Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/05d8ba-9433-4a2e-bfe6-37b21bab3b00/1/HXCZZbtyfL8QDPN8yD5To9VsXbg.roa
File: HXCZZbtyfL8QDPN8yD5To9VsXbg.roa (raw, json)
Hash identifier: E1jxxi0hMMnBEsOyBeDyeCZ8Ac+JRgFTzsOfAf+zFVQ=
Subject key identifier: 1D:70:99:65:BB:72:7C:BF:10:0C:F3:7C:C8:3E:53:A3:D5:6C:5D:B8
Certificate issuer: /CN=82d7fe7312efb42bd8d1ecd82ac76191ea26c356
Certificate serial: CB4597
Authority key identifier: 82:D7:FE:73:12:EF:B4:2B:D8:D1:EC:D8:2A:C7:61:91:EA:26:C3:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gtf-cxLvtCvY0ezYKsdhkeomw1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/05d8ba-9433-4a2e-bfe6-37b21bab3b00/1/HXCZZbtyfL8QDPN8yD5To9VsXbg.roa
Signing time: Sun 15 May 2022 00:23:30 +0000
ROA not before: Sun 15 May 2022 00:23:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43766
IP address blocks: 92.43.171.0/24 maxlen: 24
92.43.170.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13321623 (0xcb4597)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82d7fe7312efb42bd8d1ecd82ac76191ea26c356
Validity
Not Before: May 15 00:23:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d709965bb727cbf100cf37cc83e53a3d56c5db8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:0f:e5:ff:3a:29:7d:99:83:e9:13:c0:22:be:
49:d3:2a:1b:dd:62:b7:f6:09:18:e1:2e:5e:a0:1e:
7c:2c:f2:15:cd:dc:e0:20:5b:b6:b0:b2:54:ab:5f:
85:75:56:a0:6e:db:ec:c2:09:0c:12:21:54:4b:b3:
ab:44:98:33:a9:a3:2d:e6:13:e5:a1:9f:93:39:94:
45:12:29:1d:72:97:20:3d:0c:79:1c:46:18:a3:05:
f5:5c:ac:1b:a6:6f:65:ad:bc:58:cd:c7:3c:07:d5:
0a:74:f5:73:d8:5e:5c:f5:f3:05:7b:80:2c:36:ed:
7d:03:84:f0:f5:7a:9e:41:20:c2:c7:27:2d:9b:1a:
bd:bf:c2:d6:83:cd:0c:d3:48:15:33:b4:1d:b1:2b:
78:8a:9c:6e:4e:a0:f2:3b:00:08:6c:ce:6b:b0:5e:
a3:68:85:44:70:3c:bb:2d:b8:6b:de:3e:4c:48:98:
a4:e0:22:1e:39:44:55:4f:b9:ae:80:23:40:6b:9f:
f7:ab:ef:41:d0:23:4b:75:cb:8d:ca:78:02:8e:05:
18:fc:c9:13:8c:c3:de:c4:69:a8:6a:da:3a:52:29:
ef:1c:47:13:4d:35:03:a9:81:75:99:1b:6e:28:ec:
6f:88:19:41:cc:42:2a:3c:f1:79:7c:d0:8a:f1:03:
ae:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:70:99:65:BB:72:7C:BF:10:0C:F3:7C:C8:3E:53:A3:D5:6C:5D:B8
X509v3 Authority Key Identifier:
keyid:82:D7:FE:73:12:EF:B4:2B:D8:D1:EC:D8:2A:C7:61:91:EA:26:C3:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gtf-cxLvtCvY0ezYKsdhkeomw1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/05d8ba-9433-4a2e-bfe6-37b21bab3b00/1/HXCZZbtyfL8QDPN8yD5To9VsXbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/05d8ba-9433-4a2e-bfe6-37b21bab3b00/1/gtf-cxLvtCvY0ezYKsdhkeomw1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.43.170.0/23
Signature Algorithm: sha256WithRSAEncryption
06:40:a8:71:29:cd:f4:14:f1:d8:70:f9:d3:4e:9b:b1:79:f4:
29:d9:26:3c:fc:4f:d0:4f:a1:a2:6d:a2:7e:5d:1a:85:61:7e:
49:56:2b:73:d8:68:92:d9:a1:5a:64:45:93:61:cf:0d:70:22:
bf:73:a9:c4:aa:f9:73:7e:41:19:b3:fa:38:f3:f3:06:40:f9:
92:0f:4f:6d:3e:46:fc:05:4d:d7:cc:04:3b:a1:fe:a5:00:ed:
59:59:31:f8:9c:a7:00:aa:ad:d6:9f:02:1b:26:23:11:aa:45:
1d:4b:c9:19:2b:62:d7:be:37:fe:ae:76:af:90:5e:60:b6:28:
87:6c:97:b2:dc:3a:22:74:52:3b:a6:a3:d9:8a:1c:2b:8b:62:
2f:71:4b:5a:3e:22:50:b8:43:b6:e6:05:56:5b:e5:1e:ab:3e:
2e:dd:16:c6:92:45:4a:48:15:2d:34:56:90:23:8c:e2:b3:49:
00:78:13:53:c5:89:ee:08:8e:4c:41:d7:e1:c6:ba:4c:3f:2b:
90:f8:c8:9e:33:13:a3:f4:b0:c8:69:36:93:96:19:33:c4:5c:
8f:5b:0d:00:4b:97:29:50:d6:ee:fe:34:64:02:c6:a0:17:ca:
e3:37:98:fa:cc:d6:37:1a:e9:be:ce:91:3a:d6:d9:bb:01:c6:
3a:3c:35:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:30 2024 by rpki-client on console-ams.rpki-client.org