Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/b7d20e-33bc-4b23-a198-2244fd6185d3/1/hcIFKXfr9Q1Rkekg4QWCTNo3pVs.roa
File: hcIFKXfr9Q1Rkekg4QWCTNo3pVs.roa (raw, json)
Hash identifier: YpQf7LIOV3clUTB/JyHhD5eGdJ5GrRKXvXL9CdIOEcg=
Subject key identifier: 85:C2:05:29:77:EB:F5:0D:51:91:E9:20:E1:05:82:4C:DA:37:A5:5B
Certificate issuer: /CN=8600aaf13d4de9c95b63759ad18636abc8e26376
Certificate serial: 730E6B
Authority key identifier: 86:00:AA:F1:3D:4D:E9:C9:5B:63:75:9A:D1:86:36:AB:C8:E2:63:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hgCq8T1N6clbY3Wa0YY2q8jiY3Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/b7d20e-33bc-4b23-a198-2244fd6185d3/1/hcIFKXfr9Q1Rkekg4QWCTNo3pVs.roa
Signing time: Sat 01 Jan 2022 00:56:49 +0000
ROA not before: Sat 01 Jan 2022 00:56:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48740
IP address blocks: 91.212.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7540331 (0x730e6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8600aaf13d4de9c95b63759ad18636abc8e26376
Validity
Not Before: Jan 1 00:56:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85c2052977ebf50d5191e920e105824cda37a55b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:3e:6b:cc:ea:17:66:35:10:ab:42:68:3d:4c:
44:fe:d8:7e:df:fc:c2:1f:51:71:da:fa:90:00:fd:
1b:b5:c5:a2:3c:05:0e:f9:3d:27:88:4a:35:43:34:
9e:c7:ca:00:2a:76:eb:9c:0c:69:a4:70:fd:0b:60:
5c:71:a1:ad:74:d5:b0:ad:55:14:a8:5a:ed:32:a7:
72:65:23:e3:3a:72:1d:8e:3c:0b:89:ac:ba:ba:af:
a1:5e:aa:6f:44:97:b7:eb:e1:35:da:7c:59:77:bb:
af:86:67:16:5f:9b:57:60:a5:cf:ca:3c:9b:37:9e:
c8:05:a6:a5:3e:91:f7:d6:4b:f2:12:44:82:42:ca:
59:e8:47:a9:14:97:4c:7a:6b:38:b0:80:e1:cc:9b:
37:4a:2a:1f:30:c8:fd:84:43:0c:16:87:73:44:01:
f0:68:b2:c4:b0:64:a9:8e:a5:c3:49:21:b4:93:ae:
be:8e:32:86:d5:ac:9f:c2:0e:0c:9a:17:d6:cd:95:
29:8c:0b:9e:a7:58:4f:96:1e:ef:ce:36:d0:26:ee:
02:23:18:6d:09:4b:d7:34:2b:2c:41:d3:05:58:47:
7b:f8:ff:23:ba:c5:64:f3:33:f4:a4:9f:b7:30:c4:
c1:f9:2b:6e:8c:f5:0b:c1:6d:fc:98:0d:1b:87:60:
b3:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:C2:05:29:77:EB:F5:0D:51:91:E9:20:E1:05:82:4C:DA:37:A5:5B
X509v3 Authority Key Identifier:
keyid:86:00:AA:F1:3D:4D:E9:C9:5B:63:75:9A:D1:86:36:AB:C8:E2:63:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hgCq8T1N6clbY3Wa0YY2q8jiY3Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b7d20e-33bc-4b23-a198-2244fd6185d3/1/hcIFKXfr9Q1Rkekg4QWCTNo3pVs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b7d20e-33bc-4b23-a198-2244fd6185d3/1/hgCq8T1N6clbY3Wa0YY2q8jiY3Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.1.0/24
Signature Algorithm: sha256WithRSAEncryption
21:6f:21:50:31:e8:83:82:43:40:8c:41:56:0b:5e:82:7b:96:
6f:85:75:ed:63:22:dc:cc:c1:3c:45:20:4c:49:b8:df:bd:68:
30:c8:d8:2e:00:4f:f8:26:20:65:66:71:ac:d0:80:3a:b2:cc:
aa:ec:b5:49:35:11:c4:b4:20:18:c6:73:97:2a:ed:25:1b:9f:
91:36:11:a0:ae:fd:9f:6e:e7:29:ff:d1:b8:dc:dd:57:cc:ae:
61:30:9a:b7:e4:3f:b7:07:9c:2f:ac:4f:31:9a:99:21:ec:0c:
78:53:4d:b2:77:9b:ae:d1:5a:24:67:66:82:a6:da:df:80:16:
0e:44:17:fd:5d:39:dd:b4:b7:80:02:7d:25:26:e0:b1:67:69:
6e:f4:7e:3d:7c:f5:a7:28:1c:df:a2:a6:16:64:b7:f2:48:ee:
6e:50:72:2f:9a:7f:88:df:33:46:62:b0:13:6b:6a:b7:f9:8a:
27:26:05:68:8c:e6:06:48:d5:46:d9:a9:eb:ac:a3:8a:5f:6f:
6a:23:8e:a3:94:ea:2f:19:df:7b:ff:28:7a:09:42:fe:15:6b:
95:ac:fc:c4:62:0a:e8:82:8e:54:90:9d:40:b1:ac:e3:02:06:
2a:30:5b:b0:2e:eb:b6:28:30:9c:af:93:78:f9:be:b1:a2:21:
6b:b0:40:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:14 2024 by rpki-client on console-fra.rpki-client.org