Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/HMuD4dm_WSznPfM1h_1og1bXNG8.roa
File: HMuD4dm_WSznPfM1h_1og1bXNG8.roa (raw, json)
Hash identifier: waXuDAQgshfdgaRG9NIbD4dGF2Gn9VYyltOEt0fXG7M=
Subject key identifier: 1C:CB:83:E1:D9:BF:59:2C:E7:3D:F3:35:87:FD:68:83:56:D7:34:6F
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 281858CA
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/HMuD4dm_WSznPfM1h_1og1bXNG8.roa
Signing time: Sat 01 Jan 2022 16:09:36 +0000
ROA not before: Sat 01 Jan 2022 16:09:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64490
IP address blocks: 31.148.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 672684234 (0x281858ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ccb83e1d9bf592ce73df33587fd688356d7346f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:b0:8b:46:69:aa:09:83:7e:2b:4d:d6:c5:b3:
5d:1c:ca:33:58:87:c6:59:c9:bc:da:5d:21:66:2c:
96:4f:cb:74:e5:dc:d4:60:ca:cb:18:60:f2:cd:45:
48:be:16:f4:c7:24:3b:a7:84:27:ee:16:a9:22:bf:
d9:53:be:00:8d:61:69:90:2e:b6:3e:b3:2b:32:89:
25:57:14:83:84:04:f5:49:67:04:97:a4:c8:37:18:
23:ff:1d:c6:f9:ee:98:a3:6c:e1:eb:47:c8:eb:ec:
bf:fc:ec:cb:c6:84:bf:ac:20:91:09:4c:b8:ec:76:
87:04:fa:b7:d0:0c:38:22:9b:3d:a3:d9:7e:b1:f1:
f3:a3:55:f5:67:8c:7b:dc:12:7f:f1:5c:69:90:5a:
72:ed:9b:5f:00:65:79:e9:13:8d:92:51:7f:ea:6b:
51:31:41:47:cb:f2:b7:af:13:bd:a7:47:65:b9:7c:
1c:a9:78:86:4b:d0:d7:1e:85:3f:c5:c1:aa:9c:7f:
ba:9b:07:62:54:8d:dd:50:6e:ae:88:78:64:93:bc:
ae:23:d9:3f:90:5b:cb:75:dc:41:be:43:9e:ef:06:
7c:e4:4b:2c:5c:f7:64:e8:d5:61:6c:86:7b:23:6d:
0d:23:bc:9b:9a:03:f5:fd:8c:22:83:a2:7f:61:3a:
0a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:CB:83:E1:D9:BF:59:2C:E7:3D:F3:35:87:FD:68:83:56:D7:34:6F
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/HMuD4dm_WSznPfM1h_1og1bXNG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.51.0/24
Signature Algorithm: sha256WithRSAEncryption
72:9e:ba:11:b5:2a:8c:a1:aa:c1:e7:21:3d:ff:a1:2e:e3:fc:
62:39:a9:cb:b8:78:e0:5a:3e:25:9d:cd:82:3c:32:27:48:0d:
76:aa:34:3d:81:22:8d:49:da:7c:e7:cb:da:b1:9d:72:a9:1c:
6e:bf:0a:8c:5e:5c:c7:fe:e9:dd:48:de:25:ce:bd:12:f3:fc:
b4:11:97:54:f2:6d:60:2e:4f:85:73:cd:ff:db:62:6d:af:b6:
ea:ce:01:28:a9:ef:36:7b:8a:8e:7c:ed:8e:6c:bb:67:f8:f4:
96:55:f8:8f:59:2b:d2:2a:ae:5c:30:f2:d7:5b:7e:53:6c:fb:
2d:de:b7:7b:24:0a:40:27:29:b6:b3:d6:4b:c2:70:3a:83:5b:
29:81:56:2f:a1:e4:c4:39:5d:09:e1:5e:f4:23:95:08:6f:68:
e5:94:56:15:65:4a:7b:7b:14:28:48:6b:c4:28:b9:0a:37:c9:
e8:53:f5:e2:cc:7f:d3:a6:2d:7c:ae:e8:b0:9b:3d:a1:fe:db:
d6:13:7a:88:e5:e5:3a:be:8e:23:5a:0a:37:3a:a0:f5:17:25:
3d:28:c4:17:75:f4:de:49:b3:0d:18:56:c6:16:74:01:d0:3a:
ff:a1:86:8e:fd:e7:3f:17:96:d8:86:09:ce:50:f6:fd:60:ea:
4e:de:85:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:31:55 2025 by rpki-client