Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/a67432-c067-4cdb-b5ad-dba5c1834601/1/hvSIsr-d5VdtY5M00r4y163nzlE.roa
File: hvSIsr-d5VdtY5M00r4y163nzlE.roa (raw, json)
Hash identifier: WS31rE2+6UNV/K41l0Te2hAOdmXR5udqSRtkxAWvMZM=
Subject key identifier: 86:F4:88:B2:BF:9D:E5:57:6D:63:93:34:D2:BE:32:D7:AD:E7:CE:51
Certificate issuer: /CN=b209721f4548c26cf362e944a81b1acee7b24b53
Certificate serial: 084079B5
Authority key identifier: B2:09:72:1F:45:48:C2:6C:F3:62:E9:44:A8:1B:1A:CE:E7:B2:4B:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sglyH0VIwmzzYulEqBsazueyS1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/a67432-c067-4cdb-b5ad-dba5c1834601/1/hvSIsr-d5VdtY5M00r4y163nzlE.roa
Signing time: Sat 01 Jan 2022 12:56:14 +0000
ROA not before: Sat 01 Jan 2022 12:56:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5585
IP address blocks: 192.114.62.0/23 maxlen: 24
2001:7f8:3b::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138443189 (0x84079b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b209721f4548c26cf362e944a81b1acee7b24b53
Validity
Not Before: Jan 1 12:56:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86f488b2bf9de5576d639334d2be32d7ade7ce51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:9b:ff:7d:5d:6f:fc:c6:3b:74:e3:31:28:e0:
17:3c:35:a2:7f:76:0b:a7:74:1b:7c:3a:e5:b0:c6:
d0:3f:63:bc:17:4d:54:55:de:eb:31:c2:77:a1:4a:
c6:00:32:60:50:af:ad:fe:16:ea:e0:a9:1a:c5:c1:
15:f9:4d:ec:8a:9d:00:0a:f6:35:26:bd:70:c7:05:
32:8e:df:10:1f:9f:bd:30:30:e1:2d:6a:7f:bc:a8:
91:81:38:aa:58:fa:8e:5a:55:37:68:6c:a0:1c:59:
b0:dc:8e:1f:f2:15:3f:8a:6a:f1:12:66:d9:2d:a4:
57:6b:3d:ed:57:73:90:a6:0f:b5:39:24:76:1a:b1:
2d:0e:ab:ae:70:bd:bd:9d:b7:50:60:72:8e:98:95:
ad:d6:7e:c4:93:17:6f:78:33:87:3b:03:80:21:56:
f7:be:65:9f:46:1c:11:c3:f1:c4:37:d1:ad:8b:18:
8e:f6:db:11:92:97:05:c0:06:22:a4:38:48:64:6a:
83:8e:5f:da:ea:d5:e5:5b:23:3a:56:17:37:38:e8:
c4:4c:b4:d0:58:46:a5:ab:99:e5:41:b3:22:65:bf:
48:97:fe:ac:d2:ad:dd:67:71:c5:a1:87:34:33:7a:
a1:66:63:aa:0f:15:05:21:a6:57:35:8e:ee:73:ec:
80:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:F4:88:B2:BF:9D:E5:57:6D:63:93:34:D2:BE:32:D7:AD:E7:CE:51
X509v3 Authority Key Identifier:
keyid:B2:09:72:1F:45:48:C2:6C:F3:62:E9:44:A8:1B:1A:CE:E7:B2:4B:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sglyH0VIwmzzYulEqBsazueyS1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/a67432-c067-4cdb-b5ad-dba5c1834601/1/hvSIsr-d5VdtY5M00r4y163nzlE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/a67432-c067-4cdb-b5ad-dba5c1834601/1/sglyH0VIwmzzYulEqBsazueyS1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.114.62.0/23
IPv6:
2001:7f8:3b::/48
Signature Algorithm: sha256WithRSAEncryption
87:3b:aa:50:30:df:f7:49:6f:d6:47:85:63:23:41:1f:5b:64:
e0:c5:4a:a5:23:ce:df:0f:fe:91:13:b2:33:2e:6a:e2:fd:81:
4c:23:cc:fc:36:bf:6f:dc:66:be:e8:2f:00:07:16:cb:76:75:
6f:2f:cb:46:09:0e:a5:34:66:2b:3d:b7:0d:73:98:5f:f8:76:
d3:d5:52:b8:2d:46:44:5f:3a:e7:b6:ff:fa:ed:f1:8c:ac:3e:
44:0b:0c:2b:76:90:a9:ef:9f:0b:83:eb:41:46:c7:b2:93:45:
7d:a9:5f:2c:8a:29:72:56:a3:e6:90:a4:43:4e:22:be:37:79:
a6:20:93:0f:0e:34:f6:a2:d6:d8:b3:b5:ea:4b:6a:5f:2e:78:
d7:9f:c5:cb:5d:58:be:d4:05:e9:1c:64:ab:ee:26:56:cd:2e:
3a:32:8b:6c:2b:ea:12:4e:bd:fb:86:95:5d:48:df:cb:f1:33:
1f:9b:d0:3c:41:93:b8:bb:7a:ed:2e:f3:a8:4e:14:d3:37:2d:
a4:c3:54:e2:5e:f9:53:00:c3:27:a6:ce:e1:63:f1:5c:5e:0d:
03:db:27:0c:2e:17:b3:9d:cd:32:f1:1b:99:75:3e:3b:90:50:
42:11:f2:82:ee:cb:3e:fe:a8:fc:82:b0:7b:d3:f2:2f:42:94:
15:9e:bc:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:33 2023 by rpki-client on console-ams.rpki-client.org