Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/HCVB_DEqXexOl4KQG52pia8r_Xo.roa
File: HCVB_DEqXexOl4KQG52pia8r_Xo.roa (raw, json)
Hash identifier: 4EM80tR2qOqNc1BlBDfcjwp/SwgQpFjzjr6zaS4p1VY=
Subject key identifier: 1C:25:41:FC:31:2A:5D:EC:4E:97:82:90:1B:9D:A9:89:AF:2B:FD:7A
Certificate issuer: /CN=ff698eeb2e49fcb5f9c65a99857af29ce06641d9
Certificate serial: 0A56DFCA
Authority key identifier: FF:69:8E:EB:2E:49:FC:B5:F9:C6:5A:99:85:7A:F2:9C:E0:66:41:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2mO6y5J_LX5xlqZhXrynOBmQdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/HCVB_DEqXexOl4KQG52pia8r_Xo.roa
Signing time: Sat 01 Jan 2022 12:58:10 +0000
ROA not before: Sat 01 Jan 2022 12:58:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208284
IP address blocks: 212.70.172.0/24 maxlen: 24
212.70.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173465546 (0xa56dfca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff698eeb2e49fcb5f9c65a99857af29ce06641d9
Validity
Not Before: Jan 1 12:58:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c2541fc312a5dec4e9782901b9da989af2bfd7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6e:a5:af:b9:05:6d:df:d0:bf:cc:4e:65:7d:
3e:e9:84:79:41:f4:a9:37:ca:b8:b7:ba:9e:a9:5a:
2e:4c:73:0f:bf:ab:67:9d:d7:5e:00:97:ec:b7:e5:
45:31:d4:7a:8b:f0:89:f4:88:f9:6f:2d:bf:7a:ac:
47:f3:37:c7:6f:b5:c4:e2:2a:f6:a4:da:1c:03:3b:
cd:3d:da:85:8c:43:0a:22:73:4b:26:35:f8:10:dd:
a3:38:91:d1:b9:a0:23:bf:2e:7c:a8:99:13:af:06:
24:d2:84:3b:96:98:49:bc:71:19:bf:59:9b:d3:ea:
da:f8:98:c1:13:91:c9:89:2b:3d:dc:09:66:78:99:
61:84:ca:f1:80:06:5c:fe:20:ba:46:6d:e9:99:d6:
0d:e2:3b:99:40:04:73:7d:0f:6b:bf:64:33:04:83:
35:bf:6e:77:eb:8f:80:ec:40:1e:97:d8:2e:00:5a:
e0:46:65:7d:53:5a:ad:f7:d7:b9:f5:f2:ca:8b:cd:
35:8c:a9:3f:d7:ad:5e:73:49:e8:cc:ea:ea:07:04:
bb:96:1e:20:36:54:01:a7:dc:08:9a:21:e0:95:86:
60:bc:54:c5:80:ae:7b:7d:a4:34:34:a9:11:7e:18:
4b:68:a9:d6:0f:50:c5:75:1d:01:1b:76:0c:cb:2b:
df:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:25:41:FC:31:2A:5D:EC:4E:97:82:90:1B:9D:A9:89:AF:2B:FD:7A
X509v3 Authority Key Identifier:
keyid:FF:69:8E:EB:2E:49:FC:B5:F9:C6:5A:99:85:7A:F2:9C:E0:66:41:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2mO6y5J_LX5xlqZhXrynOBmQdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/HCVB_DEqXexOl4KQG52pia8r_Xo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/_2mO6y5J_LX5xlqZhXrynOBmQdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.70.172.0/24
212.70.174.0/24
Signature Algorithm: sha256WithRSAEncryption
45:2f:42:df:15:9e:9f:ea:47:04:f8:80:1b:75:49:6e:4b:71:
04:8b:a9:51:fe:c2:34:6e:62:78:c1:71:15:e1:3b:30:09:de:
58:7e:12:c9:0c:15:d3:b7:99:f2:c4:2b:9b:bb:f1:8b:9f:a6:
28:1e:c2:13:b7:22:02:b3:26:77:96:fa:5a:14:cf:60:31:80:
97:32:7e:5d:1e:b3:f7:f0:d5:ba:0e:2a:3d:d2:c7:dd:68:ca:
8b:dd:ab:a2:20:53:b9:2d:2b:30:6f:a8:54:82:d4:29:af:8f:
e6:19:56:ec:24:b3:30:c9:39:33:a5:50:04:d4:39:2d:f3:d9:
eb:28:60:be:2e:91:81:3d:7c:2d:1e:c3:14:64:fd:aa:73:8d:
e3:6f:8a:86:a0:32:07:b6:45:c6:fc:ae:c2:eb:56:43:75:38:
33:45:04:b2:d1:03:b6:ef:7e:c0:5a:b8:a7:89:55:41:fd:28:
71:14:9d:5e:af:4c:ab:f6:bd:06:7b:79:66:15:43:aa:c9:26:
4e:d3:48:48:bc:0a:0a:f3:e2:10:e5:4e:b1:13:b6:73:4b:05:
33:e9:26:10:28:95:9a:47:20:ec:94:1b:08:ee:de:25:5d:a0:
06:78:6a:d8:40:dd:1a:62:db:1c:29:2a:9d:c2:85:eb:dd:5b:
5c:0f:4e:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:07 2024 by rpki-client on console-fra.rpki-client.org