Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/hu8T2BHSX6p-eJTVBwsAxyoy20U.roa
File: hu8T2BHSX6p-eJTVBwsAxyoy20U.roa (raw, json)
Hash identifier: Z3m0WnVD62o7Akb6+m1X20YZFvvf8I2NyU50hMFtync=
Subject key identifier: 86:EF:13:D8:11:D2:5F:AA:7E:78:94:D5:07:0B:00:C7:2A:32:DB:45
Certificate issuer: /CN=172537601a31697404922d957e74450f5a9cbe73
Certificate serial: 02B15325
Authority key identifier: 17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/hu8T2BHSX6p-eJTVBwsAxyoy20U.roa
Signing time: Thu 28 Apr 2022 10:50:11 +0000
ROA not before: Thu 28 Apr 2022 10:50:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209242
IP address blocks: 109.238.160.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45175589 (0x2b15325)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=172537601a31697404922d957e74450f5a9cbe73
Validity
Not Before: Apr 28 10:50:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86ef13d811d25faa7e7894d5070b00c72a32db45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e3:ce:c9:c2:2c:a8:2d:02:cc:68:07:c2:fd:
d1:fe:b1:79:e7:1c:4d:13:2e:cb:3c:c8:d2:e8:cd:
9b:73:e9:5f:aa:0c:da:49:63:2a:74:7b:2e:ff:67:
a0:17:6c:49:93:bb:f1:ac:b5:b5:cc:2e:79:48:f9:
78:fd:ad:4e:a0:77:99:75:b9:41:83:a0:c3:25:72:
47:67:2f:00:fb:0b:bd:28:56:79:5d:1f:e9:6a:c3:
60:73:f2:52:6b:e2:4d:98:af:ce:23:f6:3e:e2:0e:
33:80:7a:5b:39:b4:bf:eb:ac:64:f2:34:5e:ef:5d:
cb:1a:bd:f1:da:19:8d:14:e7:80:55:34:b7:83:fb:
13:52:eb:0f:41:55:a6:f8:39:db:1f:f2:98:7d:f6:
56:68:44:ef:84:7e:2b:d7:ed:a2:65:cb:b1:e4:7c:
42:e3:39:03:1e:ae:a9:6e:e8:11:cd:59:d5:23:77:
7f:a6:1a:9f:f0:78:4c:61:8e:05:b5:e5:6e:c9:cf:
72:c6:ad:c2:63:12:22:41:99:ca:90:9a:60:48:fb:
6b:9a:f5:d1:22:d0:e1:4f:6a:44:b5:54:79:76:1c:
80:a2:14:3f:6b:cf:31:24:23:75:97:2c:fb:b8:0d:
e4:16:1d:47:43:f3:ba:5c:bc:e4:ce:09:a3:48:23:
10:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:EF:13:D8:11:D2:5F:AA:7E:78:94:D5:07:0B:00:C7:2A:32:DB:45
X509v3 Authority Key Identifier:
keyid:17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/hu8T2BHSX6p-eJTVBwsAxyoy20U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/FyU3YBoxaXQEki2VfnRFD1qcvnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.238.160.0/21
Signature Algorithm: sha256WithRSAEncryption
1b:5d:03:aa:28:d2:f0:fb:44:4d:2d:d0:89:ec:86:96:ea:04:
3f:f7:b4:07:d1:5e:74:ac:74:05:78:d2:03:a7:b3:d0:96:94:
02:2d:24:5e:d8:f7:d2:58:ab:a9:d9:3b:ad:ee:78:b3:fd:78:
bd:0c:81:ac:91:84:2c:50:4e:cf:93:2d:ca:16:fc:00:57:45:
68:b0:91:9a:ab:bd:f7:36:4d:ab:d9:6b:8b:c7:0a:6c:8f:7e:
75:c8:91:20:36:aa:89:b7:08:8a:df:d4:5c:b6:bc:6b:17:15:
9a:08:77:23:5f:8f:c6:52:92:a2:16:4a:22:6b:5a:87:bf:b0:
80:72:89:87:48:60:d2:ee:26:b6:91:a4:51:ad:af:40:66:81:
7b:7a:a4:f6:8a:35:68:36:08:27:be:7b:c0:44:a4:30:e8:b8:
79:34:57:9f:fa:39:2d:a0:b0:88:11:7c:5c:18:b6:f7:23:a7:
1e:63:94:56:09:45:5d:54:7c:2d:95:74:0d:58:0b:16:82:09:
40:cf:8f:1e:f4:ad:1c:a4:61:b1:6a:f3:ac:3d:ef:1f:09:b4:
4d:f7:6f:ce:07:99:5d:e8:6c:eb:9a:01:ac:cb:4a:88:d2:cb:
1b:05:83:54:5c:ad:13:b6:28:13:f0:f8:4c:3f:58:71:78:94:
e1:45:89:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:06 2023 by rpki-client on console-fra.rpki-client.org