Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/HiaQwaU49POBy3jPIuXkxfOHAJQ.roa
File: HiaQwaU49POBy3jPIuXkxfOHAJQ.roa (raw, json)
Hash identifier: VyIrtirTfp6bmEqT19lQtEPGalVhnHZ/5BP/QfC0dyM=
Subject key identifier: 1E:26:90:C1:A5:38:F4:F3:81:CB:78:CF:22:E5:E4:C5:F3:87:00:94
Certificate issuer: /CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Certificate serial: 0184BCCBE9D931B4E6219C432CA5343D154F
Authority key identifier: 7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/HiaQwaU49POBy3jPIuXkxfOHAJQ.roa
Signing time: Mon 28 Nov 2022 05:53:11 +0000
ROA not before: Mon 28 Nov 2022 05:53:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 193.228.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:bc:cb:e9:d9:31:b4:e6:21:9c:43:2c:a5:34:3d:15:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Validity
Not Before: Nov 28 05:53:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e2690c1a538f4f381cb78cf22e5e4c5f3870094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e4:6a:49:f1:b6:6e:cd:ae:f4:8f:16:2b:b1:
32:51:8a:52:e1:70:5f:ae:7e:78:b3:23:07:63:0f:
76:ba:1e:09:0a:64:12:50:2f:76:66:0d:65:f1:2b:
95:5a:78:f7:b1:6f:27:1f:d8:06:8b:65:39:57:6f:
77:2a:e2:b9:6c:a1:2d:b1:d7:ce:11:a4:a3:6f:ff:
1b:5e:41:3d:55:d7:bb:16:ff:2e:79:c6:eb:9d:ee:
05:0b:7f:46:8d:d0:fe:8d:40:77:21:39:e5:1d:fd:
43:c1:66:cc:bc:bb:f2:9e:e8:0d:45:be:1c:52:44:
b8:da:bb:27:e2:ab:60:16:96:e7:a5:62:13:44:7b:
b3:64:2f:46:ea:12:e2:9d:33:1b:35:09:8f:93:7c:
95:38:74:6a:1c:63:a1:55:6e:9d:6d:66:91:c9:0f:
22:ce:4d:00:9a:14:92:e0:c5:e6:87:c3:40:f7:d5:
1d:38:a6:0e:08:98:ff:87:77:cd:3b:15:b9:0d:70:
4b:d9:cc:88:69:5d:ea:8b:f3:f0:9a:29:00:be:c0:
04:9a:0f:6f:75:0e:69:31:e2:62:4c:e4:bb:65:33:
18:68:7c:be:e1:53:f9:80:8b:d0:4a:7d:ff:e4:de:
5f:47:1e:b5:f0:28:3a:e8:02:f5:fd:4c:81:da:2c:
c0:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:26:90:C1:A5:38:F4:F3:81:CB:78:CF:22:E5:E4:C5:F3:87:00:94
X509v3 Authority Key Identifier:
keyid:7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/HiaQwaU49POBy3jPIuXkxfOHAJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/fuBTy5y09BweR3Pn8W6Eu1dSIDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.90.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:47:e1:71:19:ac:75:f4:92:01:4e:40:5d:b8:f9:94:b3:98:
9d:a2:2b:eb:11:b9:d8:32:99:ba:75:33:19:77:34:7c:ae:ba:
19:7b:c5:d0:9d:e3:cd:c5:89:96:fd:86:83:d3:ad:f6:cf:27:
52:c7:b8:1b:f5:4a:40:a2:a1:e2:a8:4b:93:97:c6:10:d7:32:
35:57:8f:c6:5e:a7:64:b4:4f:6a:8b:d3:d5:57:38:03:34:79:
14:fe:b9:fb:1a:6f:35:8b:44:54:53:e2:2e:b1:1a:bb:ab:41:
7b:56:69:1f:fa:0d:5a:4f:83:6b:64:c8:bf:f0:14:e0:46:db:
ca:77:4f:72:61:bd:d1:c2:6a:b1:dd:a1:ba:28:d8:1a:4e:7a:
52:c6:f3:dc:69:9d:ca:ca:ce:d7:c0:a4:8e:3a:77:f9:fe:94:
f9:ab:b4:e9:9d:c1:dd:05:64:aa:4b:86:bb:ce:54:62:00:e2:
10:b2:77:1c:02:38:e4:58:36:a5:11:38:cd:b8:32:89:d0:7c:
13:70:01:5a:87:3f:15:6d:57:c5:8c:0c:5c:0b:db:62:43:b0:
9b:2e:25:ae:f3:c6:17:c9:fb:3d:42:af:53:93:af:68:f9:6c:
56:c8:00:02:4e:da:c3:bd:43:d3:02:ed:cf:a2:b4:76:2c:1f:
be:8c:c3:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:35 2023 by rpki-client on console-fra.rpki-client.org