Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/hz-oRD8n76Al5_YNiitoJTGCoxU.roa
File: hz-oRD8n76Al5_YNiitoJTGCoxU.roa (raw, json)
Hash identifier: QvHsrsR8EONM6BRn2/XduSs5qnfPmZLqbSMf6FBdM2Q=
Subject key identifier: 87:3F:A8:44:3F:27:EF:A0:25:E7:F6:0D:8A:2B:68:25:31:82:A3:15
Certificate issuer: /CN=133897fc7a963f14215d58e1824144ab19fd5810
Certificate serial: 17E8946B
Authority key identifier: 13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/hz-oRD8n76Al5_YNiitoJTGCoxU.roa
Signing time: Sat 01 Jan 2022 00:54:43 +0000
ROA not before: Sat 01 Jan 2022 00:54:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211527
IP address blocks: 213.175.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401118315 (0x17e8946b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133897fc7a963f14215d58e1824144ab19fd5810
Validity
Not Before: Jan 1 00:54:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=873fa8443f27efa025e7f60d8a2b68253182a315
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f1:ab:e7:1a:81:da:17:6c:f4:be:e7:8a:70:
65:f4:70:0e:75:19:eb:b3:45:da:e5:7c:e2:8a:1a:
3d:8f:93:00:50:a4:e1:d4:e4:f5:0a:52:db:24:37:
13:6c:fc:51:66:bb:fa:b1:4f:90:70:fc:71:ae:c2:
34:cd:b8:46:96:9f:5c:b0:d6:7f:83:cb:06:18:37:
da:69:1c:f1:3c:37:b4:42:e9:9f:2e:46:c1:cb:cd:
96:f2:6f:a1:3b:e6:7c:3b:e8:0c:9c:70:6d:d9:35:
23:eb:65:0a:5f:5a:77:35:6a:7c:f1:53:87:d2:81:
ed:90:95:ca:00:f2:c1:65:68:6c:f4:9a:47:ed:73:
93:38:8a:50:62:71:28:71:e5:d8:56:78:89:4f:00:
b5:e5:14:29:65:ee:87:6b:f4:cb:04:84:fc:3c:71:
a4:0b:cb:87:8a:3e:fe:11:f8:11:70:f5:7a:2d:c1:
2d:81:99:4a:1d:d3:0f:68:11:a1:96:88:e4:29:32:
cf:c9:05:fb:c3:c4:86:5e:96:16:aa:51:78:11:b4:
d7:ca:9f:ba:8c:39:26:01:0b:f5:fc:ee:df:da:ab:
b9:39:d7:7b:d1:13:6c:5b:e3:0c:99:0c:ef:12:05:
af:b1:1f:0e:7f:d2:b6:dc:7b:cc:6f:06:ec:87:4b:
02:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:3F:A8:44:3F:27:EF:A0:25:E7:F6:0D:8A:2B:68:25:31:82:A3:15
X509v3 Authority Key Identifier:
keyid:13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/hz-oRD8n76Al5_YNiitoJTGCoxU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/EziX_HqWPxQhXVjhgkFEqxn9WBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.175.68.0/24
Signature Algorithm: sha256WithRSAEncryption
68:de:5f:a9:11:ec:99:bc:a3:02:bb:e0:b6:82:f2:48:71:4d:
5c:4d:9b:2d:de:9e:0c:8a:01:32:9b:b3:04:78:5b:c5:59:a7:
49:4e:b6:89:56:be:cc:5b:8d:97:27:f1:e6:17:d8:83:ab:16:
1a:14:94:98:3d:f7:4b:29:de:84:fc:ff:e3:80:2b:59:f4:34:
a3:f8:e6:f9:8a:11:96:9a:f2:b5:a5:a2:01:52:88:ff:51:1c:
48:93:93:d2:17:4f:5a:4b:7b:db:80:5a:ed:1a:20:9e:26:aa:
19:00:09:24:7e:c9:34:aa:15:ab:6f:d6:10:86:e2:e5:79:d8:
95:b0:ac:59:92:c9:05:61:f3:2d:2f:ef:f5:3d:d9:1e:f3:7a:
40:74:d3:24:4f:43:54:8d:79:7f:e6:93:be:93:ac:d1:c5:9e:
f3:58:30:44:86:d0:ff:95:29:89:b3:e2:e2:2b:cb:e7:1f:ab:
db:ea:69:c1:d4:04:99:af:a2:52:f3:64:e3:ce:bd:23:de:c1:
c9:17:eb:43:c1:8a:c9:eb:0d:3e:19:58:f6:da:8c:70:c1:2a:
32:62:7e:d0:68:05:b2:29:d3:be:dc:7d:cc:88:3b:43:88:4e:
6e:7f:e0:30:8b:fc:58:6d:c7:e8:53:54:71:09:88:cf:78:1b:
66:c5:e1:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:06 2023 by rpki-client on console-fra.rpki-client.org