Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/c71464-ee2b-468d-84cb-56cfc60a1f1d/1/HQxDEJRWZ8kMK9HK1NAtJPh-5NU.roa
File: HQxDEJRWZ8kMK9HK1NAtJPh-5NU.roa (raw, json)
Hash identifier: T2AhrUulKikxqiT+Pn3IIYFjSgoD+wgxKH6eqJh/vg0=
Subject key identifier: 1D:0C:43:10:94:56:67:C9:0C:2B:D1:CA:D4:D0:2D:24:F8:7E:E4:D5
Certificate issuer: /CN=1338c2462a7593f6a5ad982a3c81241959a68911
Certificate serial: 018326EC5709DD72FCCC3034E8B8DE0C5B10
Authority key identifier: 13:38:C2:46:2A:75:93:F6:A5:AD:98:2A:3C:81:24:19:59:A6:89:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EzjCRip1k_alrZgqPIEkGVmmiRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/c71464-ee2b-468d-84cb-56cfc60a1f1d/1/HQxDEJRWZ8kMK9HK1NAtJPh-5NU.roa
Signing time: Sat 10 Sep 2022 10:22:46 +0000
ROA not before: Sat 10 Sep 2022 10:22:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39855
IP address blocks: 91.212.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:26:ec:57:09:dd:72:fc:cc:30:34:e8:b8:de:0c:5b:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1338c2462a7593f6a5ad982a3c81241959a68911
Validity
Not Before: Sep 10 10:22:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d0c4310945667c90c2bd1cad4d02d24f87ee4d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:93:35:ba:83:c7:84:1a:68:3a:1d:7a:00:f3:
09:ee:8a:6e:82:c5:a0:a9:bb:67:c5:58:df:eb:67:
ef:ce:d7:44:9c:68:41:2d:83:94:9c:40:ad:54:fb:
20:17:a4:03:f9:0d:7d:68:78:01:f8:10:2e:f9:fc:
6d:fe:fa:46:31:e7:95:82:95:7e:3c:36:33:93:dd:
c0:05:49:5c:66:0c:06:3d:ef:a9:71:2a:41:69:53:
0a:6f:0b:05:2c:ef:6a:47:a7:ea:e7:ec:98:02:8a:
4a:12:fe:ef:91:5f:04:d6:a2:8b:7c:1a:d4:cb:f9:
e6:38:4f:29:ec:6f:9c:80:32:fd:3e:5d:53:17:1b:
1e:0b:5a:a0:b9:3f:81:48:6b:5e:d6:a1:e7:06:01:
22:03:d4:66:ae:4b:89:4e:93:56:4e:8e:b4:2b:d6:
ac:81:45:11:5d:5b:2c:6d:b4:fd:c8:82:da:b2:be:
20:48:48:9b:4d:f7:5f:fb:a1:e5:1e:dd:36:f1:dc:
44:18:7e:51:82:f6:06:e0:96:db:b0:2e:27:2d:e2:
d9:c0:05:67:88:8b:3d:db:fc:ed:12:90:e0:4b:f0:
fc:52:85:0f:3a:39:42:b5:8e:4c:70:30:51:eb:50:
24:d2:91:37:01:71:f3:6a:74:13:96:ad:33:2d:4f:
cf:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:0C:43:10:94:56:67:C9:0C:2B:D1:CA:D4:D0:2D:24:F8:7E:E4:D5
X509v3 Authority Key Identifier:
keyid:13:38:C2:46:2A:75:93:F6:A5:AD:98:2A:3C:81:24:19:59:A6:89:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EzjCRip1k_alrZgqPIEkGVmmiRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/c71464-ee2b-468d-84cb-56cfc60a1f1d/1/HQxDEJRWZ8kMK9HK1NAtJPh-5NU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/c71464-ee2b-468d-84cb-56cfc60a1f1d/1/EzjCRip1k_alrZgqPIEkGVmmiRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.122.0/24
Signature Algorithm: sha256WithRSAEncryption
75:49:91:37:54:05:d4:82:f4:57:4d:cf:e6:cd:1c:c5:8f:fa:
16:d2:24:7e:3c:13:74:03:c6:18:c6:e8:2e:c3:af:3e:61:aa:
44:e3:66:bd:26:bf:8c:2c:ab:ef:d7:72:35:b4:18:46:32:eb:
50:22:c8:b1:50:94:4a:fa:c3:21:fa:19:9d:45:c0:f2:06:5b:
49:7e:dc:3c:0b:2f:b5:70:b3:d8:b6:2a:b6:c3:09:ab:f3:aa:
a8:7d:23:cd:9f:4b:2c:82:97:d8:fd:e5:8a:96:1a:58:36:d4:
7a:a3:57:2a:f8:da:9f:59:a2:58:7d:7e:e2:fc:07:cb:bc:bd:
99:f3:6d:0f:8a:f5:a8:f2:cc:6b:1f:7a:63:ce:5f:6e:79:03:
dc:80:ac:7b:cd:7a:ed:6e:28:63:20:ca:29:3d:eb:7b:a0:8b:
11:0a:a2:07:28:a1:7c:11:55:86:56:ce:1e:0e:50:9f:0d:2b:
04:2b:d3:49:21:2b:12:40:da:7a:9a:a7:df:80:cb:c5:08:09:
ec:85:42:6e:f1:32:64:ca:dd:c5:58:0d:85:65:db:1c:75:3d:
5a:29:d6:df:c0:d1:e3:86:6d:19:2b:f5:9e:d3:d7:9f:de:05:
7b:7a:4f:85:f5:ee:d2:75:f3:4c:76:76:b1:92:d0:f8:a2:37:
27:ec:b2:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:27 2023 by rpki-client on console-fra.rpki-client.org