Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/fc2815-d293-40af-bf3c-1c8afd19fdbb/1/HN0GbKS_9IesMc-BXN0GUIt-keE.roa
File: HN0GbKS_9IesMc-BXN0GUIt-keE.roa (raw, json)
Hash identifier: By3SiqYhqAiUSaEDWaDn5iklxJ+Rr7JYpVhQDRlV2JU=
Subject key identifier: 1C:DD:06:6C:A4:BF:F4:87:AC:31:CF:81:5C:DD:06:50:8B:7E:91:E1
Certificate issuer: /CN=c6c58ed1af964a7668e44397619ee1985a2491c5
Certificate serial: 37EB3729
Authority key identifier: C6:C5:8E:D1:AF:96:4A:76:68:E4:43:97:61:9E:E1:98:5A:24:91:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xsWO0a-WSnZo5EOXYZ7hmFokkcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/fc2815-d293-40af-bf3c-1c8afd19fdbb/1/HN0GbKS_9IesMc-BXN0GUIt-keE.roa
Signing time: Sat 01 Jan 2022 15:00:46 +0000
ROA not before: Sat 01 Jan 2022 15:00:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24991
IP address blocks: 81.93.204.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 938161961 (0x37eb3729)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6c58ed1af964a7668e44397619ee1985a2491c5
Validity
Not Before: Jan 1 15:00:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1cdd066ca4bff487ac31cf815cdd06508b7e91e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:76:93:15:d1:78:cb:69:ea:3c:ff:a1:1b:d4:
93:ef:b0:4c:2a:28:f2:88:e5:94:d0:bb:57:60:fd:
50:e0:62:77:9d:15:26:a0:df:3b:bc:a0:5d:07:31:
65:52:b7:1b:86:18:88:4d:2b:79:2f:b7:d0:37:34:
e6:3b:79:52:35:3f:ae:bc:47:0f:2e:aa:c5:46:59:
21:ff:fd:f4:46:ce:39:19:05:fe:fd:47:c0:ae:7b:
47:da:31:88:15:99:e1:cf:eb:91:d6:c6:9c:89:d2:
c1:e3:ca:ba:bc:50:39:ca:c8:72:b5:75:ba:56:5a:
d8:51:16:1b:e7:ae:d0:be:40:33:da:f9:19:ac:31:
51:a0:d0:16:f1:26:d1:2b:85:8f:91:f5:bb:c5:a4:
26:de:de:61:c1:9b:c3:f3:33:78:30:8a:66:89:76:
8e:71:e2:ea:69:a2:fc:c7:ae:b5:72:43:6c:32:06:
7c:d3:5b:39:2e:54:bb:97:80:0b:7a:55:6e:99:ba:
59:db:48:a4:39:1f:e2:9c:13:9c:9c:16:b6:84:11:
d0:c2:34:50:d7:36:d7:49:6b:aa:ec:c3:2b:00:94:
24:58:86:d7:8e:00:c9:52:cf:19:df:c8:5f:19:6a:
6f:66:8f:d9:c3:a1:9a:44:d8:05:dc:c4:1c:9a:fb:
73:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:DD:06:6C:A4:BF:F4:87:AC:31:CF:81:5C:DD:06:50:8B:7E:91:E1
X509v3 Authority Key Identifier:
keyid:C6:C5:8E:D1:AF:96:4A:76:68:E4:43:97:61:9E:E1:98:5A:24:91:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xsWO0a-WSnZo5EOXYZ7hmFokkcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/fc2815-d293-40af-bf3c-1c8afd19fdbb/1/HN0GbKS_9IesMc-BXN0GUIt-keE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/fc2815-d293-40af-bf3c-1c8afd19fdbb/1/xsWO0a-WSnZo5EOXYZ7hmFokkcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.93.204.0/22
Signature Algorithm: sha256WithRSAEncryption
57:d4:75:2d:c1:f8:0c:38:85:4c:12:69:a6:b4:e0:a0:31:46:
51:4c:24:62:6e:21:4a:44:d9:54:f1:72:2d:f3:38:f4:e2:16:
81:70:d6:cf:36:24:24:81:4b:9a:9a:03:c6:e5:35:e3:fb:20:
82:9d:37:31:e8:0a:70:3e:03:fa:71:a0:0c:fa:7f:6b:e3:b2:
8d:82:26:f5:3c:de:be:77:21:4d:0b:fb:3e:fc:a5:8e:93:b8:
e3:12:23:8a:21:ba:ed:25:9b:70:14:7a:b1:ca:d4:ab:92:54:
14:f2:13:b7:8d:e7:b1:5d:b2:a7:c5:4c:2e:d4:22:e2:fc:28:
88:28:5b:b9:44:da:f9:38:a8:98:34:59:c4:21:1a:c6:38:63:
68:a4:c3:25:71:81:0a:31:b7:df:39:07:dc:c9:31:b9:d8:56:
87:d1:30:12:ab:30:bc:c7:0e:e9:44:12:09:b4:58:80:27:c2:
e8:92:be:13:62:c2:66:bb:b6:12:ce:ae:ef:c3:2d:54:50:38:
3a:17:5f:ff:b6:90:1d:20:f9:53:0c:f8:02:5a:71:de:9d:73:
56:58:0f:e8:d7:fc:82:5b:1e:7f:ce:f0:38:01:e3:cb:4f:7e:
1f:62:e2:a2:20:6b:c8:6b:6d:ed:98:ea:94:ac:9d:c0:b8:66:
fa:17:61:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:44 2024 by rpki-client on console-ams.rpki-client.org