Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d71c56-b8be-4d1a-bc22-037539631bb4/1/hakYx-qx3thq30W__OUcclFEJ0c.roa
File: hakYx-qx3thq30W__OUcclFEJ0c.roa (raw, json)
Hash identifier: KhpBcONSkIf77lIEGAXn5KJHbMisteZ7r3NVakG58Ok=
Subject key identifier: 85:A9:18:C7:EA:B1:DE:D8:6A:DF:45:BF:FC:E5:1C:72:51:44:27:47
Certificate issuer: /CN=711b4f3aa45dc4ec336d62e9a7e89d79b3efcab0
Certificate serial: 0181D7E8387E168973AC940450274BB7EE16
Authority key identifier: 71:1B:4F:3A:A4:5D:C4:EC:33:6D:62:E9:A7:E8:9D:79:B3:EF:CA:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cRtPOqRdxOwzbWLpp-idebPvyrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d71c56-b8be-4d1a-bc22-037539631bb4/1/hakYx-qx3thq30W__OUcclFEJ0c.roa
Signing time: Thu 07 Jul 2022 09:05:29 +0000
ROA not before: Thu 07 Jul 2022 09:05:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202470
IP address blocks: 91.238.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d7:e8:38:7e:16:89:73:ac:94:04:50:27:4b:b7:ee:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=711b4f3aa45dc4ec336d62e9a7e89d79b3efcab0
Validity
Not Before: Jul 7 09:05:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85a918c7eab1ded86adf45bffce51c7251442747
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5e:a2:dd:e3:4c:43:e9:d8:96:f8:bb:af:20:
84:21:bf:78:8a:f7:21:28:35:b2:40:e1:52:40:00:
83:98:93:11:e9:38:f7:03:77:1d:6c:ff:7d:4e:a3:
b7:44:a4:22:5a:f4:04:1f:ff:d3:45:b9:a9:0d:c1:
a4:c6:05:ee:1c:bf:a5:95:12:d2:65:0f:21:8a:59:
06:b1:ac:30:b8:d3:bb:e2:a0:e3:2c:be:1d:b6:ea:
e8:b2:e4:6e:55:96:5e:24:37:ce:9c:83:75:ff:09:
a1:e1:7a:08:94:c3:49:83:5d:fe:e3:ee:05:c7:ca:
9c:11:98:0f:cd:af:bd:0c:43:bf:f2:2a:4f:52:85:
4a:0b:61:cb:21:c1:60:31:e4:ff:18:3c:c7:7a:b8:
28:4b:53:08:09:48:2b:93:ed:4d:1c:fe:c3:84:7d:
cb:02:30:14:63:50:44:26:e8:16:ed:a5:76:0c:7d:
28:2d:a8:91:8f:56:75:10:be:57:84:bd:0e:6c:02:
3a:10:b3:e8:6e:10:02:d8:dd:fb:5d:99:13:6e:94:
52:dc:e9:c6:8b:ed:15:da:76:69:03:04:d3:02:ee:
12:78:b5:33:ef:70:cc:cf:1d:83:90:81:4e:54:c5:
63:b3:02:1e:6c:6a:5d:4f:41:ad:73:2b:0f:bd:59:
b9:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:A9:18:C7:EA:B1:DE:D8:6A:DF:45:BF:FC:E5:1C:72:51:44:27:47
X509v3 Authority Key Identifier:
keyid:71:1B:4F:3A:A4:5D:C4:EC:33:6D:62:E9:A7:E8:9D:79:B3:EF:CA:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cRtPOqRdxOwzbWLpp-idebPvyrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d71c56-b8be-4d1a-bc22-037539631bb4/1/hakYx-qx3thq30W__OUcclFEJ0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d71c56-b8be-4d1a-bc22-037539631bb4/1/cRtPOqRdxOwzbWLpp-idebPvyrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.123.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:49:18:bb:40:63:aa:83:c9:5e:a9:af:fe:54:d7:9e:82:a3:
04:2a:b6:46:53:3b:05:19:66:5e:e5:91:29:2a:e2:00:52:48:
6a:1d:15:51:85:f5:33:28:a4:3b:53:b1:95:5a:94:d7:4a:fc:
de:72:2c:63:7e:65:6f:0f:3a:db:1e:33:cb:2b:e1:e8:34:8a:
ac:a5:ad:3d:e2:7a:a3:15:9e:3e:d9:11:1e:1a:81:40:e7:91:
4a:1b:3d:13:a9:5c:c5:3c:b5:48:ba:ec:43:df:66:3c:6f:7f:
3e:ab:ab:73:19:30:77:c4:15:62:87:be:3a:4f:f4:96:8a:e0:
0f:d6:9a:b6:7b:b6:f6:fa:fb:93:64:27:36:7d:cc:79:ca:66:
64:0b:62:4f:ed:36:55:df:d5:87:6e:20:0f:f0:25:a1:3b:3d:
9e:ca:e6:e5:ce:c8:25:01:c1:58:2d:53:47:2c:cf:92:0a:5e:
e7:65:82:35:55:70:fe:21:b8:d8:f0:b9:18:0d:d8:4c:b0:f8:
d2:81:23:0d:c0:cb:d2:ea:78:92:1a:bf:3b:a9:6d:99:b1:04:
0d:d4:a1:7a:42:9f:7d:82:b2:46:6b:32:14:ac:30:e0:39:c8:
2c:4f:fd:b7:22:11:48:b3:4d:29:e2:df:cd:2a:71:20:b0:ea:
87:67:10:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:58 2024 by rpki-client on console-ams.rpki-client.org