Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/beed93-4170-4f68-a392-28bf3d90bd7b/1/Hnz7dWMggoEWcekq5F3Q6CBgBV0.roa
File: Hnz7dWMggoEWcekq5F3Q6CBgBV0.roa (raw, json)
Hash identifier: mmZX3XToCQkVsIaIUg5h3D4HyGsQJiJoU3OPWyYUWKw=
Subject key identifier: 1E:7C:FB:75:63:20:82:81:16:71:E9:2A:E4:5D:D0:E8:20:60:05:5D
Certificate issuer: /CN=79c7ea4d39f5cb5f45860a09ea3833ef8add6828
Certificate serial: 016F60F5
Authority key identifier: 79:C7:EA:4D:39:F5:CB:5F:45:86:0A:09:EA:38:33:EF:8A:DD:68:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ecfqTTn1y19FhgoJ6jgz74rdaCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/beed93-4170-4f68-a392-28bf3d90bd7b/1/Hnz7dWMggoEWcekq5F3Q6CBgBV0.roa
Signing time: Sat 01 Jan 2022 16:07:01 +0000
ROA not before: Sat 01 Jan 2022 16:07:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197391
IP address blocks: 91.220.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24076533 (0x16f60f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79c7ea4d39f5cb5f45860a09ea3833ef8add6828
Validity
Not Before: Jan 1 16:07:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e7cfb75632082811671e92ae45dd0e82060055d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:89:17:d7:9f:74:3b:39:58:eb:a4:48:a0:c6:
0a:45:4b:64:2f:26:bc:9c:dd:54:8d:99:e2:da:9b:
00:05:51:fb:07:36:27:1c:2a:d4:94:cc:17:1c:4e:
c2:c3:61:46:e1:15:f2:62:9b:41:c6:86:a4:e9:b1:
85:40:94:e9:c1:5f:46:14:7a:65:9d:35:ae:b5:07:
ed:a1:29:30:cd:d9:0b:c8:1b:54:16:0e:ac:28:b9:
50:40:44:06:96:9e:50:3c:31:ba:fb:07:a5:c2:b8:
03:0d:27:11:6d:03:af:9c:81:a2:84:0b:75:9c:da:
fc:b3:a8:64:83:9b:45:a0:0f:b9:75:7a:36:79:05:
d6:c1:f9:ba:c2:c7:8d:5f:ca:b4:b1:e3:f1:77:bf:
66:59:ad:fa:f8:08:38:a9:60:86:6d:8f:c6:2a:1e:
24:06:ec:a7:71:f4:0b:3c:10:8a:49:14:66:9e:34:
79:b8:5a:c5:24:49:f2:c4:da:57:43:48:27:d5:0c:
19:e9:ad:ad:78:ef:e5:63:41:2a:f5:9c:7a:74:9a:
79:78:ea:3b:b0:d3:f2:bb:22:19:d3:80:4e:c1:8f:
45:d5:5e:13:ff:60:b0:ac:9c:a6:33:5c:9e:65:e8:
e2:13:97:70:4d:31:5b:4b:05:c4:01:7d:85:60:2f:
42:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:7C:FB:75:63:20:82:81:16:71:E9:2A:E4:5D:D0:E8:20:60:05:5D
X509v3 Authority Key Identifier:
keyid:79:C7:EA:4D:39:F5:CB:5F:45:86:0A:09:EA:38:33:EF:8A:DD:68:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ecfqTTn1y19FhgoJ6jgz74rdaCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/beed93-4170-4f68-a392-28bf3d90bd7b/1/Hnz7dWMggoEWcekq5F3Q6CBgBV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/beed93-4170-4f68-a392-28bf3d90bd7b/1/ecfqTTn1y19FhgoJ6jgz74rdaCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.119.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:51:f3:03:14:d7:bc:43:ac:7a:e4:a1:a8:30:79:2b:c0:90:
5f:a7:f6:78:60:14:53:88:9f:bb:4e:4c:5a:cf:02:38:4d:cf:
ef:46:c5:38:bd:fd:d9:89:e2:b3:e8:41:ec:5e:9a:60:88:8f:
29:e4:c2:8e:77:9b:de:a8:e5:a9:17:cb:8e:0c:e8:44:f1:8c:
84:bf:c5:db:ad:34:ef:50:fe:17:a5:d5:b5:49:99:19:c4:f3:
30:84:f2:c5:a4:2f:7a:81:8c:ed:4a:7a:72:12:a2:e1:95:4b:
9b:c8:9d:99:67:b1:6d:37:f0:db:bd:ea:7c:2f:24:86:95:c0:
c1:39:55:43:a8:30:56:64:13:01:7d:91:03:10:4f:f5:c6:1e:
08:21:c4:95:8c:a8:13:12:ac:3c:b2:0e:72:ce:92:d5:9a:eb:
21:39:3e:8d:e5:86:1b:a0:29:d6:13:56:6a:fc:6d:40:6e:6f:
7c:65:80:01:5c:fb:77:2c:b0:e9:1b:c7:93:46:2b:7b:b3:a7:
f2:2a:18:f9:32:e8:11:30:06:4b:d1:c9:20:eb:d5:9b:6b:7d:
62:03:d6:0a:59:c5:2f:26:5a:1f:e6:0e:4f:da:30:2e:a7:91:
21:5d:4a:ba:29:79:7d:5c:f9:33:30:a1:b3:08:da:35:3e:26:
ef:f5:42:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:53 2023 by rpki-client on console-fra.rpki-client.org