Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/ho-mcA-28DN2PnFPKp0Eu3Vvc7o.roa
File: ho-mcA-28DN2PnFPKp0Eu3Vvc7o.roa (raw, json)
Hash identifier: 9mbHgEgfh9bOPutp9cqy1H8q8NpkJAS0bT8hFJXKjVU=
Subject key identifier: 86:8F:A6:70:0F:B6:F0:33:76:3E:71:4F:2A:9D:04:BB:75:6F:73:BA
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018276D7FF7EEF85AAE3A08E656D2583AE6B
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/ho-mcA-28DN2PnFPKp0Eu3Vvc7o.roa
Signing time: Sun 07 Aug 2022 05:47:23 +0000
ROA not before: Sun 07 Aug 2022 05:47:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 268624
IP address blocks: 203.159.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:76:d7:ff:7e:ef:85:aa:e3:a0:8e:65:6d:25:83:ae:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Aug 7 05:47:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=868fa6700fb6f033763e714f2a9d04bb756f73ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:4f:65:9d:67:6a:02:fc:23:20:fc:33:76:35:
6a:84:4c:df:df:05:6d:32:44:2d:26:7b:d3:2c:c1:
7d:6e:83:a9:9a:78:98:7a:5d:8d:d0:b3:61:37:b2:
0a:c2:aa:1c:f7:5d:3a:b0:37:4f:5b:c5:93:9a:ea:
d0:ad:25:38:f0:52:78:4a:da:f8:65:8f:77:e3:ae:
fa:49:bc:b1:09:bd:fe:ea:21:74:78:08:83:25:c8:
de:4d:f4:7a:25:49:12:70:99:b5:1c:f1:61:f8:e0:
2b:b1:c0:d0:3e:34:84:2a:f9:30:62:ee:8d:53:95:
6d:7c:50:c4:e2:6c:59:00:76:58:67:29:91:7d:31:
dd:28:80:b7:e8:bb:d1:39:11:34:5d:f4:96:c4:3e:
5d:2b:7f:69:25:e3:b4:64:8c:1f:d9:c5:89:88:03:
38:56:90:66:7f:68:4b:5d:50:c6:a4:d8:bc:78:77:
bb:1a:84:19:0e:68:f9:f9:f3:bc:13:1e:69:1d:ab:
d9:bc:5b:b6:ce:37:0a:7f:8f:27:f1:e8:63:84:a2:
94:4b:21:5e:c5:a7:e6:a6:0d:5e:ea:7b:0c:41:0d:
02:49:fe:8d:b9:6c:09:d5:44:b9:ed:c6:5c:e4:69:
80:9d:85:86:35:7b:3a:fc:3a:6b:58:8f:da:c6:f1:
10:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:8F:A6:70:0F:B6:F0:33:76:3E:71:4F:2A:9D:04:BB:75:6F:73:BA
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/ho-mcA-28DN2PnFPKp0Eu3Vvc7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.159.80.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:36:f9:1c:1f:c7:57:bc:9b:56:e8:3b:f3:cb:3f:46:3a:ac:
a8:ad:4e:a5:06:df:e7:a4:fa:c7:17:70:75:a6:03:5b:c9:2a:
6d:22:51:7c:be:6b:34:df:2b:e2:76:77:20:9e:71:3e:b5:7e:
03:b0:94:b6:8f:b9:83:58:f9:a7:88:1e:f7:d8:93:6f:c2:63:
9c:ef:6f:ee:71:b6:f6:cb:5e:22:3c:b1:ea:df:ac:ab:b4:ec:
96:3b:a6:5c:eb:22:6c:51:1d:9e:32:a0:ae:b6:df:0d:15:57:
b0:69:f1:b3:01:3b:11:33:c6:b4:24:39:d1:a5:25:6d:77:23:
7f:4b:90:d6:df:69:cc:dd:a5:c9:8d:6f:7b:a4:b6:08:2c:21:
22:b3:0f:d4:00:2f:57:3f:24:31:af:bd:69:2a:c6:64:d2:83:
a8:29:16:e7:d7:b4:ce:63:68:ed:fc:d4:b9:58:29:94:db:0c:
79:3a:51:a8:6d:6c:9e:cf:c0:66:41:c4:8f:21:d5:a7:96:1e:
63:66:70:97:4c:ab:c5:8d:c6:86:e7:59:98:63:ef:e9:c7:21:
19:b2:41:35:8c:66:e9:80:6a:bc:88:07:e6:e1:27:3f:94:31:
e1:2d:f0:36:f6:7f:74:69:15:fa:98:40:b0:66:89:56:28:ab:
fb:19:ee:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:56 2023 by rpki-client on console-ams.rpki-client.org