Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/387720-5784-4e03-813c-13b290750fb9/1/HVHYgYUwyyjlH3Zc1exK9O1Nvro.roa
File: HVHYgYUwyyjlH3Zc1exK9O1Nvro.roa (raw, json)
Hash identifier: Do/mZi/UenlpZb1tcJSKF67OV/9/lrr9DvLvL5dMbDg=
Subject key identifier: 1D:51:D8:81:85:30:CB:28:E5:1F:76:5C:D5:EC:4A:F4:ED:4D:BE:BA
Certificate issuer: /CN=a5e0b94f0b4e4c846ef9cf27cdc88110876b1cf3
Certificate serial: 182620FF
Authority key identifier: A5:E0:B9:4F:0B:4E:4C:84:6E:F9:CF:27:CD:C8:81:10:87:6B:1C:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/peC5TwtOTIRu-c8nzciBEIdrHPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/387720-5784-4e03-813c-13b290750fb9/1/HVHYgYUwyyjlH3Zc1exK9O1Nvro.roa
Signing time: Sat 01 Jan 2022 14:54:58 +0000
ROA not before: Sat 01 Jan 2022 14:54:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30781
IP address blocks: 194.117.244.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 405151999 (0x182620ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5e0b94f0b4e4c846ef9cf27cdc88110876b1cf3
Validity
Not Before: Jan 1 14:54:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d51d8818530cb28e51f765cd5ec4af4ed4dbeba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:63:86:4c:23:34:20:43:9d:7f:a1:02:c4:88:
e0:95:e0:3a:75:4c:2e:f6:60:7b:f6:fe:4a:51:45:
87:72:3c:44:69:39:21:83:7a:9e:67:1c:3e:04:f5:
79:c3:5f:a3:10:aa:44:6c:b2:b7:4b:5e:0c:52:c9:
2a:90:5d:37:b2:17:0a:bd:7a:bf:0b:72:e2:a6:0d:
f8:31:e9:18:08:f4:52:6e:94:86:c8:42:69:3f:0f:
1f:c9:14:e1:45:5d:58:0e:f8:b7:c6:6c:50:9b:66:
6c:1e:96:22:f9:b9:59:7b:96:09:b7:ca:cf:aa:de:
f3:e4:57:92:0b:b0:41:97:b0:3d:16:04:60:d0:70:
0f:fe:1e:19:e7:48:8b:15:76:5d:48:7b:a3:fd:3a:
23:1d:26:55:a5:6d:30:57:df:c8:b6:cd:a9:15:9c:
51:54:b8:b4:9a:c6:d0:7c:fc:8e:2e:33:3a:5f:34:
ed:b4:b1:85:b6:64:52:61:33:44:40:40:30:72:e1:
f0:ad:0c:17:f5:96:50:b2:08:69:58:75:c3:ed:cc:
af:06:c7:1d:64:b2:35:12:b7:57:01:39:cb:63:b7:
2d:02:f6:59:aa:2a:fd:2d:b1:4a:40:1b:b6:2d:4e:
99:94:f2:94:bf:90:70:03:be:98:58:40:9f:d4:67:
93:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:51:D8:81:85:30:CB:28:E5:1F:76:5C:D5:EC:4A:F4:ED:4D:BE:BA
X509v3 Authority Key Identifier:
keyid:A5:E0:B9:4F:0B:4E:4C:84:6E:F9:CF:27:CD:C8:81:10:87:6B:1C:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/peC5TwtOTIRu-c8nzciBEIdrHPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/387720-5784-4e03-813c-13b290750fb9/1/HVHYgYUwyyjlH3Zc1exK9O1Nvro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/387720-5784-4e03-813c-13b290750fb9/1/peC5TwtOTIRu-c8nzciBEIdrHPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.117.244.0/23
Signature Algorithm: sha256WithRSAEncryption
81:ef:ee:c5:dc:3e:c6:89:69:0a:64:55:63:0f:30:b7:0b:31:
00:15:a8:43:38:ef:6a:ec:e7:26:78:8c:d2:5a:df:59:8f:dd:
18:b8:6f:65:c7:f8:48:71:6a:79:e9:a8:8b:d5:cc:be:a9:ab:
9f:9e:b3:8a:a0:3b:67:c4:68:c4:b8:2e:59:18:3d:80:2f:7a:
ff:77:79:0c:b2:5b:05:1f:61:2f:cc:80:e4:3d:40:22:b8:12:
dd:86:5d:04:4f:a8:58:3d:89:3a:e4:3c:82:1d:2e:86:2c:67:
bd:d6:3e:6b:63:5d:3a:8e:73:16:6a:c8:76:5e:3e:ef:ea:9f:
32:53:3d:1a:6f:ec:39:9a:23:39:8e:68:48:5a:f6:4c:78:bc:
ee:84:07:c3:23:fc:9e:2d:5f:50:f9:24:72:32:0e:b9:c0:f5:
b0:95:ed:26:09:3f:26:3e:5a:a4:3f:36:9b:29:23:3d:0f:75:
e2:71:ac:11:c7:59:1c:ab:61:c3:6d:6d:b9:49:75:45:6a:f4:
9d:74:15:f8:4c:40:98:5c:d6:fb:b6:1d:ec:82:c0:dc:7c:77:
6b:0a:a6:6a:8c:40:f9:4a:8e:ae:af:3d:13:97:8e:0b:fe:9d:
cf:89:6c:e4:28:0e:4a:68:eb:f9:ea:d4:54:86:11:82:1e:f3:
d5:04:f2:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:26 2024 by rpki-client on console-fra.rpki-client.org