Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/9c035f-8bf9-46ab-a2c9-9fd9bd7b28bb/1/hmFaVsZAOzOJh8rfqOndITM_moY.roa
File: hmFaVsZAOzOJh8rfqOndITM_moY.roa (raw, json)
Hash identifier: gmjSwiHzBjnqYGoEEtWpB2anhikTKb2g07fL7b2+jTA=
Subject key identifier: 86:61:5A:56:C6:40:3B:33:89:87:CA:DF:A8:E9:DD:21:33:3F:9A:86
Certificate issuer: /CN=d0dbe1087818aadf3424acd8b998c68d97f90796
Certificate serial: E768
Authority key identifier: D0:DB:E1:08:78:18:AA:DF:34:24:AC:D8:B9:98:C6:8D:97:F9:07:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0NvhCHgYqt80JKzYuZjGjZf5B5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/9c035f-8bf9-46ab-a2c9-9fd9bd7b28bb/1/hmFaVsZAOzOJh8rfqOndITM_moY.roa
Signing time: Thu 16 Jun 2022 11:42:44 +0000
ROA not before: Thu 16 Jun 2022 11:42:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59633
IP address blocks: 185.149.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59240 (0xe768)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0dbe1087818aadf3424acd8b998c68d97f90796
Validity
Not Before: Jun 16 11:42:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86615a56c6403b338987cadfa8e9dd21333f9a86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:83:24:e2:c5:48:68:6b:39:a8:f0:65:43:c4:
cb:5f:64:fe:ea:b0:8f:3d:86:e1:70:df:cf:86:28:
2a:fd:e8:7a:50:ee:bf:25:1d:f7:df:ae:23:58:d1:
db:10:72:69:39:e3:de:93:c2:e9:ec:86:94:e9:4e:
f8:1d:8b:82:df:83:08:0c:2b:d0:fc:32:c2:60:23:
74:39:a2:0a:80:7d:67:2c:a3:40:ab:cc:fc:21:16:
33:a9:88:a0:b7:fa:43:8b:1a:5b:81:af:5d:cc:78:
d5:5b:15:bc:cd:87:38:6f:4b:80:4c:b2:60:cc:83:
79:46:6b:0e:9b:20:a9:65:a7:42:f9:35:0e:2b:17:
66:b4:6f:06:42:d6:6f:e6:ac:4a:f6:84:0f:44:dc:
6b:45:82:16:d6:d7:03:74:de:b3:2c:bf:74:d4:f0:
82:21:7c:9d:4e:df:eb:57:c4:23:79:5c:67:be:62:
22:6f:0c:fc:c8:d1:6d:73:25:ab:2c:27:5f:23:f3:
01:8c:c6:32:82:d1:fa:d6:22:53:0f:29:0c:21:55:
e5:a0:22:40:d9:91:2c:dd:1c:9a:ce:ab:9e:4c:e8:
fe:b6:f4:ce:60:38:94:ae:ac:39:24:39:c2:20:5c:
c8:06:32:e1:ad:94:e0:38:08:2f:9b:78:bd:7e:f3:
d6:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:61:5A:56:C6:40:3B:33:89:87:CA:DF:A8:E9:DD:21:33:3F:9A:86
X509v3 Authority Key Identifier:
keyid:D0:DB:E1:08:78:18:AA:DF:34:24:AC:D8:B9:98:C6:8D:97:F9:07:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0NvhCHgYqt80JKzYuZjGjZf5B5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/9c035f-8bf9-46ab-a2c9-9fd9bd7b28bb/1/hmFaVsZAOzOJh8rfqOndITM_moY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/9c035f-8bf9-46ab-a2c9-9fd9bd7b28bb/1/0NvhCHgYqt80JKzYuZjGjZf5B5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.122.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:02:ec:3e:ad:93:19:5e:ed:ad:4b:63:a3:96:a3:21:f1:42:
f4:00:16:d4:69:f3:7e:ae:7a:39:47:b5:2a:34:ec:6e:96:fe:
bf:d1:97:97:8f:17:45:13:d0:a5:68:37:2c:80:78:78:fe:84:
dc:57:fb:98:b3:fa:58:81:3e:d1:02:28:02:94:e1:44:15:f2:
22:48:f0:c9:55:cd:8c:1c:d6:a0:98:37:e5:f9:83:c5:39:9e:
95:a1:19:a7:39:5c:3d:f7:05:df:0a:82:ee:c7:31:fd:3d:0b:
24:d1:fe:70:cc:c7:73:7c:01:52:b7:f5:5b:0a:1b:4c:1a:1d:
10:0c:b9:cb:94:5d:3f:b8:56:58:9c:d2:61:97:86:9e:f8:94:
1d:6b:d0:74:9c:59:f7:1c:a2:3e:80:7f:53:61:49:4d:49:af:
dc:36:31:12:5b:5c:05:dd:b7:a2:41:69:df:75:38:76:24:5b:
71:19:25:9f:43:d7:55:e6:30:22:71:28:22:ec:e7:91:6c:b1:
f9:a3:c1:ec:51:da:be:9d:d3:43:09:0d:de:b7:87:83:e3:6a:
d1:8b:41:41:d2:2e:41:04:7b:37:bb:e0:3e:e4:ca:fc:36:52:
92:09:c2:aa:9b:55:0f:06:9a:4c:52:74:02:3e:df:9f:17:af:
31:e7:9a:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:04 2023 by rpki-client on console-fra.rpki-client.org