Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/HNk3JpVXonwOXF4TklRX9gXv4Y4.roa
File: HNk3JpVXonwOXF4TklRX9gXv4Y4.roa (raw, json)
Hash identifier: H/X/NYIDHNmIIPO884waDOAyNU1SMKTF7+8D7XsQRU8=
Subject key identifier: 1C:D9:37:26:95:57:A2:7C:0E:5C:5E:13:92:54:57:F6:05:EF:E1:8E
Certificate issuer: /CN=5d82ca6f8eb685a573e5d1d91f8f06121ab02a37
Certificate serial: 02FE21C4
Authority key identifier: 5D:82:CA:6F:8E:B6:85:A5:73:E5:D1:D9:1F:8F:06:12:1A:B0:2A:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYLKb462haVz5dHZH48GEhqwKjc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/HNk3JpVXonwOXF4TklRX9gXv4Y4.roa
Signing time: Sat 01 Jan 2022 16:07:34 +0000
ROA not before: Sat 01 Jan 2022 16:07:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19551
IP address blocks: 91.231.192.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50209220 (0x2fe21c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d82ca6f8eb685a573e5d1d91f8f06121ab02a37
Validity
Not Before: Jan 1 16:07:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1cd937269557a27c0e5c5e13925457f605efe18e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:1d:b8:07:a0:76:d7:ce:c5:66:07:99:2d:51:
09:4e:25:b9:f4:82:d4:23:0a:28:f2:5b:74:4a:0c:
5c:81:97:6f:7d:49:4a:49:0c:5b:27:dd:f5:de:52:
a6:1c:d1:38:2e:75:5f:31:1d:62:1d:e4:ea:29:7f:
a8:3c:17:89:88:f7:eb:df:4d:b7:19:08:0b:6c:27:
76:8e:83:44:06:73:d8:c1:04:db:49:f2:2b:44:0d:
c4:50:45:34:6e:4c:7c:48:0f:1e:34:16:6d:1a:9b:
4d:b5:82:1d:e4:72:e8:82:64:99:93:fc:88:ee:96:
a6:6c:62:9b:1d:22:97:87:9e:70:75:78:54:34:5b:
3b:20:16:89:71:40:da:e4:6b:4e:8d:33:7c:d6:19:
25:a8:a4:e3:e0:f7:96:6a:40:b3:2e:5a:18:0c:a1:
55:19:ea:fe:2a:ca:89:b6:ee:d5:ef:1f:e7:ee:4a:
30:37:9b:ed:15:6a:89:4b:5d:3c:8d:6c:94:b4:84:
c7:28:88:8e:89:b0:3d:b3:e5:79:37:01:56:7f:2e:
02:74:e3:ce:b8:b8:5a:29:cd:18:80:41:e6:86:2c:
c4:01:75:0d:59:30:87:cf:8b:8c:c3:df:a0:61:44:
68:be:c2:2e:c4:e4:06:ee:41:e2:16:3e:0c:2c:24:
43:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:D9:37:26:95:57:A2:7C:0E:5C:5E:13:92:54:57:F6:05:EF:E1:8E
X509v3 Authority Key Identifier:
keyid:5D:82:CA:6F:8E:B6:85:A5:73:E5:D1:D9:1F:8F:06:12:1A:B0:2A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYLKb462haVz5dHZH48GEhqwKjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/HNk3JpVXonwOXF4TklRX9gXv4Y4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.192.0/22
Signature Algorithm: sha256WithRSAEncryption
15:0b:8c:c4:ab:aa:27:8c:47:21:8d:2c:81:46:e1:d3:64:e5:
43:de:ed:a9:87:37:86:01:16:00:db:19:59:2c:9a:42:ad:64:
a0:77:87:c1:c5:c3:8d:a0:a2:b4:7b:8d:5b:db:a8:52:61:3d:
83:70:a3:6d:82:6e:79:b8:f0:3e:93:b8:dd:c9:49:c2:8b:cd:
7b:47:87:99:0c:5d:93:82:0c:12:cf:5e:34:6c:7a:39:a2:d6:
51:fe:c9:63:19:4a:a3:89:3d:77:d6:71:64:41:15:52:9f:08:
6a:3a:c3:e6:d1:41:1e:d8:4b:0a:83:74:21:ec:b1:5f:95:33:
1c:e2:48:36:83:86:c9:74:81:86:02:61:45:dd:1d:42:90:b3:
d7:fa:fd:ab:ad:79:8f:38:21:d1:b6:50:df:46:b6:1f:8e:22:
7e:ef:65:4e:2f:cf:4a:ed:d9:ce:2f:dc:06:c0:a1:9d:3f:9d:
9d:a3:53:4d:10:1c:5a:dd:e0:53:4a:a2:4b:c0:82:cc:38:11:
e4:90:6d:fc:fe:92:2a:88:f4:da:55:75:cf:09:83:47:29:c1:
57:3b:73:71:cb:72:6b:20:83:20:6e:3e:e6:c6:58:a4:4f:80:
30:61:82:d0:8f:61:2b:9b:e0:50:a7:fd:cc:b8:ae:9d:8c:17:
ae:16:6e:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:42 2024 by rpki-client on console-fra.rpki-client.org