Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/hvcTI4TJKgVHIYLTthVUguHHatw.roa
File: hvcTI4TJKgVHIYLTthVUguHHatw.roa (raw, json)
Hash identifier: 1kwW51msnvpkjKprLMLBFrbaVtSZ4B42zhDvHkkzHZU=
Subject key identifier: 86:F7:13:23:84:C9:2A:05:47:21:82:D3:B6:15:54:82:E1:C7:6A:DC
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 3BEA69
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/hvcTI4TJKgVHIYLTthVUguHHatw.roa
Signing time: Sat 01 Jan 2022 00:56:05 +0000
ROA not before: Sat 01 Jan 2022 00:56:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 45.156.52.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3926633 (0x3bea69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Jan 1 00:56:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86f7132384c92a05472182d3b6155482e1c76adc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:82:20:d6:25:29:cc:fa:9a:c9:c2:0f:9f:26:
8f:bf:39:58:b7:78:74:00:1f:f8:26:bd:b0:8f:bd:
9b:ef:5a:00:d6:2b:e4:d2:5f:04:28:74:fa:f4:ed:
ab:3a:3b:f9:70:c3:b1:78:20:18:13:1b:ba:4d:a8:
0c:5d:a3:7f:39:19:4b:95:74:fd:15:4a:44:99:14:
44:0b:aa:e5:7f:a2:1d:e0:31:2d:a5:e0:63:9e:d8:
70:eb:45:92:d7:cc:81:1a:d9:64:b3:95:9a:ea:95:
02:3c:eb:b6:9b:a5:d2:cd:a8:d0:53:0a:f0:6d:2c:
f6:07:22:c5:0e:90:7f:db:da:03:2d:e2:0e:45:1f:
55:fb:e1:4c:7e:33:f3:0c:75:11:69:c1:e4:ed:ed:
12:00:60:19:9f:ea:c3:15:2e:31:fb:81:90:29:35:
19:20:86:ed:72:e0:ab:9c:fe:50:f3:80:5e:4c:cb:
bb:6c:20:ce:8c:20:73:02:4b:54:ab:b7:30:3d:99:
ce:d3:85:02:5e:5c:a5:f1:5d:5d:51:1a:b6:6f:63:
d2:8f:27:49:5d:ec:03:33:a9:f5:af:83:61:9b:5a:
5d:19:0f:fa:98:d1:5d:63:be:7c:64:8d:3c:62:bc:
d7:5b:db:11:6b:b7:58:56:86:b4:df:3f:34:42:a8:
41:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:F7:13:23:84:C9:2A:05:47:21:82:D3:B6:15:54:82:E1:C7:6A:DC
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/hvcTI4TJKgVHIYLTthVUguHHatw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.52.0/22
Signature Algorithm: sha256WithRSAEncryption
67:2f:0b:6e:99:35:10:c0:a4:78:3b:91:2b:24:51:21:8c:78:
46:64:5c:30:99:ec:ea:be:66:90:f1:26:cb:bc:e1:80:49:92:
c6:d8:f4:9e:dd:6c:ee:ab:4d:af:26:a8:5d:01:6a:7c:af:f6:
36:93:56:24:62:83:0b:4b:3e:60:8d:20:ca:50:ab:a6:3a:46:
95:5f:69:89:ae:a5:f2:08:a8:f4:1b:5e:b5:a8:1b:93:0a:c9:
13:1a:3f:91:99:32:85:93:3a:00:74:4e:08:1a:05:f5:10:e1:
d9:ac:4a:91:84:1b:a1:04:bd:b3:ee:fa:76:22:03:aa:1d:cc:
f7:5b:79:1e:ec:9d:b3:b5:de:ea:35:18:4a:88:f8:b8:51:1a:
fc:68:49:6f:84:69:ff:83:b9:17:47:ba:fc:5c:3c:cd:2a:81:
6a:29:4a:09:d4:38:a8:e0:e9:7f:44:82:2f:cd:83:be:04:2c:
f5:52:9a:8f:e6:23:34:26:0b:6b:8f:7d:b7:51:26:b9:ec:fd:
d2:ef:4a:0f:7c:7f:c4:86:a2:66:4a:4e:70:94:93:c1:19:78:
a9:c7:7d:d1:09:0d:70:14:5e:bf:a8:fd:dc:e0:19:e3:ee:b2:
e6:8e:8c:8e:11:8c:6c:39:eb:3f:d4:33:f5:c7:b6:ed:10:43:
2c:dd:b1:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:15 2023 by rpki-client on console-ams.rpki-client.org