpki-client.org