Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/7b1ef8-a377-4e59-a55c-19b2fbeaea4c/1/Hb2Cn7FqrWli8M-8Ll8eEJcZ6yQ.roa
File: Hb2Cn7FqrWli8M-8Ll8eEJcZ6yQ.roa (raw, json)
Hash identifier: Lx+m2GD8xEHoRG/vxNClG1V/GuEWNtINfDI6iusWhDQ=
Subject key identifier: 1D:BD:82:9F:B1:6A:AD:69:62:F0:CF:BC:2E:5F:1E:10:97:19:EB:24
Certificate issuer: /CN=283dc03f2c2e73903a503e77accf7d3c752be971
Certificate serial: 0183F0A3D3ED718402B43899F9F48AF884C1
Authority key identifier: 28:3D:C0:3F:2C:2E:73:90:3A:50:3E:77:AC:CF:7D:3C:75:2B:E9:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KD3APywuc5A6UD53rM99PHUr6XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/7b1ef8-a377-4e59-a55c-19b2fbeaea4c/1/Hb2Cn7FqrWli8M-8Ll8eEJcZ6yQ.roa
Signing time: Wed 19 Oct 2022 14:26:51 +0000
ROA not before: Wed 19 Oct 2022 14:26:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30742
IP address blocks: 193.176.72.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f0:a3:d3:ed:71:84:02:b4:38:99:f9:f4:8a:f8:84:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=283dc03f2c2e73903a503e77accf7d3c752be971
Validity
Not Before: Oct 19 14:26:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1dbd829fb16aad6962f0cfbc2e5f1e109719eb24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:4d:b0:ab:e8:62:3c:f5:96:c9:94:18:cc:c3:
1f:b2:31:e5:2f:2e:64:68:4b:82:f0:c4:d3:33:47:
6d:7b:87:29:ee:2d:40:9b:84:4f:72:6b:63:1c:36:
a1:47:70:cc:b0:e3:78:d1:4e:16:25:ec:79:4d:b8:
12:ce:28:40:ad:78:f4:4c:5b:15:c8:43:ea:b1:3d:
52:bf:cf:f7:78:eb:41:83:cc:79:e4:80:86:04:0b:
9c:76:7d:bf:f9:5e:88:23:f3:9b:55:a9:9a:00:e3:
37:7a:b1:65:c5:68:07:c5:c1:e2:7c:f3:4e:93:a5:
9f:6a:87:e7:a1:3f:ac:13:65:af:e3:1a:7a:9f:29:
f9:cd:7e:c1:a1:e6:33:5b:18:7e:ec:bf:fe:69:61:
7b:43:34:04:7b:4f:87:4e:d4:ea:a7:22:99:79:21:
94:64:c3:8e:72:0e:16:ce:21:d1:31:03:f9:5d:e7:
06:16:7b:29:2c:28:21:4a:39:49:0d:ea:aa:4b:dc:
ca:f1:82:2e:ec:81:56:e2:87:e3:54:d3:37:51:51:
1c:e9:fb:6d:b1:17:a4:04:5e:cc:e6:7a:5d:e3:ff:
e4:d3:2f:ff:06:7f:6e:cb:04:f6:b9:46:09:4e:cc:
3b:1e:93:e0:4f:fe:6c:e6:8f:ae:2d:23:18:80:72:
9e:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:BD:82:9F:B1:6A:AD:69:62:F0:CF:BC:2E:5F:1E:10:97:19:EB:24
X509v3 Authority Key Identifier:
keyid:28:3D:C0:3F:2C:2E:73:90:3A:50:3E:77:AC:CF:7D:3C:75:2B:E9:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KD3APywuc5A6UD53rM99PHUr6XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/7b1ef8-a377-4e59-a55c-19b2fbeaea4c/1/Hb2Cn7FqrWli8M-8Ll8eEJcZ6yQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/7b1ef8-a377-4e59-a55c-19b2fbeaea4c/1/KD3APywuc5A6UD53rM99PHUr6XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.72.0/22
Signature Algorithm: sha256WithRSAEncryption
cf:c0:af:65:6a:23:71:b3:c0:97:25:02:36:b1:37:cb:5a:71:
54:20:d3:13:69:97:68:1a:08:7b:14:7b:e4:b3:2e:c0:a3:e2:
b3:87:9f:85:cf:56:fc:e0:9b:ce:99:a2:ee:29:8c:fd:58:6a:
dc:bd:e1:14:85:af:a9:f2:07:e9:65:32:60:2b:48:f9:3c:34:
db:88:d8:cf:4c:21:af:04:0b:0d:51:ef:07:1b:61:80:18:fc:
ae:e5:6a:e4:2d:87:7c:07:7b:bc:95:c2:2a:59:11:c8:43:29:
3e:f3:95:a6:a1:98:bc:15:1c:84:ca:52:6e:d3:05:67:b1:34:
c8:57:0f:b4:28:e3:be:9c:13:c7:3f:92:a4:57:a0:9c:a3:92:
91:35:1e:ee:a1:3d:c7:1f:70:1c:87:7a:02:6d:cd:d1:d5:81:
fb:d4:e3:44:ed:e8:f2:40:55:69:44:5f:3f:15:d9:e4:e9:65:
cb:e4:6c:b7:74:e1:03:0d:d7:4e:12:3e:07:93:aa:fb:16:25:
67:65:b3:15:2d:5b:82:97:14:f8:60:78:39:00:33:9d:ba:5b:
25:f1:fb:be:7f:76:6c:7c:7a:09:22:36:14:46:cb:1b:23:60:
ad:56:aa:2d:8a:57:c6:fc:0a:e7:69:9b:62:e7:01:e2:a1:ae:
e2:17:13:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:15 2024 by rpki-client on console-fra.rpki-client.org