Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/954653-267e-4313-b906-fc0148119638/1/hgsH0aHJhe3T7E3ojxt-FQAoaCM.roa
File: hgsH0aHJhe3T7E3ojxt-FQAoaCM.roa (raw, json)
Hash identifier: 4pVGCtO8Gf35z0AdMsYP6djEqES3NAXJ/FZVDlDd6y0=
Subject key identifier: 86:0B:07:D1:A1:C9:85:ED:D3:EC:4D:E8:8F:1B:7E:15:00:28:68:23
Certificate issuer: /CN=0b80e7bcb42bccb8092ae28a41aed928eea4d635
Certificate serial: 01516F
Authority key identifier: 0B:80:E7:BC:B4:2B:CC:B8:09:2A:E2:8A:41:AE:D9:28:EE:A4:D6:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C4DnvLQrzLgJKuKKQa7ZKO6k1jU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/954653-267e-4313-b906-fc0148119638/1/hgsH0aHJhe3T7E3ojxt-FQAoaCM.roa
Signing time: Wed 04 May 2022 12:24:29 +0000
ROA not before: Wed 04 May 2022 12:24:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51746
IP address blocks: 91.220.86.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86383 (0x1516f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b80e7bcb42bccb8092ae28a41aed928eea4d635
Validity
Not Before: May 4 12:24:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=860b07d1a1c985edd3ec4de88f1b7e1500286823
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:46:f5:ef:3a:55:10:4a:41:30:20:80:2d:ac:
1d:6f:f5:7d:13:d6:e7:95:c9:1a:20:3e:ff:d2:86:
22:4d:47:ba:4d:4f:8b:b4:08:c5:3b:9e:eb:29:4c:
cd:fe:97:bb:1e:fb:53:24:d1:5a:90:07:1a:0d:6a:
7b:7c:28:c1:2f:1c:58:0b:3d:3e:42:1f:64:d8:52:
7e:e9:cf:92:ad:92:83:1e:69:cb:dd:99:d1:94:1a:
29:89:1b:41:97:01:7c:af:8c:28:62:40:c5:9a:27:
29:35:aa:bd:7f:48:ec:cc:12:a9:6a:24:0b:a1:2e:
d0:a9:04:5d:1a:55:48:80:6f:4e:45:56:f6:f1:a0:
bb:30:3a:b7:d5:5b:d0:02:3f:4b:ba:23:c0:59:8b:
bb:94:fc:83:fd:ad:72:8c:57:a3:9c:ab:53:fe:87:
43:a9:3e:8e:ce:dd:e7:c5:b2:60:ec:47:14:46:50:
69:18:ca:24:1a:a9:dd:2a:a2:1d:34:36:f1:71:f3:
89:d9:c6:91:ae:93:7e:5c:27:e2:52:ce:e2:03:b3:
82:d0:be:c9:e1:34:06:0f:5f:ab:15:fe:43:c7:40:
8e:f4:90:04:b3:4e:de:ac:3b:fd:48:a4:f0:18:b1:
b0:d7:88:89:bf:ef:4c:cb:9b:8f:2f:92:3a:57:1b:
d1:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:0B:07:D1:A1:C9:85:ED:D3:EC:4D:E8:8F:1B:7E:15:00:28:68:23
X509v3 Authority Key Identifier:
keyid:0B:80:E7:BC:B4:2B:CC:B8:09:2A:E2:8A:41:AE:D9:28:EE:A4:D6:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C4DnvLQrzLgJKuKKQa7ZKO6k1jU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/954653-267e-4313-b906-fc0148119638/1/hgsH0aHJhe3T7E3ojxt-FQAoaCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/954653-267e-4313-b906-fc0148119638/1/C4DnvLQrzLgJKuKKQa7ZKO6k1jU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.86.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:5a:09:31:16:fa:77:e6:9c:f2:af:b1:34:9a:da:35:6b:2a:
ee:a9:f7:cd:44:57:ea:73:21:3e:11:02:5c:26:a6:7c:5a:e0:
38:45:3a:18:5f:7d:f4:e9:07:56:84:c7:fa:92:fa:86:3c:60:
94:78:5f:11:c1:91:da:2b:18:e7:35:22:b4:76:13:8f:f7:0c:
03:ac:9d:a5:87:7f:91:56:b6:f7:1e:c7:47:38:81:63:42:9e:
e9:47:5a:84:5f:06:2d:36:ac:21:0a:f7:73:66:83:8a:29:28:
8e:49:d2:0a:16:e8:14:ae:f4:c5:d7:32:f9:5c:b7:3a:5b:04:
1f:89:57:48:b5:25:7f:7c:10:17:93:d4:94:5d:ee:9a:de:f6:
28:c6:df:00:b7:28:49:f5:d4:22:4f:cd:f5:d0:1f:2f:58:9e:
4c:87:59:b4:0f:41:a3:aa:3c:30:14:88:fc:6b:ca:24:95:3a:
9a:74:af:fb:e8:27:4d:6e:bf:e7:6d:a1:d9:0d:17:33:f1:f2:
70:12:3b:45:92:b8:17:03:8e:a4:6f:18:c6:3c:62:ae:1e:31:
c7:de:99:e6:28:81:42:ad:88:a0:fe:58:7d:20:4a:30:b9:2f:
26:5c:4b:50:aa:a6:5d:7e:3b:dd:ba:e0:cf:1d:62:fd:00:0f:
52:8e:81:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:12 2023 by rpki-client on console-fra.rpki-client.org