Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/hJ2uSN6SBwspNljmsoWAa0MbeJ0.roa
File: hJ2uSN6SBwspNljmsoWAa0MbeJ0.roa (raw, json)
Hash identifier: iFtLPWhEkowkLTMHLeDU1bYoU8OoQJ+cBJCol110k/s=
Subject key identifier: 84:9D:AE:48:DE:92:07:0B:29:36:58:E6:B2:85:80:6B:43:1B:78:9D
Certificate issuer: /CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Certificate serial: 01821F21D3FC5370183635C89EC568937DC8
Authority key identifier: 1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/hJ2uSN6SBwspNljmsoWAa0MbeJ0.roa
Signing time: Thu 21 Jul 2022 05:01:26 +0000
ROA not before: Thu 21 Jul 2022 05:01:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 91.213.174.0/24 maxlen: 24
45.150.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1f:21:d3:fc:53:70:18:36:35:c8:9e:c5:68:93:7d:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Validity
Not Before: Jul 21 05:01:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=849dae48de92070b293658e6b285806b431b789d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:44:ac:93:ea:fc:91:57:6e:a8:1a:9a:f2:ef:
68:b9:7e:dc:b0:6a:84:e3:7e:34:30:3f:db:06:54:
6c:63:a3:2f:d1:07:dd:7d:57:71:f9:12:fb:1b:01:
2b:25:c4:33:b8:bd:25:2c:50:75:80:32:8d:0d:26:
0e:42:b6:87:e1:3a:5e:ff:9e:4f:51:c0:86:d8:81:
5b:36:7f:bc:be:2c:b2:8b:96:b3:27:6e:c3:50:37:
db:00:20:65:45:28:cd:66:92:53:2a:12:9c:d2:54:
ab:0d:14:23:42:20:f2:41:5e:13:a4:c8:76:a4:a3:
4c:ce:9b:fa:59:2a:e1:59:a8:17:ee:d6:e1:86:f7:
fa:e1:cb:59:5b:83:06:5f:3b:cc:e3:c4:e7:4d:07:
57:6d:6d:50:f2:11:a0:b6:45:e3:e0:18:65:48:a7:
f7:05:31:45:3d:df:af:6f:e8:da:1b:eb:c4:7e:d6:
b7:ee:15:68:5b:15:d0:62:6d:84:5c:d8:6a:bb:4f:
7a:6b:a4:19:1f:ff:04:2f:72:14:cd:f8:fc:03:1a:
f6:26:43:05:b5:4d:bb:a7:17:0e:33:31:78:2e:1f:
d9:17:1f:0e:c3:66:51:a3:c8:94:dc:83:09:b8:f4:
5e:66:98:00:09:17:d4:c0:9c:d6:22:42:9f:0d:f6:
b4:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:9D:AE:48:DE:92:07:0B:29:36:58:E6:B2:85:80:6B:43:1B:78:9D
X509v3 Authority Key Identifier:
keyid:1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/hJ2uSN6SBwspNljmsoWAa0MbeJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/H0c4OJyzuZjsT6bUJy-N15n7xKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.196.0/24
91.213.174.0/24
Signature Algorithm: sha256WithRSAEncryption
18:be:5f:a8:fc:2e:47:18:ce:f3:73:be:23:28:e0:08:4b:a6:
cc:6f:e1:c8:f6:29:3b:7c:26:83:c9:b1:30:c7:7d:b9:33:5f:
6c:62:5e:bc:68:d6:0d:79:02:f0:f6:da:98:48:d6:37:ee:4c:
94:e2:d1:22:fd:6f:e2:b6:0f:fd:ed:e9:56:9d:1b:79:15:a8:
97:c9:35:76:71:77:54:79:b3:8b:4d:27:7d:be:16:eb:79:56:
59:ff:c3:44:06:d4:74:6f:78:3a:2b:4a:a2:47:cf:a9:50:22:
bb:1f:f2:d2:6a:c7:30:b5:8f:56:af:de:58:40:e2:f9:b8:7c:
71:99:b5:d7:80:f1:8d:98:61:8a:62:cd:0d:77:a5:f8:1e:9e:
6f:b9:1f:a4:d7:d4:39:b3:d9:37:52:8f:1d:27:7d:9a:a4:5e:
1a:91:1d:c6:5b:8f:48:41:5d:fd:f2:a5:82:d4:68:25:8b:4c:
ce:b5:ec:ac:ce:cf:b2:9e:e3:5c:24:94:b2:45:9b:8a:32:fd:
46:f9:08:d7:c8:36:72:c5:a1:13:c5:77:bc:99:b3:79:08:14:
5f:3c:a4:0e:71:07:67:37:98:3b:aa:81:56:ab:70:60:db:cb:
e0:a8:a7:cb:3e:a9:8e:9f:ea:a5:57:3c:e3:05:3e:5a:f4:ec:
83:13:77:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:02 2023 by rpki-client on console-fra.rpki-client.org