Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/HfO1B8NzUFyp4_1e_5dDEdbr7V0.roa
File: HfO1B8NzUFyp4_1e_5dDEdbr7V0.roa (raw, json)
Hash identifier: rzJPf1ImFMLzyOkfrW6fURqeOb2SDOrapgMSdrrFJlg=
Subject key identifier: 1D:F3:B5:07:C3:73:50:5C:A9:E3:FD:5E:FF:97:43:11:D6:EB:ED:5D
Certificate issuer: /CN=94166b704843d3d9754095c83a91b493828200a2
Certificate serial: 0A68A20D
Authority key identifier: 94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/HfO1B8NzUFyp4_1e_5dDEdbr7V0.roa
Signing time: Wed 09 Mar 2022 17:40:23 +0000
ROA not before: Wed 09 Mar 2022 17:40:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 91.222.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174629389 (0xa68a20d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94166b704843d3d9754095c83a91b493828200a2
Validity
Not Before: Mar 9 17:40:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1df3b507c373505ca9e3fd5eff974311d6ebed5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:32:12:12:f5:54:f9:af:ef:df:97:38:22:a2:
68:dd:20:68:10:63:4c:2e:26:88:84:83:e5:56:1b:
70:47:bd:22:63:bd:1f:97:1a:16:4f:80:9e:6a:d1:
2c:a8:c7:ed:42:8b:8b:b4:86:5e:31:9e:c4:09:18:
7a:79:50:7b:37:5a:7e:88:ae:4d:7e:6e:7a:ce:df:
46:c3:ef:48:78:c2:f8:32:b2:7d:d4:6a:1a:16:ba:
6d:5f:8e:12:80:83:78:ec:a4:d5:51:67:cc:8f:3d:
3f:80:e7:d4:13:d3:39:ca:f8:de:c4:3c:ef:a6:bc:
be:fc:a1:ab:9d:cb:cd:21:35:ff:f5:ae:05:3a:90:
ec:85:5c:0d:a2:26:ca:cc:55:99:7d:79:ba:6f:0b:
2a:c5:40:7d:71:79:7c:67:4f:7e:b3:87:4e:64:ba:
5e:79:5f:a4:d2:ab:06:a0:8c:ad:84:ea:67:f8:4e:
33:61:31:ca:e7:a8:6b:fd:13:b6:b3:17:b5:08:34:
77:96:a2:82:91:25:c5:1c:81:fe:89:c8:86:f7:9b:
ae:6c:45:9b:a8:b1:2c:f3:ac:de:f5:95:fe:22:a8:
cd:15:23:5d:22:e2:60:83:5a:aa:d4:0e:8e:bb:08:
bd:6e:d5:ad:50:8b:e3:07:c5:d9:e8:4b:d6:13:48:
a9:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:F3:B5:07:C3:73:50:5C:A9:E3:FD:5E:FF:97:43:11:D6:EB:ED:5D
X509v3 Authority Key Identifier:
keyid:94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/HfO1B8NzUFyp4_1e_5dDEdbr7V0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.222.43.0/24
Signature Algorithm: sha256WithRSAEncryption
69:64:71:17:ff:6a:b6:f8:b1:4f:ec:1b:98:39:96:a5:38:d2:
b2:0d:b8:48:71:5e:b2:2a:78:e1:92:2d:f9:17:d3:43:67:c5:
60:5a:d9:ef:df:51:32:7c:47:0d:35:3e:fb:88:78:07:67:57:
21:59:5d:0d:3f:25:4f:f3:95:77:35:8f:84:77:38:58:a1:57:
6f:e5:ea:fe:1a:73:1d:ab:ee:57:6f:6e:ef:2e:95:d6:3b:bf:
ed:22:37:92:e3:fb:a6:7a:da:c1:d0:e2:04:b4:b7:76:91:01:
64:f8:ea:e5:56:3d:8a:eb:13:86:cc:93:65:1f:89:19:ff:e4:
83:54:30:09:f6:fc:85:fc:dc:b7:d0:2a:c6:63:61:0f:19:19:
3e:88:f2:d5:2b:3c:cf:f8:9f:c7:ea:3f:10:3b:0a:0b:80:85:
84:39:87:81:34:69:2f:0a:3c:8e:46:ba:b4:ff:4a:f7:a6:88:
ac:51:75:72:df:1a:e3:c3:05:d2:de:14:e1:c1:26:bf:ad:0d:
65:e6:7e:ee:6b:d7:ed:77:02:d6:2e:d3:13:58:96:04:b0:22:
37:fd:1a:c8:b9:65:c8:33:67:1f:c4:4c:4d:51:4e:1e:5e:f1:
d7:26:45:1d:bf:c3:7e:34:76:0a:96:32:30:72:99:cf:d4:35:
34:e4:1d:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:01 2023 by rpki-client on console-fra.rpki-client.org