Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/c65aab-8a52-476f-9e32-10959aaa8b3e/1/HSzsL-OBKqvfTedgA895mK1qkg4.roa
File: HSzsL-OBKqvfTedgA895mK1qkg4.roa (raw, json)
Hash identifier: h2JWBxfO9Bg4SJWnkG4fVOuJZCQ4KnSzXj7aHfQZx5I=
Subject key identifier: 1D:2C:EC:2F:E3:81:2A:AB:DF:4D:E7:60:03:CF:79:98:AD:6A:92:0E
Certificate issuer: /CN=c4ff23b1c371352f39b73d39a4e07f8ca98ccd67
Certificate serial: 04E0CDDE
Authority key identifier: C4:FF:23:B1:C3:71:35:2F:39:B7:3D:39:A4:E0:7F:8C:A9:8C:CD:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xP8jscNxNS85tz05pOB_jKmMzWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/c65aab-8a52-476f-9e32-10959aaa8b3e/1/HSzsL-OBKqvfTedgA895mK1qkg4.roa
Signing time: Sat 01 Jan 2022 03:53:27 +0000
ROA not before: Sat 01 Jan 2022 03:53:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196775
IP address blocks: 193.169.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81841630 (0x4e0cdde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4ff23b1c371352f39b73d39a4e07f8ca98ccd67
Validity
Not Before: Jan 1 03:53:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d2cec2fe3812aabdf4de76003cf7998ad6a920e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:18:92:9d:d3:1d:a3:8e:fb:f1:14:ae:b1:79:
cf:40:1a:68:8f:42:2a:16:03:cf:6f:e5:89:58:42:
a2:80:bb:9f:c5:66:1c:29:27:02:5f:b4:db:5c:4e:
f0:13:7b:69:5e:5a:04:53:03:ce:81:7e:41:9d:00:
36:58:d8:d0:34:a6:6b:49:c9:b8:9a:8f:76:b3:19:
a4:dc:c7:1b:dd:85:86:1a:63:a5:dc:2e:63:75:98:
55:e4:be:d3:1f:1b:fe:0f:f6:bb:90:a1:73:4f:20:
c7:e3:95:59:db:da:21:7f:a3:95:c7:f3:92:6f:a2:
a5:bf:6a:9d:b2:5a:96:9e:16:05:c5:d4:60:49:b8:
19:4f:09:ca:35:0b:51:de:c6:5d:67:f1:6c:8d:11:
a9:fa:b1:be:95:6d:5d:7c:5f:83:e0:1f:61:f8:ba:
a7:34:ed:a0:7b:57:21:32:40:6c:17:ef:b4:c1:95:
01:80:f9:31:dd:40:ae:56:70:6a:50:65:b3:7b:f4:
00:d7:6e:53:18:5a:b4:a6:ad:da:d1:df:2f:82:80:
9d:98:7b:41:68:cb:0b:2c:72:3e:62:ef:32:c4:43:
a9:3b:82:a4:ed:27:49:36:d3:a1:d3:7b:83:86:d9:
06:60:06:78:fd:88:e3:4a:aa:40:28:15:3d:db:39:
16:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:2C:EC:2F:E3:81:2A:AB:DF:4D:E7:60:03:CF:79:98:AD:6A:92:0E
X509v3 Authority Key Identifier:
keyid:C4:FF:23:B1:C3:71:35:2F:39:B7:3D:39:A4:E0:7F:8C:A9:8C:CD:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xP8jscNxNS85tz05pOB_jKmMzWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/c65aab-8a52-476f-9e32-10959aaa8b3e/1/HSzsL-OBKqvfTedgA895mK1qkg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/c65aab-8a52-476f-9e32-10959aaa8b3e/1/xP8jscNxNS85tz05pOB_jKmMzWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.169.30.0/24
Signature Algorithm: sha256WithRSAEncryption
21:c5:c5:cb:e6:b4:e5:97:13:e7:01:f6:22:90:33:80:61:24:
47:78:c6:e4:9f:0f:c7:4e:ca:d9:16:aa:ac:d1:ea:f8:c8:b7:
d1:12:20:60:76:f1:f9:a0:ce:3e:36:87:d8:5c:98:6a:42:fd:
9a:38:0e:95:a0:84:b3:9b:55:aa:da:50:96:bd:0b:d5:de:27:
6a:ed:dc:6c:9d:7d:dc:d7:15:59:0c:d2:d4:87:fa:73:ed:46:
dd:ab:3b:5a:d1:8e:e5:af:79:7c:9f:46:64:a7:c8:3f:db:12:
7b:79:e0:6c:a0:ab:b9:2e:3d:83:86:b7:d4:53:a4:29:fa:e7:
fd:5a:ca:02:d1:6b:35:08:a5:82:03:6e:8d:96:ee:09:04:8f:
4b:82:e3:cf:de:6d:44:bf:60:11:22:c1:67:b6:f9:dd:0a:7e:
83:36:49:7f:a0:b4:2a:a2:8f:0e:c1:da:71:47:fa:43:5b:95:
2a:f0:96:03:51:64:ea:d8:a9:ee:68:c3:94:e9:6c:e0:36:9b:
92:3b:f8:eb:e0:d4:f1:21:45:d7:ed:ac:26:e5:bd:8c:ea:35:
c8:bb:cf:ae:a5:e5:2f:c2:a5:20:41:f9:d9:c2:c3:00:6f:a6:
e9:8e:41:94:4e:a4:a8:ed:6a:68:c6:e6:18:99:bb:e8:6d:6c:
dc:cc:4d:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:22 2023 by rpki-client on console-ams.rpki-client.org