Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/HqagGfxS0VHTbBFPTUwQw4p-iEo.roa
File: HqagGfxS0VHTbBFPTUwQw4p-iEo.roa (raw, json)
Hash identifier: Ldt99UKdxr4pbbNfj0cR+j0TSzhmKUCq/n0iha38DSg=
Subject key identifier: 1E:A6:A0:19:FC:52:D1:51:D3:6C:11:4F:4D:4C:10:C3:8A:7E:88:4A
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0181F7C45C77F8ADCBC097565568875DFE9E
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/HqagGfxS0VHTbBFPTUwQw4p-iEo.roa
Signing time: Wed 13 Jul 2022 13:34:09 +0000
ROA not before: Wed 13 Jul 2022 13:34:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59432
IP address blocks: 91.186.208.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f7:c4:5c:77:f8:ad:cb:c0:97:56:55:68:87:5d:fe:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jul 13 13:34:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ea6a019fc52d151d36c114f4d4c10c38a7e884a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:4a:95:91:4b:70:66:a7:0f:62:56:b7:b4:0b:
55:f1:9f:d1:9e:a8:00:9c:55:33:73:33:84:19:27:
51:0e:9f:5c:45:fd:48:ad:6a:6e:0a:b3:f2:59:3f:
f3:04:32:fe:23:d6:5c:c0:4d:a0:db:2d:aa:b3:33:
ad:98:aa:de:6e:01:1c:fd:10:da:8e:00:97:22:1d:
fc:b3:86:a4:20:f7:6f:b9:08:42:9b:cb:a8:a6:2d:
ff:34:ea:bc:a3:e1:62:33:2d:c6:02:2c:75:56:3c:
c0:d7:1f:a7:ff:3b:8d:d6:33:08:fb:46:60:c7:85:
f2:18:32:59:54:b2:86:7e:b5:b0:d9:9a:92:83:9c:
45:34:36:04:66:ff:1b:e8:f2:6d:4d:a8:6f:e9:59:
cd:c0:1a:32:f3:d4:97:ac:bb:02:be:9e:92:35:07:
d8:ad:e9:ad:4c:51:27:0d:5f:f3:51:cb:9f:20:15:
8b:76:2b:ab:43:91:3f:22:23:1a:0b:f4:9f:8c:3f:
6f:89:2d:74:14:8e:ed:7a:60:a3:df:83:e1:84:5d:
59:fb:a6:4e:46:c7:4b:cf:69:6c:b5:fd:ef:fd:ae:
c9:1e:37:ec:aa:84:67:6d:ef:66:3e:a5:82:3e:8c:
4b:25:a8:61:f8:93:6d:25:1d:f1:a2:cb:e4:90:1d:
1f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:A6:A0:19:FC:52:D1:51:D3:6C:11:4F:4D:4C:10:C3:8A:7E:88:4A
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/HqagGfxS0VHTbBFPTUwQw4p-iEo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.208.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:bf:55:25:78:9d:d8:14:8e:e1:e2:08:01:51:46:0d:1e:8d:
51:d8:d4:f3:ce:f8:85:fa:2c:ab:73:77:c9:bc:23:4e:0e:2e:
53:d2:65:8f:4b:2c:25:4b:09:29:f0:8f:cf:44:ce:09:21:d3:
d7:4f:bc:d1:60:7a:14:f8:3a:9b:8f:b4:9e:12:ca:09:da:da:
21:35:a4:fa:f9:7a:15:e2:7c:c1:db:41:cd:5b:2e:87:06:d7:
52:a2:01:21:1e:68:e6:74:24:b4:0f:a6:be:93:c3:4d:a7:ef:
6a:e5:af:e5:82:54:12:be:a2:15:57:3c:e5:03:22:f4:9a:de:
87:9a:99:de:5b:7e:80:7f:cc:99:a1:6f:12:86:6f:9a:93:34:
d4:78:a3:ea:75:e8:39:dc:f2:ca:bb:14:7d:a4:70:1d:15:00:
af:f5:13:08:44:a8:46:40:ed:a6:a4:e6:b5:5f:7c:70:8c:16:
f2:0c:7a:ad:20:e9:0c:3a:ff:3a:59:f6:10:69:84:63:46:27:
dc:f9:fb:67:b9:89:1c:d1:b1:be:17:67:40:98:c8:65:35:b7:
9d:9f:97:48:9c:e8:cc:a6:6e:df:6b:f8:48:15:50:f5:54:ed:
5e:4c:2d:1a:60:cd:4a:13:0e:2c:02:3f:93:d8:bf:3f:0a:af:
e3:dc:f5:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:44 2023 by rpki-client on console-fra.rpki-client.org