Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/HreZoh968IxX2rao8uMesv2z2qo.roa
File: HreZoh968IxX2rao8uMesv2z2qo.roa (raw, json)
Hash identifier: xK+0TBIXUeDz3NiIFXjUMNckxGCo1+75sLkJkWTECRY=
Subject key identifier: 1E:B7:99:A2:1F:7A:F0:8C:57:DA:B6:A8:F2:E3:1E:B2:FD:B3:DA:AA
Certificate issuer: /CN=3aba1172472ea80265d12982967de0a8b0bc5901
Certificate serial: 175F799E
Authority key identifier: 3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/HreZoh968IxX2rao8uMesv2z2qo.roa
Signing time: Sat 01 Jan 2022 04:56:24 +0000
ROA not before: Sat 01 Jan 2022 04:56:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210876
IP address blocks: 193.57.164.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 392133022 (0x175f799e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aba1172472ea80265d12982967de0a8b0bc5901
Validity
Not Before: Jan 1 04:56:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1eb799a21f7af08c57dab6a8f2e31eb2fdb3daaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:32:79:9b:7f:0d:c1:70:41:c9:1a:9f:24:8e:
af:63:0f:83:ca:b1:2d:f8:5f:95:4e:cf:ac:bd:c5:
94:cd:54:97:76:f8:0e:b7:27:f4:6b:8b:14:f0:99:
1d:a9:d0:04:6a:64:0a:2b:08:f6:28:e8:8a:28:64:
ca:12:09:2d:0f:05:7b:2d:4d:39:e3:68:13:42:a0:
1e:6a:f9:98:d4:b2:60:cf:b1:cd:da:4b:85:d7:76:
55:91:f6:b5:30:25:8f:25:12:14:60:ba:f9:c8:34:
53:60:c2:8d:c3:cd:f9:22:e1:90:90:b2:74:fa:41:
b3:33:22:c3:98:6e:cc:3c:12:bd:24:a4:63:96:e9:
60:b7:0a:40:32:97:b0:c2:07:18:83:26:c0:26:76:
f0:8c:9d:7e:c7:ab:e9:5d:ba:53:56:27:d4:29:80:
df:c7:2c:33:4b:7b:5d:54:fb:9f:a2:de:05:9d:a8:
81:35:7a:ad:a2:b0:11:bc:ec:02:28:19:33:5b:68:
48:10:59:08:4d:8f:98:13:b2:05:e8:24:7b:4a:5e:
7e:39:67:96:4f:7c:3e:47:6f:e7:a4:a3:6a:ef:20:
31:e1:8d:d0:13:31:17:eb:09:d6:9f:82:10:6c:35:
42:8c:41:f1:aa:db:d8:ec:92:ee:2e:01:8d:fb:9c:
92:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:B7:99:A2:1F:7A:F0:8C:57:DA:B6:A8:F2:E3:1E:B2:FD:B3:DA:AA
X509v3 Authority Key Identifier:
keyid:3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/HreZoh968IxX2rao8uMesv2z2qo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/OroRckcuqAJl0SmCln3gqLC8WQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.164.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:d1:4a:af:6b:5d:1d:dd:41:cc:e5:71:01:78:b0:6d:37:bf:
1d:42:ec:56:61:93:f4:7c:02:89:c1:fe:73:c4:80:ac:0b:a3:
fa:81:b0:df:5b:fa:45:aa:34:b5:6c:19:be:18:2f:da:b7:6d:
57:be:0a:84:87:36:17:10:10:c3:ad:3a:82:4b:41:4a:d1:83:
42:c5:f8:70:9c:e4:9e:6e:73:f2:4a:c2:00:c2:19:79:cd:a0:
0f:d8:be:a6:50:a2:a0:23:f3:06:b1:bf:15:d7:fc:89:2d:64:
88:44:39:c8:61:c5:b6:96:2b:16:57:5a:fb:02:fb:f2:f4:51:
51:57:df:96:fe:17:6a:d9:8e:f5:91:a5:26:3a:88:91:a6:83:
73:0d:33:66:8d:e8:60:4c:8c:e5:e4:64:50:ef:54:4e:74:fc:
65:31:34:1e:03:42:01:72:d4:99:1b:b3:5b:ab:40:af:ce:d2:
c8:21:8e:a1:a7:4b:53:31:93:73:73:22:e2:6d:ef:db:9e:cf:
52:fa:d7:71:7b:aa:e6:99:d9:cd:ac:0d:ff:6d:22:a8:5c:23:
02:51:1e:58:08:5b:3e:b3:92:7f:68:36:04:85:26:89:d6:48:
ee:a8:ed:d0:43:53:9d:45:fb:8c:d8:19:a6:62:15:8c:68:d5:
3b:96:10:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:17 2024 by rpki-client on console-fra.rpki-client.org