Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/f0767c-b019-463c-a0b1-8d4bfd0aace8/1/hUKxrk6E_9C7kDObSKr_NbSkXDY.roa
File: hUKxrk6E_9C7kDObSKr_NbSkXDY.roa (raw, json)
Hash identifier: x/4CYdKioBzWNncMR04qGRr/k3HI1tpIhiMRgo0DK/k=
Subject key identifier: 85:42:B1:AE:4E:84:FF:D0:BB:90:33:9B:48:AA:FF:35:B4:A4:5C:36
Certificate issuer: /CN=925cecefe522817405d26fc92bb5104ac90cfdc5
Certificate serial: 0182B50ABB64C46DDC8EE36AC410692D25E7
Authority key identifier: 92:5C:EC:EF:E5:22:81:74:05:D2:6F:C9:2B:B5:10:4A:C9:0C:FD:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/klzs7-UigXQF0m_JK7UQSskM_cU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/f0767c-b019-463c-a0b1-8d4bfd0aace8/1/hUKxrk6E_9C7kDObSKr_NbSkXDY.roa
Signing time: Fri 19 Aug 2022 07:39:15 +0000
ROA not before: Fri 19 Aug 2022 07:39:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39793
IP address blocks: 91.229.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b5:0a:bb:64:c4:6d:dc:8e:e3:6a:c4:10:69:2d:25:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=925cecefe522817405d26fc92bb5104ac90cfdc5
Validity
Not Before: Aug 19 07:39:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8542b1ae4e84ffd0bb90339b48aaff35b4a45c36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:bb:2d:b6:7e:32:7e:36:2c:00:64:ee:5f:e4:
0a:4b:26:a3:53:7e:52:33:f9:31:8e:4d:82:dd:4c:
35:f9:02:0e:89:e7:1e:10:6a:b5:48:cc:4e:c3:e3:
96:ae:86:d7:11:33:52:a5:2f:45:ab:04:ff:f2:18:
fd:ea:a3:37:d2:df:e2:9f:aa:fe:5d:94:0e:49:3d:
7b:a7:cb:ff:93:82:17:13:39:a8:63:3b:88:df:2b:
07:68:e5:0d:48:91:9e:fd:ca:69:3c:1a:a3:5c:be:
34:17:20:dd:61:11:dc:d5:46:e2:b0:a1:7e:cf:a1:
23:74:ed:e1:3d:e1:0f:6e:82:da:e7:e5:d7:8c:2b:
82:6c:9e:90:d6:c5:ff:8d:17:3e:c3:5d:1e:eb:c2:
3c:4d:ce:a5:d2:04:7b:d3:2a:fa:de:31:5f:53:24:
59:54:04:59:58:ba:7c:a6:98:77:f7:84:98:e8:95:
d2:3a:80:c5:f3:79:58:36:01:bf:ff:1b:c6:1b:46:
ee:40:29:5d:64:56:d3:a8:9b:95:bf:7c:01:03:31:
d7:94:09:c5:7b:fe:c3:1e:7a:80:29:32:7f:2b:25:
59:55:8a:cc:4e:2b:04:24:d3:ad:98:36:14:95:9e:
a4:63:f6:86:35:3d:8b:15:bb:07:47:5d:91:55:bc:
f4:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:42:B1:AE:4E:84:FF:D0:BB:90:33:9B:48:AA:FF:35:B4:A4:5C:36
X509v3 Authority Key Identifier:
keyid:92:5C:EC:EF:E5:22:81:74:05:D2:6F:C9:2B:B5:10:4A:C9:0C:FD:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/klzs7-UigXQF0m_JK7UQSskM_cU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/f0767c-b019-463c-a0b1-8d4bfd0aace8/1/hUKxrk6E_9C7kDObSKr_NbSkXDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/f0767c-b019-463c-a0b1-8d4bfd0aace8/1/klzs7-UigXQF0m_JK7UQSskM_cU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.185.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:3f:dd:b2:a1:6f:b4:a1:2e:38:bc:da:da:b6:95:fd:a3:78:
35:d0:9f:53:36:48:b1:bf:86:9f:0a:a8:be:99:26:6f:aa:46:
6a:d3:31:49:27:9e:e1:2e:c4:ff:6b:65:97:ce:1e:68:1d:b5:
c1:e3:62:8b:d0:0a:0b:46:cb:91:4a:0c:cb:75:00:b9:ae:93:
ef:e2:11:cd:c6:2b:74:14:9c:81:bd:6f:72:75:e4:eb:78:b4:
46:0b:a6:16:80:f2:74:94:0f:ba:75:22:87:24:2d:62:b4:05:
76:d2:5a:d8:3c:48:44:82:c5:30:05:53:02:97:a6:99:ff:c3:
c6:84:38:fb:6e:92:39:6c:e6:c0:ba:9c:4b:bf:b1:98:f5:77:
c9:4f:14:1a:e0:36:6e:69:06:ac:85:37:d3:7f:79:80:55:23:
52:83:c0:e2:9c:56:57:f2:37:42:89:d8:17:4a:f3:61:e0:39:
a7:9a:f8:6e:03:f1:00:8c:61:6d:bc:86:0b:ec:d8:0d:e9:8e:
2a:7c:9c:83:da:b8:22:49:6e:4d:c7:44:6d:72:54:b8:14:f2:
77:17:33:71:dd:9a:9f:2e:f1:e4:16:0a:9c:aa:c4:7f:b1:88:
c4:ad:66:a2:97:8e:06:91:aa:8c:8e:b4:25:bf:03:e6:34:ef:
28:06:f3:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:57 2024 by rpki-client on console-fra.rpki-client.org