Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/HkFtu7BclTjuVkIOw84yguOn1JM.roa
File: HkFtu7BclTjuVkIOw84yguOn1JM.roa (raw, json)
Hash identifier: I4FD53c4yqeKW9TYagWmv3J8IfWQC81fL86NhUV8tVE=
Subject key identifier: 1E:41:6D:BB:B0:5C:95:38:EE:56:42:0E:C3:CE:32:82:E3:A7:D4:93
Certificate issuer: /CN=29be02dea0a086e9880f564c86872bbc597cc672
Certificate serial: 0184AE835222E041F4C271DE9E88943BA892
Authority key identifier: 29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/HkFtu7BclTjuVkIOw84yguOn1JM.roa
Signing time: Fri 25 Nov 2022 11:19:12 +0000
ROA not before: Fri 25 Nov 2022 11:19:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60392
IP address blocks: 139.45.212.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ae:83:52:22:e0:41:f4:c2:71:de:9e:88:94:3b:a8:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29be02dea0a086e9880f564c86872bbc597cc672
Validity
Not Before: Nov 25 11:19:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e416dbbb05c9538ee56420ec3ce3282e3a7d493
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:11:d0:49:e4:b0:c0:93:f8:2f:fc:f2:ba:5c:
b0:f3:bd:f2:6b:2e:e6:74:14:3d:b0:e4:ab:8c:27:
50:1b:eb:03:84:70:5f:07:9f:29:ef:fe:1c:b9:41:
01:62:1a:e8:10:fc:db:0d:97:cf:2e:c1:1a:a5:43:
53:10:96:b6:a7:5e:68:01:26:24:de:22:04:3f:d3:
3b:1d:26:94:20:e8:66:e5:18:c6:b4:75:b2:52:44:
28:75:56:6a:28:c5:e9:1a:4e:9d:3b:b5:a3:d9:06:
d2:0e:dc:8d:16:6c:d0:c0:2d:c5:20:43:4b:af:3b:
24:f9:2b:f9:2e:c1:69:90:49:4e:66:e3:b6:49:28:
58:d4:50:5c:b3:2d:39:b8:e8:a9:4b:c0:f6:b1:05:
9c:e5:b7:14:13:27:16:54:f6:2d:af:b9:47:1c:df:
10:71:b3:2b:ce:81:32:dd:5b:75:ee:96:00:d8:d0:
da:b4:f6:54:41:b6:10:45:9e:5a:f9:23:32:25:7d:
b1:2d:e9:c2:18:7d:c5:a8:7a:5d:91:92:79:81:8f:
a2:b7:a3:8f:ce:c4:91:02:a5:f7:eb:ab:d7:7a:43:
b7:e7:cc:04:df:5f:a9:48:d7:79:32:72:2d:53:24:
f3:0e:f6:f3:56:df:73:8c:0c:40:12:2b:f7:c7:79:
2f:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:41:6D:BB:B0:5C:95:38:EE:56:42:0E:C3:CE:32:82:E3:A7:D4:93
X509v3 Authority Key Identifier:
keyid:29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/HkFtu7BclTjuVkIOw84yguOn1JM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.45.212.0/23
Signature Algorithm: sha256WithRSAEncryption
81:31:be:46:f1:21:7b:27:67:34:ff:a9:84:ef:ec:5f:88:9b:
6e:df:7c:7c:88:26:a6:1c:c4:c4:a5:b3:21:36:ee:57:c8:84:
80:0f:a5:22:33:9f:ff:a4:29:fd:92:d5:dc:5c:77:1a:94:d5:
5c:dd:02:a1:86:5d:13:8b:91:6b:00:89:4d:9c:5f:47:a4:30:
62:fd:82:01:42:32:43:25:cb:35:ed:49:97:fd:0b:23:ff:8b:
c3:eb:9e:e7:29:c9:c0:c5:7b:24:ed:79:86:5d:da:d3:ac:1e:
39:6d:65:8b:bf:62:33:db:43:49:57:82:3c:88:54:e3:4e:9a:
f1:d0:3b:7a:8d:bf:91:4f:b4:df:da:31:03:9e:26:6f:8b:fa:
9f:ba:78:b8:20:6f:fe:55:a6:a5:ec:35:60:59:fe:a0:11:78:
cd:da:8f:08:6a:01:a2:c9:0d:66:b7:6d:96:55:e6:68:95:98:
10:64:92:e1:c0:01:af:3d:a0:23:43:c9:21:64:5f:6a:4d:d8:
45:39:8f:49:c3:22:43:68:b8:33:9e:5f:73:44:d3:6b:dd:ac:
47:09:d6:bc:8e:86:0a:8d:ff:d7:d0:90:fb:45:99:51:37:c0:
8e:49:61:d7:83:8c:58:6a:04:30:70:b7:d6:0e:1e:18:cd:cf:
4f:df:9b:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:40 2023 by rpki-client on console-fra.rpki-client.org