Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/hcoPIrd21AJNvbdecoLk8_l2IqU.roa
File: hcoPIrd21AJNvbdecoLk8_l2IqU.roa (raw, json)
Hash identifier: PHcFs7sgwcP22cjDDn4fCC8KHszn7FUojlQm5STPgOQ=
Subject key identifier: 85:CA:0F:22:B7:76:D4:02:4D:BD:B7:5E:72:82:E4:F3:F9:76:22:A5
Certificate issuer: /CN=81c8b73ab7bdeb76ff48b2ca099616edbe71c426
Certificate serial: 058A1712
Authority key identifier: 81:C8:B7:3A:B7:BD:EB:76:FF:48:B2:CA:09:96:16:ED:BE:71:C4:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/hcoPIrd21AJNvbdecoLk8_l2IqU.roa
Signing time: Sat 01 Jan 2022 06:04:30 +0000
ROA not before: Sat 01 Jan 2022 06:04:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207429
IP address blocks: 45.92.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92935954 (0x58a1712)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81c8b73ab7bdeb76ff48b2ca099616edbe71c426
Validity
Not Before: Jan 1 06:04:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85ca0f22b776d4024dbdb75e7282e4f3f97622a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1e:e3:51:d6:16:da:b4:f9:7c:d0:a1:85:76:
e5:ba:7d:82:f4:62:15:5b:89:6d:de:ec:61:dd:86:
c1:c7:9c:12:d5:fd:50:f6:d8:da:75:aa:26:cb:48:
1c:da:75:93:c5:d4:e8:62:1b:48:9e:df:10:d7:84:
43:45:54:73:31:96:f2:d6:05:0c:64:b1:8f:f4:16:
c4:14:02:9f:eb:25:d3:94:b3:a7:51:2e:db:0a:b6:
a6:d9:30:f6:61:11:a5:37:2f:db:2a:c1:d4:66:a5:
40:16:f5:ae:9e:fa:70:2f:1a:5d:23:73:91:b6:06:
37:a7:08:bf:d3:1a:02:4a:a8:84:a0:16:28:f1:7c:
95:fa:2c:01:73:6a:ec:73:87:ee:98:5b:45:dd:b8:
62:30:db:2f:d8:26:e4:44:07:f5:27:57:34:a2:d8:
91:39:e3:32:c0:7d:f8:bb:09:3c:b1:4a:c9:b3:1e:
6f:de:ac:6f:50:9b:98:2b:ac:f2:94:0d:50:04:e5:
b9:34:a6:67:02:a2:29:6a:db:14:9d:eb:4f:0d:67:
2e:11:d0:28:96:a9:47:a4:63:7f:f7:fb:9e:f4:c5:
8b:66:45:b2:1d:c7:a8:1a:bb:02:3a:91:b4:84:54:
ff:80:61:84:98:63:07:8b:c1:0a:7d:d7:bd:87:11:
1e:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:CA:0F:22:B7:76:D4:02:4D:BD:B7:5E:72:82:E4:F3:F9:76:22:A5
X509v3 Authority Key Identifier:
keyid:81:C8:B7:3A:B7:BD:EB:76:FF:48:B2:CA:09:96:16:ED:BE:71:C4:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/hcoPIrd21AJNvbdecoLk8_l2IqU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/gci3Ore963b_SLLKCZYW7b5xxCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.29.0/24
Signature Algorithm: sha256WithRSAEncryption
31:c4:30:db:55:d4:94:3b:87:58:a4:3d:41:4a:d5:ec:92:1e:
af:7f:6f:48:77:5e:63:df:b6:52:de:5b:2e:d9:46:ea:a2:0f:
8b:b0:19:ac:a1:db:7f:51:c5:52:92:cd:bd:bc:fd:4d:49:b7:
33:3c:f0:85:25:92:fe:89:b1:61:b7:7a:67:00:9a:27:9b:a5:
eb:e6:64:03:f9:8d:3b:81:20:44:34:45:55:d6:f5:92:f5:9d:
5d:58:c5:d1:33:f8:c6:90:0f:7e:e0:7d:9b:30:38:ec:97:c3:
88:5b:39:c6:9d:87:8e:31:bc:ff:c3:4e:40:76:d8:ab:87:b4:
e5:e8:81:20:15:94:47:cb:2e:4c:79:f2:75:6d:7f:43:f2:e8:
95:da:41:da:63:d7:9c:6f:b3:ec:4f:c9:3e:a1:f3:4a:c8:3a:
bb:8b:32:d0:c5:23:b7:8a:8b:b4:7f:29:d8:39:a7:a4:a3:5c:
64:1b:35:b5:ef:48:c1:68:87:4a:fe:ba:1b:c2:e4:19:9c:ed:
da:9f:28:ef:9e:81:6a:c5:3e:e6:9a:66:a0:e4:81:a5:b4:6f:
98:ea:cc:b1:aa:64:a3:7b:d5:61:fd:dc:0c:7e:9a:cd:48:f8:
80:30:f8:da:ba:09:18:78:e4:20:32:1d:1a:39:4e:88:cc:39:
33:5b:ed:bc
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBYoXEjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MWM4YjczYWI3YmRlYjc2ZmY0OGIyY2EwOTk2MTZlZGJlNzFjNDI2MB4XDTIyMDEw
MTA2MDQzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODVjYTBmMjJiNzc2
ZDQwMjRkYmRiNzVlNzI4MmU0ZjNmOTc2MjJhNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL4e41HWFtq0+XzQoYV25bp9gvRiFVuJbd7sYd2GwcecEtX9
UPbY2nWqJstIHNp1k8XU6GIbSJ7fENeEQ0VUczGW8tYFDGSxj/QWxBQCn+sl05Sz
p1Eu2wq2ptkw9mERpTcv2yrB1GalQBb1rp76cC8aXSNzkbYGN6cIv9MaAkqohKAW
KPF8lfosAXNq7HOH7phbRd24YjDbL9gm5EQH9SdXNKLYkTnjMsB9+LsJPLFKybMe
b96sb1CbmCus8pQNUATluTSmZwKiKWrbFJ3rTw1nLhHQKJapR6Rjf/f7nvTFi2ZF
sh3HqBq7AjqRtIRU/4BhhJhjB4vBCn3XvYcRHlsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSFyg8it3bUAk29t15yguTz+XYipTAfBgNVHSMEGDAWgBSByLc6t73rdv9I
ssoJlhbtvnHEJjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2djaTNPcmU5NjNiX1NMTEtDWllXN2I1eHhDWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTgvMjA3OTM0LTllZGMtNGE4OS04MjBlLWQ4NDg4YjNhYjQyZi8x
L2hjb1BJcmQyMUFKTnZiZGVjb0xrOF9sMklxVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTgv
MjA3OTM0LTllZGMtNGE4OS04MjBlLWQ4NDg4YjNhYjQyZi8xL2djaTNPcmU5NjNi
X1NMTEtDWllXN2I1eHhDWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC1cHTANBgkqhkiG9w0BAQsFAAOC
AQEAMcQw21XUlDuHWKQ9QUrV7JIer39vSHdeY9+2Ut5bLtlG6qIPi7AZrKHbf1HF
UpLNvbz9TUm3MzzwhSWS/omxYbd6ZwCaJ5ul6+ZkA/mNO4EgRDRFVdb1kvWdXVjF
0TP4xpAPfuB9mzA47JfDiFs5xp2HjjG8/8NOQHbYq4e05eiBIBWUR8suTHnydW1/
Q/LoldpB2mPXnG+z7E/JPqHzSsg6u4sy0MUjt4qLtH8p2DmnpKNcZBs1te9IwWiH
Sv66G8LkGZzt2p8o756BasU+5ppmoOSBpbRvmOrMsapko3vVYf3cDH6azUj4gDD4
2roJGHjkIDIdGjlOiMw5M1vtvA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:02 2024 by rpki-client on console-ams.rpki-client.org