Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/HcZsa1cLSwraYiYF0Q-4MGhPxps.roa
File: HcZsa1cLSwraYiYF0Q-4MGhPxps.roa (raw, json)
Hash identifier: Z1vRm7yPOcQnxL+VWoVnGfreUptFQn6zrZg7eLJy+WM=
Subject key identifier: 1D:C6:6C:6B:57:0B:4B:0A:DA:62:26:05:D1:0F:B8:30:68:4F:C6:9B
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 01821A6687BFAB481D2CD647FBC37E734BFE
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/HcZsa1cLSwraYiYF0Q-4MGhPxps.roa
Signing time: Wed 20 Jul 2022 06:58:23 +0000
ROA not before: Wed 20 Jul 2022 06:58:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15910
IP address blocks: 212.183.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:66:87:bf:ab:48:1d:2c:d6:47:fb:c3:7e:73:4b:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jul 20 06:58:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1dc66c6b570b4b0ada622605d10fb830684fc69b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:87:82:7c:0a:b0:11:dc:84:60:fa:39:23:c0:
b6:0e:d7:ad:f5:b7:81:3f:7f:e3:7b:6c:50:26:23:
1c:08:3d:41:52:37:3b:a9:48:fa:f8:ba:96:bf:fc:
c5:b1:88:c9:5d:b8:18:57:05:c9:04:21:3f:c3:53:
20:36:10:62:e9:00:ec:59:7d:fc:26:ca:e7:96:2c:
32:19:7c:45:ed:78:02:3f:b5:1a:31:69:8e:6a:db:
6b:72:ba:eb:09:5a:c4:f1:ae:00:06:4d:25:c0:be:
0e:16:e1:a8:54:5b:c8:1a:ec:fc:60:e4:78:33:4d:
0c:fe:c5:67:e5:9d:3c:ec:89:3d:5b:d8:5a:37:7f:
5b:3b:93:c4:63:77:34:dd:be:8f:3e:ef:88:23:34:
ab:bf:e3:ff:92:76:4d:4e:e8:3c:76:9e:3b:1d:2b:
79:3b:b9:54:b6:39:03:71:20:1b:0e:19:f9:fd:14:
ea:21:1e:c7:f3:11:df:b2:e0:84:84:ba:c3:01:51:
7a:0a:7a:d2:7e:40:ed:7c:fe:38:ef:94:a6:eb:d8:
bd:79:eb:9b:b2:41:0f:65:01:e9:b6:b5:6d:a6:71:
3e:87:8d:00:5b:e8:ff:e5:40:20:4a:1a:d1:be:da:
74:8d:b8:6e:ea:a0:cf:d1:68:16:f0:0e:4e:37:25:
1b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:C6:6C:6B:57:0B:4B:0A:DA:62:26:05:D1:0F:B8:30:68:4F:C6:9B
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/HcZsa1cLSwraYiYF0Q-4MGhPxps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.183.5.0/24
Signature Algorithm: sha256WithRSAEncryption
85:87:f8:29:e5:b0:09:25:4b:1b:87:b6:58:69:a8:95:5d:26:
59:fd:5b:07:34:36:80:af:1d:29:45:f0:f7:9d:93:6d:34:10:
d9:56:67:fe:52:46:de:a1:42:c3:35:0a:92:90:8f:c2:1f:56:
e5:8c:1d:2d:39:c4:9b:04:7a:17:80:9d:39:9d:3b:e5:62:39:
04:11:21:2c:03:74:c2:79:09:6a:9f:b7:3e:d1:9b:8b:75:fa:
e0:38:41:89:06:cf:5a:a8:18:49:fd:ac:ee:17:a4:ff:90:e9:
c8:cb:bd:46:88:2b:7c:b0:d3:e9:7b:02:cb:d3:ca:8b:7c:ce:
41:2c:b2:ca:7b:55:2f:d0:8e:71:2c:eb:28:c2:36:68:c1:bc:
7a:10:1c:b5:52:aa:a6:a3:98:85:75:f0:b4:72:eb:36:7d:f1:
8d:74:72:c0:58:fb:e7:92:6d:69:b3:2b:f2:f7:4d:b0:1e:ea:
78:01:74:5c:7b:17:9d:61:22:57:b6:6e:e9:8f:15:0e:31:e5:
9c:af:b6:94:5a:9d:51:c5:11:d7:0a:5b:58:a4:55:59:be:c4:
6b:bc:f9:63:69:20:15:45:d6:1d:b8:17:b2:89:85:9e:f2:30:
ef:45:40:16:9d:6b:2a:53:1b:4e:39:7d:11:7f:9a:4d:fd:5d:
bf:3f:ba:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:16 2024 by rpki-client on console-ams.rpki-client.org