Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/HOs6uw4ql9PcauPdzD_XVCKU6z4.roa
File: HOs6uw4ql9PcauPdzD_XVCKU6z4.roa (raw, json)
Hash identifier: 2D9lyZRVI60LSzHecjs1UFrr0/Wz8Ba+KBLHcExPgEM=
Subject key identifier: 1C:EB:3A:BB:0E:2A:97:D3:DC:6A:E3:DD:CC:3F:D7:54:22:94:EB:3E
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 03413B03
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/HOs6uw4ql9PcauPdzD_XVCKU6z4.roa
Signing time: Sat 01 Jan 2022 16:04:37 +0000
ROA not before: Sat 01 Jan 2022 16:04:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209019
IP address blocks: 85.209.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54606595 (0x3413b03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ceb3abb0e2a97d3dc6ae3ddcc3fd7542294eb3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a6:33:ed:35:48:1a:c7:33:32:a6:12:e0:cd:
c6:ac:b9:6d:b0:22:b0:28:fc:0e:d6:d4:91:7e:a6:
db:03:2d:ed:57:1c:70:25:10:25:8f:0d:48:d5:24:
82:8b:cb:40:aa:47:53:72:0b:46:e9:29:b9:8d:46:
59:c7:5d:33:55:28:bf:26:98:23:18:a8:12:f5:26:
f4:38:74:c1:5c:3e:9f:84:e2:a9:c7:d4:41:0b:45:
93:78:5f:2e:2f:5a:74:14:f1:0a:94:4c:30:f8:bc:
f5:13:29:1b:f9:bc:4f:9b:54:d3:0c:29:74:0a:ca:
98:cb:75:8d:db:d7:61:b5:16:6b:db:7d:c8:b8:7b:
3b:74:80:31:ea:bb:3e:4b:30:0b:f0:b8:0d:c1:4b:
6d:c7:2e:41:2b:24:c4:3c:fb:91:7e:7d:57:14:30:
82:7b:38:0b:c2:35:d1:d6:e6:63:47:73:e4:cc:95:
93:bf:8d:fd:df:31:e4:f8:d5:65:fc:6b:66:c5:3e:
c0:4a:72:2f:ea:5a:72:5b:05:06:3a:22:35:a9:e4:
bf:f1:ca:1f:86:ba:eb:e1:07:b4:f1:6d:32:99:8e:
c1:7d:ca:29:12:6d:e3:46:75:41:af:b7:36:f8:0f:
70:8d:ec:c4:16:18:31:ed:81:24:3a:f3:89:4a:f5:
35:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:EB:3A:BB:0E:2A:97:D3:DC:6A:E3:DD:CC:3F:D7:54:22:94:EB:3E
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/HOs6uw4ql9PcauPdzD_XVCKU6z4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.1.0/24
Signature Algorithm: sha256WithRSAEncryption
32:be:2e:97:3b:6a:ed:ad:47:2d:62:7e:15:57:63:ad:f7:6a:
02:7f:71:46:d3:f4:48:61:e9:ff:f5:37:0b:30:d9:53:d3:3b:
9a:3c:e6:4c:ac:9a:73:80:4a:30:c5:57:e1:eb:0d:3c:e1:37:
41:3e:44:db:49:97:a3:6b:f0:7e:c3:a9:18:bc:73:bb:f8:43:
cf:e8:05:46:47:8b:c7:a7:4d:ca:1b:6c:a9:be:cd:6c:a6:27:
f1:35:93:73:4f:24:1a:aa:f4:55:4f:ce:ee:02:6c:69:09:35:
d7:b3:31:90:5e:5b:40:a1:36:39:6e:d2:5d:cc:57:c6:b7:ee:
2c:53:9a:e2:d8:89:ba:13:65:69:ad:29:7a:3c:57:66:f7:19:
f1:09:4f:79:49:f3:8c:15:36:27:fa:b9:b7:5e:56:75:7a:5e:
46:d5:82:96:cb:cf:de:53:44:a1:07:af:1c:05:72:da:4d:ad:
48:a1:43:27:8c:c4:f2:16:be:4b:3d:4a:37:1b:56:ec:a9:86:
c6:ee:f3:34:2c:30:26:27:71:a0:e0:33:9a:a9:bc:6b:d1:4c:
a2:ac:04:06:91:cc:14:cb:8f:16:95:7c:b2:95:a4:8f:0b:1c:
0a:3a:b8:5b:9d:7b:94:22:5b:09:26:86:02:a1:7d:90:6c:21:
61:91:4d:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:09 2024 by rpki-client on console-ams.rpki-client.org