Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/HrqT5IKyY5NVr9563uUdux69n80.roa
File: HrqT5IKyY5NVr9563uUdux69n80.roa (raw, json)
Hash identifier: tsBZ13CPtCtKVUCE/s/ATTGhYWY3GslGVH2kLIUPVKY=
Subject key identifier: 1E:BA:93:E4:82:B2:63:93:55:AF:DE:7A:DE:E5:1D:BB:1E:BD:9F:CD
Certificate issuer: /CN=3bfccd4a00422c865f5093b85bb868c2bb30c469
Certificate serial: 07865D53
Authority key identifier: 3B:FC:CD:4A:00:42:2C:86:5F:50:93:B8:5B:B8:68:C2:BB:30:C4:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_zNSgBCLIZfUJO4W7howrswxGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/HrqT5IKyY5NVr9563uUdux69n80.roa
Signing time: Tue 14 Jun 2022 19:18:06 +0000
ROA not before: Tue 14 Jun 2022 19:18:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8454
IP address blocks: 91.213.98.0/24 maxlen: 24
2001:67c:2f78::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126246227 (0x7865d53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bfccd4a00422c865f5093b85bb868c2bb30c469
Validity
Not Before: Jun 14 19:18:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1eba93e482b2639355afde7adee51dbb1ebd9fcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3d:0d:1c:43:6e:fa:f4:73:05:14:dc:1f:d1:
ae:20:7a:8c:a1:40:f4:3a:1a:39:ce:bd:44:df:9b:
21:5c:fa:24:c3:b7:80:65:0a:73:63:d3:50:47:91:
57:be:55:36:9a:59:46:19:32:65:91:84:ee:b5:c4:
17:18:70:be:44:3f:54:51:f6:7c:31:cb:32:81:4f:
94:b5:43:37:d0:04:25:b3:2f:46:3a:7a:03:75:4a:
17:89:29:9c:76:d1:8d:0a:fe:7b:59:c4:2a:fe:9a:
4a:bd:9e:b9:e5:33:45:8d:16:ea:f6:ef:ec:aa:af:
f5:c0:6d:3f:1f:0a:2f:69:5e:c4:61:0d:fb:b3:81:
2d:9f:db:39:a5:d7:a2:5c:ae:7b:27:1f:1b:7b:d1:
56:c0:7f:f5:5b:47:b1:fc:3a:71:50:b1:c4:74:32:
82:85:2e:15:fe:1e:c8:fb:f7:ae:e4:94:17:32:de:
5d:2c:3d:12:72:08:94:30:23:25:9d:42:35:fe:3e:
98:82:84:17:19:fb:46:43:84:ad:f6:54:b5:55:8a:
5c:83:8d:8a:ab:87:84:fb:a3:65:30:8a:61:ee:41:
ae:06:5f:55:bd:4a:44:a3:bc:a2:a7:8a:7b:a7:96:
93:aa:bf:59:b4:f2:57:da:08:be:46:fb:16:14:15:
06:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:BA:93:E4:82:B2:63:93:55:AF:DE:7A:DE:E5:1D:BB:1E:BD:9F:CD
X509v3 Authority Key Identifier:
keyid:3B:FC:CD:4A:00:42:2C:86:5F:50:93:B8:5B:B8:68:C2:BB:30:C4:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_zNSgBCLIZfUJO4W7howrswxGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/HrqT5IKyY5NVr9563uUdux69n80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.98.0/24
IPv6:
2001:67c:2f78::/48
Signature Algorithm: sha256WithRSAEncryption
4e:3d:96:26:01:24:92:a8:ab:96:07:8f:e0:95:29:72:f2:82:
2d:5f:d0:a8:f8:b8:66:81:78:51:dc:f5:c9:4c:94:73:24:17:
f6:83:d0:a5:15:b8:15:17:ec:2e:29:29:df:53:fd:a9:0c:01:
8c:77:ec:45:6d:f6:bd:8d:b2:81:d7:45:cc:51:9c:2a:86:43:
88:44:32:50:27:67:f0:e2:c9:24:e5:4f:a3:9e:28:3e:d3:cb:
ed:5b:18:0e:b4:d5:fe:01:d5:67:84:33:fb:5e:b1:cb:37:7a:
0e:fb:f3:80:30:ee:50:58:1a:fb:7f:69:e6:ed:c2:5f:0e:12:
0f:98:f4:f9:ec:9d:3b:7c:e4:60:a2:41:d1:35:f5:e3:3d:83:
e6:23:0f:2c:bc:5e:54:3c:88:62:d1:90:c7:ea:3a:23:e1:f7:
ea:99:22:dc:cc:3f:cf:7d:66:f5:72:02:c7:0b:b8:1e:f1:c6:
b0:b0:4f:88:8e:ab:df:2e:e5:da:bb:5f:04:c9:26:93:36:77:
6d:49:40:59:72:99:97:d3:fc:01:c6:3b:6a:3b:e2:f7:32:7b:
08:28:cb:ed:eb:b6:d4:30:13:6e:d0:89:33:b5:a6:7b:e7:ba:
02:16:79:1f:64:87:d8:b5:87:89:66:3f:0d:a4:14:48:99:b6:
b4:97:29:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:01 2023 by rpki-client on console-fra.rpki-client.org