Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/HT7s4agG4WobtHP8u_mjXGr6Tjk.roa
File: HT7s4agG4WobtHP8u_mjXGr6Tjk.roa (raw, json)
Hash identifier: 8Nit9A9UjgQA22qNelfODISUCBxy/qnxAX7/Km09nhc=
Subject key identifier: 1D:3E:EC:E1:A8:06:E1:6A:1B:B4:73:FC:BB:F9:A3:5C:6A:FA:4E:39
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 299D954D
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/HT7s4agG4WobtHP8u_mjXGr6Tjk.roa
Signing time: Mon 25 Apr 2022 11:47:16 +0000
ROA not before: Mon 25 Apr 2022 11:47:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212206
IP address blocks: 95.47.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 698193229 (0x299d954d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Apr 25 11:47:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d3eece1a806e16a1bb473fcbbf9a35c6afa4e39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:75:67:7f:13:47:5c:fe:74:b3:e2:9a:84:b9:
83:23:ac:0c:44:a4:62:f5:e0:be:0e:06:a1:83:cc:
61:2d:68:9d:d1:89:ca:2d:d1:ca:aa:a7:20:7e:30:
c6:19:d8:59:25:68:6f:42:13:6c:6d:1d:2c:ba:6f:
62:81:f0:b3:85:af:77:fd:e3:7d:7c:fb:97:9a:5b:
db:5d:eb:ad:34:94:fd:c9:e9:20:7f:6f:a7:ec:44:
2a:67:e6:27:75:02:97:1b:0a:b5:91:ee:fc:ec:4f:
54:33:5c:2b:c3:e3:8f:bb:07:e6:25:be:b8:3b:25:
68:60:35:af:1d:87:ee:1d:98:bd:a1:78:7b:af:51:
ff:35:84:9e:3a:c8:91:5f:1f:03:3a:ce:dd:e4:39:
52:22:39:0e:80:86:ba:d5:da:5f:71:ee:8a:b8:d4:
e7:e8:c1:c0:5c:8d:22:5d:68:14:21:d7:3e:cd:a0:
43:a8:d9:f5:6a:bc:f6:13:21:d7:34:5e:39:4b:d7:
7e:28:a6:8b:f8:c3:ac:cf:d8:b9:55:d2:16:5a:8f:
cc:94:eb:99:6b:18:7e:ad:f3:6a:68:a5:ab:1f:8b:
5a:47:b1:a0:e9:c8:b7:8e:52:47:3f:50:4d:20:f3:
49:6f:e8:eb:d8:f3:db:9a:82:45:50:2f:47:d2:5c:
d0:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:3E:EC:E1:A8:06:E1:6A:1B:B4:73:FC:BB:F9:A3:5C:6A:FA:4E:39
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/HT7s4agG4WobtHP8u_mjXGr6Tjk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.47.156.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:bd:55:76:8c:2a:9e:65:19:ff:d5:0a:69:f0:42:1a:70:50:
df:6a:6d:34:dd:2d:c7:e3:93:b7:e7:e4:c0:07:45:5f:43:35:
b6:62:5e:6d:af:69:bc:89:86:a0:2d:df:cb:80:c6:67:0a:69:
04:94:5d:b0:50:dc:8e:c7:37:d8:37:3a:84:90:5a:02:7d:37:
1c:61:ad:36:f8:3f:71:50:bd:e3:d0:7e:42:4d:ae:ae:55:5d:
9e:90:f0:74:c6:25:60:14:a2:d7:f6:26:2b:77:43:37:73:52:
fa:d4:39:76:ea:7c:7f:ac:2e:b8:3b:d8:8f:1b:c4:1f:43:86:
18:91:08:2e:b4:23:77:71:0d:92:3a:0b:9a:62:a1:e1:61:41:
08:14:d7:ae:68:e8:d5:69:ad:c0:ca:09:eb:0a:de:e5:25:e4:
4d:f5:43:42:58:2d:d4:e4:46:b3:12:7b:91:0c:5e:5c:21:9c:
01:77:c8:73:1e:0b:57:fd:1d:7e:84:a0:8f:5e:7d:cd:2f:01:
df:07:be:69:1f:e6:a7:08:e0:40:5c:95:90:cf:9a:5e:7d:99:
38:25:a6:59:0c:23:59:5e:0b:ab:ab:9e:62:37:dd:56:06:66:
f5:28:9a:f4:3e:55:9b:10:dd:88:12:39:a3:19:cd:b0:3d:eb:
97:58:be:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:41 2023 by rpki-client on console-fra.rpki-client.org