Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/9d1c8f-c634-46aa-aff8-7c2b21ff6ceb/1/HJ5jHvZWz4qFtXp90cfH7d7icz8.roa
File: HJ5jHvZWz4qFtXp90cfH7d7icz8.roa (raw, json)
Hash identifier: Ec4ODlnay+h2v92BonMnHI5nKoN5oTX8ECpk6TejUxE=
Subject key identifier: 1C:9E:63:1E:F6:56:CF:8A:85:B5:7A:7D:D1:C7:C7:ED:DE:E2:73:3F
Certificate issuer: /CN=6ab75929e735ce65a66bd82dca8b651d9856cd2c
Certificate serial: 030ABAA2
Authority key identifier: 6A:B7:59:29:E7:35:CE:65:A6:6B:D8:2D:CA:8B:65:1D:98:56:CD:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ardZKec1zmWma9gtyotlHZhWzSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/9d1c8f-c634-46aa-aff8-7c2b21ff6ceb/1/HJ5jHvZWz4qFtXp90cfH7d7icz8.roa
Signing time: Sat 01 Jan 2022 12:56:27 +0000
ROA not before: Sat 01 Jan 2022 12:56:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 95.156.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51034786 (0x30abaa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ab75929e735ce65a66bd82dca8b651d9856cd2c
Validity
Not Before: Jan 1 12:56:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c9e631ef656cf8a85b57a7dd1c7c7eddee2733f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:57:ac:e0:8a:9c:66:9e:34:61:21:ae:17:32:
d5:de:aa:4c:a9:ed:e4:e9:01:83:1d:49:b1:90:f8:
2d:7f:da:a2:ae:33:9c:59:52:ae:7a:39:3b:2b:95:
15:55:13:95:b8:8c:d8:91:24:3c:ba:38:23:dd:14:
40:d6:2c:60:13:2d:0a:19:0a:27:15:3c:e9:c7:b6:
c2:5c:93:38:a2:53:85:eb:84:20:7f:00:0e:ab:cf:
e2:42:7a:59:11:06:ca:14:57:17:0c:f5:f4:26:9c:
25:7d:18:6b:49:4c:65:97:fc:31:8a:df:45:b8:eb:
a7:1c:0a:e1:b5:b5:27:97:b4:31:90:5f:51:ff:40:
91:c2:83:85:47:ed:ca:e0:65:e2:98:70:35:dc:90:
95:1d:06:97:69:1a:e1:e3:e8:b5:9e:cd:be:8a:4e:
bd:b0:c2:9d:b0:73:13:bb:77:49:8b:f7:1a:12:88:
d6:9e:e7:77:dd:76:18:a1:6a:15:d0:76:b9:c2:dd:
5c:bf:69:37:f3:37:1d:1e:68:82:de:a1:1e:f2:ea:
e9:bd:88:f9:ed:88:c7:56:0f:5e:f3:ff:55:2a:32:
f5:52:9f:5e:27:7c:a2:2d:d7:3f:33:fe:b7:dc:88:
60:e0:80:d6:8c:c9:57:a3:78:e5:50:b9:48:5a:20:
e3:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:9E:63:1E:F6:56:CF:8A:85:B5:7A:7D:D1:C7:C7:ED:DE:E2:73:3F
X509v3 Authority Key Identifier:
keyid:6A:B7:59:29:E7:35:CE:65:A6:6B:D8:2D:CA:8B:65:1D:98:56:CD:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ardZKec1zmWma9gtyotlHZhWzSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/9d1c8f-c634-46aa-aff8-7c2b21ff6ceb/1/HJ5jHvZWz4qFtXp90cfH7d7icz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/9d1c8f-c634-46aa-aff8-7c2b21ff6ceb/1/ardZKec1zmWma9gtyotlHZhWzSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.156.251.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:06:f2:33:34:1f:bb:af:05:e6:cd:7f:b4:25:fe:66:c3:8a:
ec:36:cb:28:fd:69:b1:71:01:88:21:85:9a:0e:6b:a7:21:cb:
d8:17:5a:07:38:41:e4:58:97:c4:ae:de:6e:d1:12:8a:0e:93:
86:eb:e2:ab:d0:00:43:fd:77:8c:15:6f:76:5c:b5:c1:73:8a:
df:11:1b:85:a8:38:24:ad:1d:79:26:64:bf:1c:a9:b5:7e:d7:
fa:18:b4:2d:83:b2:fc:a1:90:b0:64:a7:7b:40:5a:9a:23:f6:
23:a3:09:2e:01:d9:a1:a0:e4:40:7f:92:c0:8b:a9:6e:3f:a0:
16:53:1d:19:49:0d:22:90:cf:30:0c:f9:6a:29:bd:79:7d:a9:
5e:30:1c:5d:3d:95:62:2e:f7:39:55:2b:5d:3d:1a:c0:9e:5c:
19:ec:d8:a5:d7:e5:34:89:75:7a:92:36:1e:aa:bd:b5:ec:9d:
4d:dc:1b:9b:2f:f1:f1:f7:3e:d4:cd:e5:d0:05:1c:4c:89:c5:
9c:ea:10:90:cf:b6:50:82:37:64:1d:e4:da:bb:55:bd:8b:90:
b7:ac:10:b2:10:bf:cf:6e:87:c0:fa:4a:2f:e1:48:33:92:92:
f9:75:b4:f0:8d:f2:46:41:f7:15:8d:71:aa:5c:ee:a6:3b:08:
79:11:87:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:45 2023 by rpki-client on console-ams.rpki-client.org