Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/6ac66d-e5ed-4761-b728-9409d67a8579/1/hrNdFOp99hYDOCPS666kjH8miY4.roa
File: hrNdFOp99hYDOCPS666kjH8miY4.roa (raw, json)
Hash identifier: +qs55rx7z8gaG0UtWusPBCR1j7qVKBLF/6STuHqyC1Q=
Subject key identifier: 86:B3:5D:14:EA:7D:F6:16:03:38:23:D2:EB:AE:A4:8C:7F:26:89:8E
Certificate issuer: /CN=0e28e373b096398145452af627210ae1e36a7882
Certificate serial: 01533A
Authority key identifier: 0E:28:E3:73:B0:96:39:81:45:45:2A:F6:27:21:0A:E1:E3:6A:78:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dijjc7CWOYFFRSr2JyEK4eNqeII.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/6ac66d-e5ed-4761-b728-9409d67a8579/1/hrNdFOp99hYDOCPS666kjH8miY4.roa
Signing time: Mon 03 Jan 2022 14:21:17 +0000
ROA not before: Mon 03 Jan 2022 14:21:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50790
IP address blocks: 185.21.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86842 (0x1533a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e28e373b096398145452af627210ae1e36a7882
Validity
Not Before: Jan 3 14:21:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86b35d14ea7df616033823d2ebaea48c7f26898e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ed:f9:cb:01:58:0e:45:c3:f5:88:9c:b9:31:
d4:e1:c8:0c:9d:24:b0:b8:5b:f1:62:39:96:aa:83:
96:aa:b0:f8:98:07:51:8f:2c:b5:72:6b:80:ea:49:
e0:7d:78:61:a8:41:33:6d:03:74:50:80:28:27:53:
86:22:ea:e9:63:cb:f6:d2:41:0a:88:ba:9e:fa:16:
34:15:5c:18:c9:ea:2a:a1:9c:d9:c6:2f:c3:7d:8f:
c3:ab:f5:6f:2f:33:2a:8d:cf:d7:0d:c2:15:2b:d4:
ee:2b:cf:f2:3c:d6:1e:90:4d:3c:ca:69:55:2e:a6:
c6:c3:50:73:03:d6:b6:21:d6:c6:36:be:ab:ee:5c:
39:65:17:2e:23:41:39:b6:58:10:64:1d:f7:6e:8e:
1f:48:db:f6:54:47:e5:b7:28:2a:9f:f1:11:77:b0:
ec:ba:2c:c5:94:0f:35:e1:07:22:b6:1b:d4:20:3e:
e7:49:5c:a3:30:85:d1:c5:d4:d9:2e:5f:3d:36:2d:
96:da:4f:45:40:79:13:9a:ab:ee:ab:e9:eb:19:52:
0a:24:19:79:45:57:e5:3f:fa:d4:3a:fb:cc:63:f9:
c1:30:81:89:81:72:9c:e3:48:b4:83:d7:88:84:21:
1f:c8:90:76:f4:28:28:0c:3a:22:ce:63:92:0c:fd:
95:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:B3:5D:14:EA:7D:F6:16:03:38:23:D2:EB:AE:A4:8C:7F:26:89:8E
X509v3 Authority Key Identifier:
keyid:0E:28:E3:73:B0:96:39:81:45:45:2A:F6:27:21:0A:E1:E3:6A:78:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dijjc7CWOYFFRSr2JyEK4eNqeII.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6ac66d-e5ed-4761-b728-9409d67a8579/1/hrNdFOp99hYDOCPS666kjH8miY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6ac66d-e5ed-4761-b728-9409d67a8579/1/Dijjc7CWOYFFRSr2JyEK4eNqeII.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.21.49.0/24
Signature Algorithm: sha256WithRSAEncryption
84:d7:bb:5a:31:93:8d:d9:a9:b3:4b:b2:32:dd:97:c3:2d:1b:
fc:11:2d:07:c2:a5:dc:66:78:ae:07:24:0c:ef:2e:26:4a:92:
41:fa:e5:09:a7:20:55:9a:75:b9:a1:dc:f8:c4:6f:30:16:4b:
83:e0:5b:bb:b6:a4:e8:e8:a3:8c:9c:03:17:60:18:18:29:80:
79:21:92:aa:66:a8:d6:e6:47:e2:52:2c:d4:f7:8b:5b:18:cd:
2c:31:09:b4:10:fa:9b:66:92:8f:3b:5a:65:c2:29:1f:1c:82:
45:15:65:76:06:8f:5a:87:06:c3:fd:29:30:fa:b5:3a:02:94:
b1:22:88:4c:85:3d:fb:97:fd:74:45:31:44:ca:e9:e7:8c:02:
da:e4:1a:2d:a4:97:5a:23:09:99:73:10:d1:58:ef:f0:bd:b7:
b1:48:e7:5c:13:ab:2a:c8:17:9d:f7:a5:c9:fc:08:26:5f:83:
f1:ad:24:e2:10:5f:93:17:26:f1:1a:77:c3:62:b3:3c:70:ab:
77:64:c7:6a:0e:f0:bd:81:5a:9b:be:fd:56:77:7e:20:35:95:
87:0b:0f:eb:ae:88:62:91:2d:10:4b:19:3a:3b:6e:27:33:f1:
1c:ce:cc:8a:de:f2:9c:d5:8b:8b:e9:b7:48:44:69:71:84:c5:
27:e6:3d:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:37 2023 by rpki-client on console-ams.rpki-client.org