Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/875ba5-8bb1-48ab-b47d-81fea0f77286/1/HqrJY2TjmBxZiO_Eg1U7ufBL5ZE.roa
File: HqrJY2TjmBxZiO_Eg1U7ufBL5ZE.roa (raw, json)
Hash identifier: hU6+yHJc5K8Bi3HP9vKgieO9auKj3t2yxodi+FmTo3A=
Subject key identifier: 1E:AA:C9:63:64:E3:98:1C:59:88:EF:C4:83:55:3B:B9:F0:4B:E5:91
Certificate issuer: /CN=ce70fe698e4dae9d7c32bc156c418064fdcff4b0
Certificate serial: 1B83A7DD
Authority key identifier: CE:70:FE:69:8E:4D:AE:9D:7C:32:BC:15:6C:41:80:64:FD:CF:F4:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/znD-aY5Nrp18MrwVbEGAZP3P9LA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/875ba5-8bb1-48ab-b47d-81fea0f77286/1/HqrJY2TjmBxZiO_Eg1U7ufBL5ZE.roa
Signing time: Sat 01 Jan 2022 10:01:05 +0000
ROA not before: Sat 01 Jan 2022 10:01:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199473
IP address blocks: 185.15.132.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 461613021 (0x1b83a7dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce70fe698e4dae9d7c32bc156c418064fdcff4b0
Validity
Not Before: Jan 1 10:01:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1eaac96364e3981c5988efc483553bb9f04be591
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:da:c3:ea:b7:7b:ec:82:dc:3b:8d:d4:bf:9c:
22:12:0a:a5:82:6f:09:b3:ed:51:29:f5:dd:a7:ec:
ac:4f:8b:2e:0b:6c:99:0a:40:77:03:73:db:3a:55:
6f:23:0b:8f:a0:a4:ae:9a:be:de:8c:78:7a:af:7b:
c0:dc:b7:36:e3:fd:73:3d:70:a9:bb:de:8e:95:9a:
73:7c:74:63:54:6d:f3:d2:d2:07:38:5c:69:ca:c3:
a5:e7:0c:a7:58:76:bb:56:e6:10:b0:a2:89:a2:bb:
17:ea:c6:7f:d9:95:e3:28:4e:06:ae:09:17:ba:2e:
e5:9f:18:34:71:c1:b3:1f:ff:80:e9:82:a3:f2:87:
3e:cc:15:9e:5e:ac:ca:85:0e:61:b9:97:f3:ce:fc:
a0:ad:ef:38:05:04:88:f7:92:ba:96:f5:49:8d:41:
07:ef:a7:67:1c:5d:70:e8:de:14:c5:6f:57:6f:73:
6d:f0:5a:3d:b2:85:df:2d:c3:cd:b0:a8:69:6a:88:
88:b2:ef:13:a9:2b:6e:fc:f0:63:e9:9f:56:46:ab:
56:a9:18:34:23:3c:4c:12:9e:14:7d:1d:4c:d7:ab:
c4:99:20:e8:05:58:65:d3:29:11:d0:84:f2:59:e2:
46:f2:94:6b:7b:23:30:e8:c7:92:06:48:65:51:4d:
4f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:AA:C9:63:64:E3:98:1C:59:88:EF:C4:83:55:3B:B9:F0:4B:E5:91
X509v3 Authority Key Identifier:
keyid:CE:70:FE:69:8E:4D:AE:9D:7C:32:BC:15:6C:41:80:64:FD:CF:F4:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/znD-aY5Nrp18MrwVbEGAZP3P9LA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/875ba5-8bb1-48ab-b47d-81fea0f77286/1/HqrJY2TjmBxZiO_Eg1U7ufBL5ZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/875ba5-8bb1-48ab-b47d-81fea0f77286/1/znD-aY5Nrp18MrwVbEGAZP3P9LA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.15.132.0/22
Signature Algorithm: sha256WithRSAEncryption
03:63:78:a1:73:7a:d6:57:d9:11:27:8e:62:32:ee:c9:2f:7d:
05:11:98:4b:8b:19:f4:b6:a7:a9:13:f2:75:d2:36:a0:f5:31:
da:58:2c:ed:df:e0:45:6f:a0:75:45:36:cf:07:e9:9d:98:3d:
8c:7b:86:14:38:3d:44:fa:ab:1a:a4:13:5a:27:15:4c:07:e9:
8b:2d:8b:4d:58:dc:02:21:43:03:35:95:72:ec:9a:82:6a:e6:
19:5c:8c:3b:f4:e5:88:ca:fc:3c:4a:d6:65:5b:d1:98:52:30:
2d:6d:52:f0:2e:03:aa:d0:49:51:c5:b5:8e:7d:74:30:02:55:
b4:37:6d:d1:ce:1f:71:33:8e:82:9f:54:ea:af:a3:82:db:bb:
3c:8e:54:24:7a:c6:13:3f:87:b9:bd:78:59:a4:11:2b:92:43:
88:c3:f0:a8:f6:f6:38:8b:21:bb:e1:e0:26:1d:05:7c:0f:c4:
29:cb:49:4c:88:e5:27:82:51:63:a2:58:04:a2:66:6c:37:d7:
a7:50:5d:8d:0e:39:79:6a:de:b1:c1:a0:ff:5d:f2:0d:03:82:
81:d8:5b:a0:c2:90:04:db:26:63:cc:b1:40:34:71:30:1c:2b:
d3:8e:7c:dd:fa:5d:90:b7:2d:4c:30:49:56:7c:c6:ed:47:1b:
b5:fb:7d:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:56 2024 by rpki-client on console-ams.rpki-client.org