Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/HuMHsiN4wYIQdV728OHNYviIOBc.roa
File: HuMHsiN4wYIQdV728OHNYviIOBc.roa (raw, json)
Hash identifier: Ff8sdC1d1Q/fHl2iQEzXl06tXGuZ1nxn/v0tS/jahMs=
Subject key identifier: 1E:E3:07:B2:23:78:C1:82:10:75:5E:F6:F0:E1:CD:62:F8:88:38:17
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 09623051
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/HuMHsiN4wYIQdV728OHNYviIOBc.roa
Signing time: Sat 01 Jan 2022 09:03:52 +0000
ROA not before: Sat 01 Jan 2022 09:03:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 138997
IP address blocks: 45.9.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157429841 (0x9623051)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 09:03:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ee307b22378c18210755ef6f0e1cd62f8883817
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:00:f9:07:ce:5a:77:66:c8:0d:32:8f:38:4d:
0a:43:01:0a:5f:96:b2:20:4d:64:22:64:85:81:96:
c0:fa:ba:90:0c:f2:8d:d6:92:3f:b0:65:84:e6:cb:
7a:df:31:22:17:38:c1:bb:10:5d:b1:7e:34:a5:93:
98:a1:04:56:53:2a:98:2b:d2:0b:c7:51:c2:75:09:
84:2b:9e:4d:90:04:e9:a5:bd:1b:20:e5:4b:3f:d6:
50:4b:bb:f0:fc:ca:c1:9f:7b:f3:6d:40:92:97:dc:
e2:3d:3e:8a:50:1c:02:a9:05:60:74:4d:93:9b:dd:
fc:6e:7d:a6:84:41:eb:ac:e7:6f:bb:8b:de:6e:19:
c5:fd:ba:70:bf:bc:ae:18:6d:e5:06:9a:0a:e5:80:
62:69:3b:ef:a8:6b:ad:3f:a3:af:f7:d9:43:34:78:
ed:10:9d:60:a9:e7:96:11:74:92:40:13:40:f2:57:
cb:e4:14:1b:4c:98:8b:68:0f:06:89:03:29:b8:e9:
74:12:79:c2:f9:a4:96:a4:db:1b:bf:95:cf:1d:5b:
ad:6f:ea:3f:f5:df:90:e4:d5:75:3d:b5:ba:aa:0a:
74:4a:55:65:e0:46:5d:81:62:8f:6a:79:db:56:c3:
56:4f:d8:d5:b6:51:3c:08:91:34:dc:22:42:52:51:
b4:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:E3:07:B2:23:78:C1:82:10:75:5E:F6:F0:E1:CD:62:F8:88:38:17
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/HuMHsiN4wYIQdV728OHNYviIOBc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.8.0/24
Signature Algorithm: sha256WithRSAEncryption
60:da:31:d7:92:28:72:c3:a4:0f:37:a7:41:7f:dd:af:0e:cb:
8f:56:29:0e:7d:40:e0:d5:6b:4d:23:2c:43:93:4a:6a:43:1b:
5c:7c:b5:1d:26:1d:ee:34:e5:22:3e:76:0c:d4:d4:2d:e8:86:
ba:9c:ec:2f:ac:31:14:32:f0:d7:4c:c1:33:91:a6:c1:f9:1a:
42:a7:58:f1:14:bc:76:a9:dd:9d:df:4e:c3:30:8c:eb:41:2c:
be:ff:df:b4:a5:ce:29:cd:2f:7a:d4:09:48:13:54:7a:40:98:
6d:2d:cb:b9:c7:95:04:b0:33:a0:03:90:c7:45:83:bf:91:bd:
25:d8:3e:a2:cb:b6:fa:5f:35:4e:8f:d2:05:41:1d:8e:be:d8:
28:38:4c:16:96:dc:03:24:96:fb:87:16:1d:77:3c:de:af:6e:
2f:fd:58:ee:49:98:28:64:4d:3a:54:5e:96:5b:5c:7c:20:a8:
77:be:b1:e1:c9:d0:72:b1:07:08:cf:ad:98:ec:1f:e2:74:1c:
27:1d:c7:e8:79:bc:5a:64:1c:5e:21:f6:49:84:89:b4:64:33:
93:6f:70:01:32:bb:36:3b:56:9f:4c:99:2b:02:4a:b9:97:11:
57:2e:c5:75:2d:6e:99:37:7c:e3:db:18:40:55:b4:40:49:8d:
4d:4a:6c:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:11 2024 by rpki-client on console-ams.rpki-client.org