Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/hNnsT0N_Nhl8NXiHzoR6Sq3-ueM.roa
File: hNnsT0N_Nhl8NXiHzoR6Sq3-ueM.roa (raw, json)
Hash identifier: F95Qdd8vmD3q+XaQyXFsu+iUK8iy4/dFdN6L2cUsJ3s=
Subject key identifier: 84:D9:EC:4F:43:7F:36:19:7C:35:78:87:CE:84:7A:4A:AD:FE:B9:E3
Certificate issuer: /CN=d5637692ff5c45486d1053b149dc1420026cd733
Certificate serial: 01853F00E813786C07512D07F6C7E72245DC
Authority key identifier: D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/hNnsT0N_Nhl8NXiHzoR6Sq3-ueM.roa
Signing time: Fri 23 Dec 2022 12:41:42 +0000
ROA not before: Fri 23 Dec 2022 12:41:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33387
IP address blocks: 80.246.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:3f:00:e8:13:78:6c:07:51:2d:07:f6:c7:e7:22:45:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5637692ff5c45486d1053b149dc1420026cd733
Validity
Not Before: Dec 23 12:41:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=84d9ec4f437f36197c357887ce847a4aadfeb9e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:28:bd:6d:96:91:f3:15:29:f7:43:4f:6d:8a:
47:7a:81:6e:48:d4:e0:05:75:25:00:61:bb:76:7c:
0d:ce:87:47:6c:e1:f1:a2:a5:f0:e3:49:45:2c:10:
27:6a:d4:9b:ee:24:99:c8:a8:ff:9d:60:1c:17:2e:
85:a8:66:33:26:0d:fd:69:33:23:99:5f:07:2b:f6:
8a:4d:4f:47:dc:84:4f:82:25:6b:8c:36:04:1c:7d:
ff:9f:8d:3a:9c:43:f3:a9:d7:bd:8a:22:21:6d:3d:
3d:9c:28:22:09:ca:0b:76:1e:7a:93:af:55:7e:6b:
81:df:75:a6:fe:7b:4a:5f:56:bd:33:58:b4:9e:de:
52:61:73:f7:c4:ee:c4:f4:f6:04:3e:cb:a5:70:8f:
fc:67:6a:68:84:ca:29:41:29:db:2c:aa:d1:b8:25:
75:a0:62:81:bc:02:34:6a:7f:3a:f0:bc:b4:e2:72:
77:2f:49:4b:1f:0b:67:9c:89:ca:2b:ed:05:d8:2b:
a0:1f:cd:7d:d1:93:82:e5:0b:3c:4d:5c:43:96:a4:
d1:0f:74:a9:e4:27:1b:75:51:f4:52:19:97:14:5f:
65:d5:b3:58:5a:bb:08:57:06:02:b1:d3:3f:0d:f5:
35:bd:6c:50:4f:d4:77:5e:f6:2a:67:bf:c1:35:5c:
34:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:D9:EC:4F:43:7F:36:19:7C:35:78:87:CE:84:7A:4A:AD:FE:B9:E3
X509v3 Authority Key Identifier:
keyid:D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/hNnsT0N_Nhl8NXiHzoR6Sq3-ueM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.246.228.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:60:f6:ae:85:37:96:32:7c:be:d1:a3:5d:75:9e:3d:b7:94:
50:7e:94:28:f3:9f:ad:87:e3:14:34:75:e0:ad:4c:9b:cf:fe:
ad:27:67:f4:b4:69:4d:a3:54:27:8a:e6:d7:4f:6a:12:a0:8b:
c4:23:e2:45:f8:53:5f:c5:27:7d:cf:1f:37:4b:da:34:8f:6e:
80:83:9a:5b:0a:75:61:b9:ad:f6:93:3a:94:df:6f:b3:6d:79:
84:ee:b8:d9:07:bc:34:f3:a1:88:5c:fb:46:31:42:15:aa:d5:
f9:e1:59:3f:a0:f3:5b:5f:bd:90:13:52:d4:fe:bc:3d:4d:28:
7f:d9:5c:8d:cf:41:ce:96:88:43:97:0c:42:15:16:fb:94:fc:
90:44:fa:01:07:a8:cc:38:66:2d:0f:5b:1e:82:46:5d:5d:d6:
b8:90:27:cf:ac:45:d6:4b:b7:4c:e1:19:e7:fd:7e:ba:b3:1a:
a3:ea:a3:ce:31:f6:25:56:81:9a:0b:92:d0:aa:9a:f5:25:00:
dd:52:6c:e1:21:57:2f:1c:9d:ad:e7:38:79:01:e1:6c:24:b6:
44:2a:69:fa:61:45:2d:9b:63:b2:bc:f8:26:28:74:f1:bf:c8:
0e:16:fd:98:6d:7e:7f:8e:ca:e6:04:1d:61:a9:cb:30:96:05:
ac:06:63:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:13 2023 by rpki-client on console-fra.rpki-client.org