Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/HSEaOxgqxJKItyUEkcn6uKFVpeU.roa
File: HSEaOxgqxJKItyUEkcn6uKFVpeU.roa (raw, json)
Hash identifier: gbzApJnoH6E3LB4He9AqwrqI40BibVaN957syiY2YPc=
Subject key identifier: 1D:21:1A:3B:18:2A:C4:92:88:B7:25:04:91:C9:FA:B8:A1:55:A5:E5
Certificate issuer: /CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Certificate serial: 078B4F33
Authority key identifier: 60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/HSEaOxgqxJKItyUEkcn6uKFVpeU.roa
Signing time: Tue 01 Mar 2022 10:25:27 +0000
ROA not before: Tue 01 Mar 2022 10:25:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44486
IP address blocks: 192.40.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126570291 (0x78b4f33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Validity
Not Before: Mar 1 10:25:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d211a3b182ac49288b7250491c9fab8a155a5e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:44:bc:23:d1:ae:93:d1:65:92:9f:94:ee:bd:
6a:46:1a:78:cc:7c:b4:ed:d8:a2:b6:32:28:eb:4f:
da:29:99:6c:85:bf:e9:51:42:3d:7a:73:c5:e1:b2:
bd:e2:3f:6a:92:da:b5:cc:bb:f7:b0:db:c0:3a:b7:
5d:1e:fc:55:e4:a0:d2:38:9c:c3:95:f6:9f:0c:fb:
15:74:51:63:8e:ce:57:2a:89:39:18:8c:bc:3d:85:
d0:c7:86:cd:20:73:b4:0d:69:a6:5a:9a:0b:2f:0a:
9d:71:bf:3c:0f:5d:7a:23:46:8c:14:91:52:63:00:
8b:3e:f0:bf:29:50:36:53:a4:d3:bb:2d:28:0f:75:
d9:e0:a6:5a:ce:b0:d3:5e:83:7d:98:46:f1:59:91:
fa:aa:1f:bd:2b:b4:47:92:fe:02:fc:14:03:65:91:
e1:cc:92:cd:fe:87:53:54:c9:6c:b3:48:b8:78:86:
be:e3:84:e2:fd:17:b3:52:15:66:38:b9:9c:5c:9e:
f5:df:c9:67:2c:8d:16:46:70:03:65:54:6b:de:de:
41:ed:d8:96:4f:ed:29:4c:4b:04:cc:c0:b0:21:4d:
80:53:97:bb:74:37:f3:26:3a:3a:09:3c:95:49:da:
45:43:bc:1c:8e:1b:41:19:2b:0f:84:71:e1:20:44:
59:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:21:1A:3B:18:2A:C4:92:88:B7:25:04:91:C9:FA:B8:A1:55:A5:E5
X509v3 Authority Key Identifier:
keyid:60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/HSEaOxgqxJKItyUEkcn6uKFVpeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.40.69.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:e1:89:6d:79:0d:bc:43:7d:8e:07:12:fe:4d:90:db:c5:ae:
75:16:08:23:f7:0c:91:ed:33:65:d2:05:0c:1e:b4:0c:50:16:
23:40:30:a3:44:3d:3c:27:7f:6c:d5:bf:f9:01:c4:7b:17:eb:
9f:97:87:7d:84:cc:af:91:d1:7c:73:d8:e6:a6:a3:aa:83:97:
b0:85:d5:39:bf:61:f2:5e:19:3e:9d:ec:f7:72:b8:db:85:d9:
60:2e:33:6f:ee:46:8d:c9:f6:d0:77:f8:8c:bc:3c:69:38:a8:
ec:b4:35:10:44:ff:b0:1b:e3:88:e2:0d:f4:54:04:27:0e:61:
62:bc:a2:c2:fa:bd:d2:3f:f0:00:c4:97:b1:35:8c:54:99:79:
20:47:cb:30:bf:a2:90:1e:ff:80:41:c5:4e:e1:c5:b4:2d:9e:
d0:07:26:37:60:9a:40:8b:5d:9e:fd:99:48:8b:c6:b6:23:47:
9b:a0:5c:ae:d8:93:89:08:75:2c:b0:f8:fa:c1:b2:bc:8a:28:
ba:2a:97:43:f2:8a:96:00:6c:81:f0:c8:5d:d4:be:5a:8d:69:
9b:2a:f4:44:6c:c2:d7:f6:04:71:fe:65:ed:63:c5:6f:1f:2b:
42:3f:45:f2:d0:8c:d7:83:b4:a9:a9:86:f5:9e:14:d4:8e:99:
02:bc:16:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:00 2023 by rpki-client on console-fra.rpki-client.org