Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/hBteFUEm6YMRAuS6kR9bOYqESoM.roa
File: hBteFUEm6YMRAuS6kR9bOYqESoM.roa (raw, json)
Hash identifier: LrPZBOdntztI6bgxTk0ehCgTgGhdtn8CyXzRJVzoLeE=
Subject key identifier: 84:1B:5E:15:41:26:E9:83:11:02:E4:BA:91:1F:5B:39:8A:84:4A:83
Certificate issuer: /CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Certificate serial: 01823A9E8447F3F5A526A70ED8683570E2DC
Authority key identifier: B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/hBteFUEm6YMRAuS6kR9bOYqESoM.roa
Signing time: Tue 26 Jul 2022 13:07:23 +0000
ROA not before: Tue 26 Jul 2022 13:07:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202425
IP address blocks: 92.63.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:3a:9e:84:47:f3:f5:a5:26:a7:0e:d8:68:35:70:e2:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Validity
Not Before: Jul 26 13:07:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=841b5e154126e9831102e4ba911f5b398a844a83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:86:d8:b0:2b:6b:fa:9e:88:e7:11:4c:35:d6:
a6:0c:53:0e:a8:29:60:72:d6:c9:08:b5:92:bd:5a:
c9:13:57:22:99:7b:d1:37:7b:cb:a8:38:7e:16:a3:
70:f1:f5:e9:7c:24:60:17:ab:80:e9:96:60:c2:86:
ba:bb:cb:4d:bc:08:ef:dc:cb:d4:b4:b6:d8:d1:fa:
b1:80:dc:22:34:fd:c0:b5:c6:30:f5:46:50:ea:d7:
54:2a:9e:81:a6:01:93:ea:a8:a4:5f:d1:42:99:27:
eb:72:1d:40:2d:22:a4:82:23:0a:0b:e2:8b:4b:fa:
a3:a1:83:67:dc:56:18:23:0e:09:92:d4:a3:da:3e:
8a:80:b2:16:fd:a5:4c:ac:0a:b4:0c:92:9e:33:08:
69:a7:63:a9:a5:55:60:3d:ec:ff:04:d5:e7:4c:90:
5e:63:6d:d4:84:95:ab:39:58:db:4b:15:75:d3:8e:
4d:ff:d1:a5:0a:2e:ca:6a:48:f0:05:80:50:db:a2:
bb:07:a6:0c:f7:96:33:f2:59:e1:e7:03:76:9a:c2:
0e:36:ff:2a:46:e8:30:6d:6a:5b:9a:8d:8d:47:96:
12:35:5d:f0:90:80:d8:85:45:c4:4c:72:13:a0:b6:
c2:13:da:f5:99:0c:04:75:35:37:f8:0b:f8:c0:a5:
42:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:1B:5E:15:41:26:E9:83:11:02:E4:BA:91:1F:5B:39:8A:84:4A:83
X509v3 Authority Key Identifier:
keyid:B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/hBteFUEm6YMRAuS6kR9bOYqESoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sa8S9cp1ySKkql2stJwEqTI39O0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.63.196.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:46:63:53:31:ac:42:48:6f:81:43:ea:ac:21:3f:5a:4f:0f:
79:a3:1f:6f:5a:36:a2:08:d2:3c:2d:6b:a4:38:86:63:26:ee:
8f:f4:c3:36:92:c2:0e:a0:23:3a:7c:d2:e2:ba:11:cf:6a:0e:
91:0b:9a:bf:ac:ea:06:cc:fe:72:45:43:ce:ab:74:63:b0:ee:
fd:32:d9:cb:04:4b:cb:32:b9:61:95:dd:0b:28:c4:dc:73:1e:
87:3e:f3:aa:f9:c3:87:9e:b6:cc:b0:fb:e8:94:c3:4a:cd:db:
c4:d4:04:a0:d7:ca:22:cc:67:17:27:df:6c:4e:91:09:8f:d1:
8e:b9:cc:6c:20:9e:57:91:d5:79:e1:02:b6:cf:27:84:6b:31:
df:47:74:cc:f6:97:bc:46:35:6d:a5:18:ea:54:82:5a:e7:2d:
fb:bc:89:e8:8e:c1:d6:dc:83:1d:ae:17:de:03:09:89:99:fb:
8e:92:d5:b7:44:38:54:8a:df:66:4c:7a:5c:e9:88:27:36:2b:
b5:41:6a:56:9a:94:6e:4d:37:35:34:65:f6:ae:bd:cc:b3:42:
37:67:5f:29:37:99:ee:3c:9e:4f:48:ae:c3:4e:2e:a2:26:56:
ac:ba:77:36:df:dc:23:cd:c7:7e:6a:41:dd:69:0a:8a:73:29:
0f:77:55:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:09 2023 by rpki-client on console-fra.rpki-client.org