Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/hWBMhWKcNYFx4-ohcuVyAYYyqP4.roa
File: hWBMhWKcNYFx4-ohcuVyAYYyqP4.roa (raw, json)
Hash identifier: rDN3tfjrIpCjua+R4Yk616wN8YUJDknCELJOvbs/Sto=
Subject key identifier: 85:60:4C:85:62:9C:35:81:71:E3:EA:21:72:E5:72:01:86:32:A8:FE
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184148BF11FA86C87A7D3AA85AD1738F476
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/hWBMhWKcNYFx4-ohcuVyAYYyqP4.roa
Signing time: Wed 26 Oct 2022 13:47:06 +0000
ROA not before: Wed 26 Oct 2022 13:47:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56679
IP address blocks: 81.3.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:14:8b:f1:1f:a8:6c:87:a7:d3:aa:85:ad:17:38:f4:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Oct 26 13:47:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85604c85629c358171e3ea2172e572018632a8fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a2:fb:23:dd:31:80:ff:81:18:be:86:6a:8a:
0d:b1:d1:fa:fe:67:ac:7c:5d:3b:41:54:cb:0a:6e:
75:08:36:d4:6c:6e:c5:e7:55:3d:fe:e2:4e:07:5e:
3a:51:ce:f3:e4:88:83:8f:cc:19:c7:37:6a:2e:5b:
6d:95:18:30:ce:83:30:a9:4c:74:8d:03:6d:be:ea:
d6:a6:83:27:6e:1f:66:8c:6c:1e:6c:b8:81:f0:5f:
d5:71:60:6c:d2:78:a8:39:48:f2:23:e2:bc:ad:12:
c4:8d:12:51:11:b9:51:f2:87:6d:48:40:3f:93:65:
62:dc:4c:1e:e2:96:ba:52:0c:8b:8f:28:ce:8e:48:
1e:1b:e6:02:05:d5:6f:42:a8:a5:06:17:ae:d2:40:
b7:ec:44:23:d5:8a:54:8a:4d:3a:14:b4:6f:f2:c1:
b1:34:b1:53:f3:d5:9e:8d:68:70:13:e8:3e:ff:a1:
c6:ab:dc:73:70:fb:bc:2e:e0:5c:76:98:40:ac:ee:
50:51:20:7f:26:7e:f8:a5:82:99:b2:94:3b:a4:f6:
88:e5:5b:83:7d:52:e8:75:d0:0f:3a:4b:c1:85:cd:
30:e5:c9:fa:dc:24:94:df:91:65:7f:92:89:22:f5:
d8:11:70:b5:67:0e:97:62:f5:de:9b:23:48:45:05:
6c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:60:4C:85:62:9C:35:81:71:E3:EA:21:72:E5:72:01:86:32:A8:FE
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/hWBMhWKcNYFx4-ohcuVyAYYyqP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.3.154.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:37:17:80:6c:52:98:13:b8:ab:fc:a5:dc:d9:55:d9:66:a0:
d3:08:44:fd:f1:57:87:c4:af:8f:1b:93:33:ab:3a:ce:7f:99:
ef:fd:dc:bd:ac:23:97:42:b0:3f:9d:f0:58:4a:56:ed:04:1c:
07:4b:53:6f:ef:39:46:e9:29:c6:ea:86:ae:0e:c6:c5:9b:f8:
08:1b:ae:a6:2d:aa:09:28:e6:fd:d4:6e:4d:12:70:5e:5a:b6:
f3:c3:e1:9e:be:46:0d:7b:f7:87:07:ca:db:61:ec:ad:60:60:
0f:eb:95:5c:d0:f6:e3:45:2b:82:97:8a:00:5f:1e:76:ff:c1:
49:aa:70:cf:19:6b:bb:6c:78:2c:db:42:b1:a1:ca:9f:f5:38:
e6:6c:3a:74:d3:a7:bb:bc:56:7e:d4:59:9d:c2:f1:1c:f5:a8:
d5:da:df:d1:83:12:4e:f9:76:27:11:a6:4c:83:43:6e:e7:eb:
3d:c5:55:6d:04:94:0a:0e:e0:14:f0:21:ce:9d:aa:6e:c9:8e:
8f:7d:2b:c3:2b:da:66:71:c8:45:6d:07:53:80:53:e6:1f:62:
e1:9b:30:06:b9:49:0f:79:10:a1:70:de:48:cc:09:05:42:55:
4a:39:63:25:59:11:ea:68:0f:9e:1c:61:42:ad:42:bf:b7:28:
63:30:c7:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:26 2024 by rpki-client on console-fra.rpki-client.org