Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/HSCj_xK1jx_A6XPlpPu1O8w_mUo.roa
File: HSCj_xK1jx_A6XPlpPu1O8w_mUo.roa (raw, json)
Hash identifier: 7kqJhtUmBI7gSnmjw7k1/HmV+AqUA1OyKc9b5XVLTEw=
Subject key identifier: 1D:20:A3:FF:12:B5:8F:1F:C0:E9:73:E5:A4:FB:B5:3B:CC:3F:99:4A
Certificate issuer: /CN=a1020772f628b8fb51f3475136b77feb4b2698be
Certificate serial: 0302FCAB
Authority key identifier: A1:02:07:72:F6:28:B8:FB:51:F3:47:51:36:B7:7F:EB:4B:26:98:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/HSCj_xK1jx_A6XPlpPu1O8w_mUo.roa
Signing time: Sat 01 Jan 2022 12:06:44 +0000
ROA not before: Sat 01 Jan 2022 12:06:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43566
IP address blocks: 91.199.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50527403 (0x302fcab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1020772f628b8fb51f3475136b77feb4b2698be
Validity
Not Before: Jan 1 12:06:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d20a3ff12b58f1fc0e973e5a4fbb53bcc3f994a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:32:17:71:0e:d7:62:ea:d3:32:00:94:8b:c7:
bd:64:96:c3:6f:9f:15:03:d2:ef:48:0c:69:4c:8c:
5f:04:0d:47:65:66:46:47:0d:ae:3e:50:e4:81:85:
5d:dc:de:88:40:96:ae:91:95:6d:83:25:af:a4:9c:
4e:16:56:35:c9:5d:f6:11:47:55:ee:84:0e:05:ad:
ce:ed:4b:f5:08:c8:16:fe:ee:5f:28:08:fe:c6:02:
c1:0c:e0:f6:ed:22:a6:4e:e3:1a:ab:8a:d2:ee:41:
75:4b:5a:04:a2:da:04:61:e0:06:c9:1e:15:72:95:
75:ee:c3:bb:59:c9:1a:60:97:36:ea:7d:7b:08:da:
98:30:c5:29:ba:18:35:42:60:51:77:77:4e:a4:2f:
8b:ea:ca:37:8f:53:f6:7d:2a:ab:4f:c9:6f:08:0f:
f8:c7:90:02:9e:b1:e8:ad:98:6b:77:00:3e:48:ed:
f5:f8:4b:d1:f4:11:17:09:a6:dd:b0:01:c6:fc:5d:
51:42:be:13:c9:d0:d0:b0:54:97:68:b8:49:c9:cb:
ac:2b:53:7a:f1:7d:ef:15:e7:74:c0:45:db:f2:a9:
8f:34:1b:76:44:cb:a9:de:69:04:7b:c6:90:f0:6d:
21:7d:8f:f7:22:3d:bb:21:4e:fc:38:77:c6:60:11:
15:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:20:A3:FF:12:B5:8F:1F:C0:E9:73:E5:A4:FB:B5:3B:CC:3F:99:4A
X509v3 Authority Key Identifier:
keyid:A1:02:07:72:F6:28:B8:FB:51:F3:47:51:36:B7:7F:EB:4B:26:98:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/HSCj_xK1jx_A6XPlpPu1O8w_mUo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.83.0/24
Signature Algorithm: sha256WithRSAEncryption
df:b9:db:f8:e7:8e:fe:fd:79:8a:08:f0:22:a8:27:e6:5f:c5:
88:9c:0a:f8:8c:71:05:2e:73:f3:f9:c5:92:4d:8d:ce:0b:de:
8b:b7:d0:1b:68:34:fa:e6:91:c6:7e:ae:4b:77:c6:f3:e4:fc:
fd:74:bd:5f:d1:06:90:b4:ca:ca:a5:cb:f7:d5:9b:57:fa:ea:
15:49:9f:a2:2a:7f:f5:b0:c8:13:53:28:db:8d:e9:38:bc:fe:
35:31:b0:bf:5c:da:aa:9d:83:40:00:de:0e:8e:97:fe:3f:43:
24:69:4a:57:f1:3f:ca:e5:70:99:d7:0f:91:15:2c:7a:91:83:
f4:b8:c1:46:03:b4:73:85:27:67:e0:9b:cd:06:d4:00:77:7b:
85:de:f3:8e:20:7b:be:0b:6e:fd:40:a1:31:8d:1a:f6:c3:b5:
a8:61:bc:46:f3:6e:01:37:0c:35:eb:50:ea:39:27:50:13:bc:
f1:1c:00:27:68:50:e4:14:ea:9e:49:be:53:fa:ac:5d:00:fb:
73:b3:36:41:1a:6d:f6:29:85:4e:62:ac:fc:c0:9f:39:1c:d3:
1b:9b:5a:69:ca:eb:7f:22:50:e2:57:ed:d4:bc:5c:16:2e:fe:
55:28:99:67:45:7c:c4:6d:84:e0:38:b0:d5:3c:f4:1b:c8:e2:
6f:1d:09:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:00 2024 by rpki-client on console-fra.rpki-client.org