Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/_HKhZ_3HfRjPX03fNAHBhsUOt_k.roa
File: _HKhZ_3HfRjPX03fNAHBhsUOt_k.roa (raw, json)
Hash identifier: kqzHDk2Pqz2eVR2Im1gyzbR05WgULmlpQ7MSSEoAgc8=
Subject key identifier: FC:72:A1:67:FD:C7:7D:18:CF:5F:4D:DF:34:01:C1:86:C5:0E:B7:F9
Certificate issuer: /CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Certificate serial: 0122F34F
Authority key identifier: B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/_HKhZ_3HfRjPX03fNAHBhsUOt_k.roa
Signing time: Thu 26 May 2022 10:00:13 +0000
ROA not before: Thu 26 May 2022 10:00:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 185.63.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19067727 (0x122f34f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Validity
Not Before: May 26 10:00:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc72a167fdc77d18cf5f4ddf3401c186c50eb7f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f2:c5:43:84:f5:62:81:f1:8d:a2:2e:0d:07:
e0:ce:6c:ba:17:a1:54:77:0b:4d:5a:ed:a5:35:97:
ec:eb:5a:4c:58:cd:5d:81:a6:c0:05:95:0e:d7:72:
0a:6e:e6:a1:30:0c:94:dd:cf:62:61:e9:f0:d9:4b:
7a:95:36:6a:82:60:5e:b5:b0:32:0a:85:a4:86:3f:
4f:ca:ec:63:16:c5:c7:f4:24:d1:14:1e:dc:1a:fa:
76:ac:5b:28:8b:48:c8:78:3f:4e:80:a6:5f:47:44:
c3:45:28:0d:e9:2f:e2:30:69:ae:03:ff:26:e4:4d:
78:78:36:05:07:7a:a7:b0:d3:dc:38:de:db:a9:60:
c4:ff:49:40:78:1d:97:68:43:58:f9:70:6e:69:91:
59:c5:dd:76:f5:c1:54:c0:90:b2:b9:77:95:60:8f:
1a:a4:19:0a:1d:64:86:6e:b6:71:72:87:79:ba:83:
88:43:1f:4b:95:92:24:e9:da:e7:5d:93:65:0c:54:
9c:6a:e2:7e:bb:2c:cd:5c:34:1e:34:40:98:0e:16:
62:ec:5e:a1:83:56:aa:ff:c4:21:23:ec:4a:d8:4c:
0c:5c:1c:96:86:73:a3:9d:80:6a:7e:e5:60:11:9a:
17:10:83:e9:a0:b0:09:c6:77:e4:47:d0:8e:d5:7f:
4c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:72:A1:67:FD:C7:7D:18:CF:5F:4D:DF:34:01:C1:86:C5:0E:B7:F9
X509v3 Authority Key Identifier:
keyid:B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/_HKhZ_3HfRjPX03fNAHBhsUOt_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.35.0/24
Signature Algorithm: sha256WithRSAEncryption
99:7e:b0:3b:db:1a:3e:b9:04:e5:e0:39:3e:5c:dd:7f:0e:9a:
11:dd:63:58:c4:ea:3d:57:08:ba:b9:7f:02:9e:45:ad:d2:1d:
8f:be:00:77:87:c2:37:0e:d0:98:84:8f:68:b2:8c:f7:17:7f:
89:25:7d:91:2d:c3:8a:d8:2b:4e:56:6b:12:b1:3b:f1:e7:3b:
5a:a3:35:21:88:f8:60:06:fa:50:7d:97:cb:1d:35:15:92:a1:
18:c0:f9:ad:1c:af:24:8b:f3:d0:c5:39:b3:a7:c5:7f:2e:6a:
bb:85:33:a6:6c:99:a1:b8:4a:ec:f2:0d:9c:ea:71:23:60:ee:
08:c2:a0:bf:3b:1d:45:e4:b2:6a:5e:34:be:d3:c9:21:b5:bd:
51:fb:dd:13:89:a1:18:e8:be:cb:fd:93:58:08:8a:36:bb:60:
bd:2e:b9:10:fc:c7:d2:14:06:11:04:66:bc:9e:3c:70:98:38:
7e:6b:b5:74:c9:89:26:49:2d:92:17:ea:cc:fe:4e:f1:65:74:
2a:ae:25:9c:c9:1c:27:11:b6:98:cb:af:2d:74:58:92:1b:d0:
d7:3c:a9:ef:bf:21:b4:8b:1a:16:78:8f:a0:1b:8b:0e:c0:d7:
5c:f7:06:81:f1:04:9e:b3:da:af:8d:a6:ff:e9:b9:2e:25:7e:
4c:72:d6:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:23 2024 by rpki-client on console-ams.rpki-client.org