Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/hbyweW0taSibNSdLC4aVP7fDIcE.roa
File: hbyweW0taSibNSdLC4aVP7fDIcE.roa (raw, json)
Hash identifier: 6znB70sZS9vfdSQyi60/17TZbX06uhgty44q049E1bI=
Subject key identifier: 85:BC:B0:79:6D:2D:69:28:9B:35:27:4B:0B:86:95:3F:B7:C3:21:C1
Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Certificate serial: 05A01C73
Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/hbyweW0taSibNSdLC4aVP7fDIcE.roa
Signing time: Sat 01 Jan 2022 07:04:03 +0000
ROA not before: Sat 01 Jan 2022 07:04:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56458
IP address blocks: 89.40.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94379123 (0x5a01c73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Validity
Not Before: Jan 1 07:04:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85bcb0796d2d69289b35274b0b86953fb7c321c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:35:6e:5a:5c:ad:d1:80:bf:b5:a6:db:22:4c:
b7:83:7e:80:59:17:6b:19:80:21:1b:ee:27:f0:69:
1e:49:cc:d3:df:25:18:ff:77:ea:88:1a:b5:be:93:
25:c5:da:fe:8f:e7:50:5a:d6:52:38:05:2e:3c:a9:
1a:13:ec:53:ac:45:d0:43:6c:9c:7e:96:be:8d:bb:
68:85:6f:e8:dc:a9:04:3d:f1:cc:d6:4b:55:d5:3e:
ea:96:6e:f4:8c:9f:5b:5e:74:47:f3:97:80:97:1d:
04:a2:e6:e2:be:e6:37:f0:1f:5f:b4:13:3d:bc:3b:
24:b8:34:48:52:29:7f:9e:3a:47:86:84:14:4b:c4:
10:79:f3:28:fb:8a:71:cc:1a:c0:5f:f1:e1:f6:93:
67:92:68:f1:f2:94:9b:76:b6:ca:3e:b1:82:60:a2:
1e:05:60:ab:9c:93:6f:e9:02:69:21:db:f5:9a:11:
f5:87:1e:4e:ba:d5:69:33:38:fb:cb:10:b1:f5:98:
5f:8a:12:58:8d:a1:dd:98:6c:4f:f1:bc:f2:ca:84:
c1:33:a4:c4:90:2a:90:27:66:52:ec:4d:5e:ee:e6:
c0:44:e3:fe:bd:63:7d:f0:f5:e9:cc:a4:2d:cb:81:
80:70:e2:d7:b3:a0:71:b9:8b:59:b3:f3:45:5b:36:
a3:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:BC:B0:79:6D:2D:69:28:9B:35:27:4B:0B:86:95:3F:B7:C3:21:C1
X509v3 Authority Key Identifier:
keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/hbyweW0taSibNSdLC4aVP7fDIcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.40.224.0/24
Signature Algorithm: sha256WithRSAEncryption
30:28:ff:8c:f6:6e:b8:02:2a:a7:01:07:cb:9b:23:48:fe:00:
17:6b:75:01:af:df:fa:ca:ee:77:f1:b7:cb:71:38:f9:52:ed:
e5:90:2f:97:1b:db:56:c2:a5:1e:76:33:d6:26:66:91:22:e3:
f4:61:1c:aa:fd:bd:01:3a:79:13:f4:da:88:34:e1:47:16:88:
1d:cb:22:a1:86:18:8a:d1:e0:e3:5c:4b:b7:9d:4b:32:dd:b4:
c3:80:02:06:6f:62:1b:af:59:8e:fa:92:33:e8:60:bd:3e:5c:
55:57:74:38:0d:47:99:d7:49:0b:ef:cb:ec:03:3f:e4:df:e7:
2a:6c:2e:be:85:da:2e:89:5d:bb:85:5c:1e:a8:fd:15:f0:b2:
43:aa:80:98:ca:6f:d6:34:6c:f8:90:4a:38:da:c1:1a:68:ea:
6b:5e:64:bd:4d:75:21:10:7a:21:89:61:50:d4:83:31:e8:56:
d7:5c:3b:e0:01:5d:e5:74:d2:af:a8:5b:d3:17:88:f3:0d:b1:
56:0c:de:0c:87:75:54:4d:23:ea:19:42:7d:18:45:27:f2:8d:
e0:25:ed:50:87:7a:76:00:a7:9b:cc:ab:1e:fd:68:6f:bc:8c:
e3:b2:cf:9e:4c:5f:b8:33:64:9f:35:5d:02:16:67:c6:38:18:
8d:82:1f:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:54 2023 by rpki-client on console-ams.rpki-client.org