Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/HsW-Z08aH7I8lM546SKnjJLUJHo.roa
File: HsW-Z08aH7I8lM546SKnjJLUJHo.roa (raw, json)
Hash identifier: s/3bhRN/iAhbhXO0cK0/43qJglGVgITcpkXfFT8mKTg=
Subject key identifier: 1E:C5:BE:67:4F:1A:1F:B2:3C:94:CE:78:E9:22:A7:8C:92:D4:24:7A
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 01821A64B6A149E9372D913DE5394544D7F2
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/HsW-Z08aH7I8lM546SKnjJLUJHo.roa
Signing time: Wed 20 Jul 2022 06:56:24 +0000
ROA not before: Wed 20 Jul 2022 06:56:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39885
IP address blocks: 212.183.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:64:b6:a1:49:e9:37:2d:91:3d:e5:39:45:44:d7:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jul 20 06:56:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ec5be674f1a1fb23c94ce78e922a78c92d4247a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:d3:d2:bd:87:9f:2a:f7:7e:9b:4e:cf:de:7d:
2b:9c:43:8f:8e:3a:3f:4b:ff:94:3d:0e:fe:a5:65:
f4:47:63:e2:e8:35:6d:06:bc:6f:dc:16:75:5f:6f:
e1:2f:05:68:ca:9a:b6:31:e7:6b:ca:4e:0f:40:f4:
44:f2:ca:e4:81:b8:4c:47:a8:b4:e6:c4:e8:4e:25:
45:7b:a0:34:61:a5:7b:4b:4b:4a:4d:cc:a5:dc:92:
eb:b3:a4:44:f4:f9:f1:a0:46:6f:72:90:72:e2:47:
85:03:fb:69:c4:7c:e3:28:7c:a2:09:a8:f5:c8:13:
f2:4c:c2:f6:4a:ae:56:8a:d1:df:84:80:79:cd:85:
61:e2:ce:67:5a:82:50:9a:c3:71:22:b9:56:00:14:
54:f6:35:2d:63:f7:97:7c:ae:b0:fd:5d:7d:46:c4:
c8:61:18:a9:25:89:60:0f:b4:ce:fa:eb:19:a0:1e:
e7:96:a3:ac:cc:cb:89:00:c8:6d:70:49:15:43:4e:
92:71:66:68:4f:4d:ab:ef:54:6d:d4:19:8a:d1:da:
51:70:93:05:dd:94:28:24:3f:a3:c5:48:46:6b:f6:
29:71:4f:60:8d:27:99:d0:09:b8:f3:73:0c:2a:18:
fc:f4:5b:0c:a8:0e:6e:8e:14:09:dc:d0:e3:d6:53:
f8:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:C5:BE:67:4F:1A:1F:B2:3C:94:CE:78:E9:22:A7:8C:92:D4:24:7A
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/HsW-Z08aH7I8lM546SKnjJLUJHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.183.23.0/24
Signature Algorithm: sha256WithRSAEncryption
98:16:54:ed:c5:c8:25:6c:66:4c:15:76:6c:10:84:82:f4:47:
95:9b:0d:33:3a:4d:d5:4a:8e:f1:91:40:68:a9:08:4d:ac:2f:
da:41:03:c4:55:c1:c2:ba:f5:8b:2c:1e:9d:d0:93:70:36:eb:
3e:b5:30:ab:63:be:85:91:8c:d4:d6:a9:08:b6:d9:cb:39:5f:
4e:9a:55:61:83:b3:cd:c7:2c:d7:ca:3e:38:3d:31:2a:c6:2a:
5f:29:07:af:d6:ac:2c:cf:7e:f5:92:4e:4a:60:d6:7f:53:5d:
77:85:78:51:c9:36:68:cd:bc:2a:a9:f1:6a:bd:a3:7b:55:56:
74:6b:93:88:2d:b1:4a:a8:30:7c:4b:d3:66:f6:56:a1:0f:4c:
71:9e:0b:e6:09:58:88:cb:24:92:1e:09:db:a1:86:9c:a7:61:
3b:a5:9a:5f:0c:32:31:b9:43:b5:35:08:4e:98:09:81:fb:dd:
9d:f5:99:1a:3a:a3:10:eb:45:b9:4c:22:8d:9f:0b:ce:1a:7f:
7a:20:39:38:52:10:f8:05:51:6a:09:68:40:ad:d8:98:d2:95:
12:97:51:54:46:de:46:e8:51:2e:34:c5:aa:81:f3:21:0f:6d:
2f:90:76:b9:48:cb:a9:6e:b0:3b:e3:01:2a:c4:58:9c:04:a5:
5a:6c:6d:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:16 2024 by rpki-client on console-ams.rpki-client.org