Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/HfClpJ4xfE1dr1RRDzQ06JOKqsU.roa
File: HfClpJ4xfE1dr1RRDzQ06JOKqsU.roa (raw, json)
Hash identifier: NnmwH/Y3h7Gaocg+6cVKfLA2q8p3B/8YSMs5lNuJPAI=
Subject key identifier: 1D:F0:A5:A4:9E:31:7C:4D:5D:AF:54:51:0F:34:34:E8:93:8A:AA:C5
Certificate issuer: /CN=429c54be1da7e738e3c96ffb41f1ea3900a67be8
Certificate serial: 081A96C5
Authority key identifier: 42:9C:54:BE:1D:A7:E7:38:E3:C9:6F:FB:41:F1:EA:39:00:A6:7B:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpxUvh2n5zjjyW_7QfHqOQCme-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/HfClpJ4xfE1dr1RRDzQ06JOKqsU.roa
Signing time: Sat 01 Jan 2022 02:57:29 +0000
ROA not before: Sat 01 Jan 2022 02:57:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.91.76.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135960261 (0x81a96c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=429c54be1da7e738e3c96ffb41f1ea3900a67be8
Validity
Not Before: Jan 1 02:57:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1df0a5a49e317c4d5daf54510f3434e8938aaac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:37:57:73:d1:21:ad:99:9a:e9:f2:07:7c:a1:
a5:f2:06:85:55:3a:be:54:fa:0b:d0:3f:ca:35:72:
47:bc:fa:2b:6e:30:64:cf:d5:64:b3:6d:8d:e7:e8:
fd:ea:c9:08:48:91:30:fc:3c:9f:ea:a0:46:d9:22:
8e:aa:c4:1a:af:c5:41:be:65:6c:41:04:42:e2:cf:
ff:01:44:08:8c:a2:88:e1:21:56:80:15:79:f4:ca:
62:f9:49:ad:c8:d3:8a:3b:ac:c1:36:52:60:17:e8:
78:ef:60:62:ca:42:46:48:d6:ef:99:ac:22:52:89:
9c:d2:1d:7d:ba:e2:cf:d5:43:10:1d:6e:54:73:38:
ca:9a:27:88:ef:12:13:da:7e:55:34:26:94:2a:fb:
39:44:86:f6:7e:ba:de:9d:4d:dc:8f:e8:59:4b:f6:
93:73:64:31:24:4d:a1:61:55:ac:2b:e6:bd:af:f4:
16:06:97:b6:51:8f:52:dc:c1:9a:47:4d:ea:d5:05:
76:cf:85:01:7f:87:82:96:2e:33:47:2e:c6:38:cd:
b6:67:23:40:a6:4b:85:ed:49:2f:f8:b7:01:f5:cb:
52:a2:10:8a:bf:5b:59:7f:9e:48:32:27:3b:24:ba:
20:c7:29:cc:bb:1f:fe:ab:b1:59:f3:63:90:c4:f1:
d8:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:F0:A5:A4:9E:31:7C:4D:5D:AF:54:51:0F:34:34:E8:93:8A:AA:C5
X509v3 Authority Key Identifier:
keyid:42:9C:54:BE:1D:A7:E7:38:E3:C9:6F:FB:41:F1:EA:39:00:A6:7B:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpxUvh2n5zjjyW_7QfHqOQCme-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/HfClpJ4xfE1dr1RRDzQ06JOKqsU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/QpxUvh2n5zjjyW_7QfHqOQCme-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.76.0/22
Signature Algorithm: sha256WithRSAEncryption
32:21:0b:ca:8e:d0:3c:ca:e8:e3:2f:16:1a:e9:5c:f6:77:7c:
b2:55:59:60:51:01:38:3b:32:9e:01:b6:8a:01:b2:36:ed:db:
c5:68:47:2a:e6:5b:16:99:53:1d:01:ff:46:e3:5f:d6:c7:55:
b6:9a:85:1f:f1:1e:81:6a:0f:94:b5:ab:10:21:08:0e:9b:09:
4f:6f:e1:15:f0:67:6e:fa:6a:11:29:49:56:da:d2:5c:bb:65:
58:aa:f7:39:e1:f0:b8:3f:cc:2a:d1:49:08:78:94:eb:99:72:
98:0a:f1:1e:81:ab:0c:0d:6d:1e:45:89:62:ae:a2:3e:33:f1:
0e:cf:44:f6:53:16:33:e1:f0:66:26:53:dc:15:62:21:e4:5e:
4f:74:0e:ee:a3:b0:4d:58:d6:88:53:17:90:7a:3b:fc:4c:80:
87:60:54:1a:e2:82:59:50:15:17:d3:1a:57:04:f8:cb:a7:de:
5a:f1:8b:8f:2e:09:68:1d:2f:77:a0:db:af:38:29:97:b3:df:
5d:14:34:d2:65:58:b3:e5:8d:3d:f9:97:a3:c1:21:ca:50:bf:
a0:ec:42:f1:c7:cf:5c:70:06:2f:36:54:77:90:c1:ad:ec:7e:
1d:8e:3a:e4:84:2c:d5:e1:1b:5b:4e:d8:27:36:bc:08:aa:89:
78:a3:5f:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:55 2024 by rpki-client on console-ams.rpki-client.org