Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/f710ce-440f-405f-ac50-aa942994fc60/1/HNxo1dmpN9RhV0wh87BRlyiRNoQ.roa
File: HNxo1dmpN9RhV0wh87BRlyiRNoQ.roa (raw, json)
Hash identifier: 4kxnr76ZeIfEXQyO93mAg4vY9HDtdr44Jw8UCaNPKqU=
Subject key identifier: 1C:DC:68:D5:D9:A9:37:D4:61:57:4C:21:F3:B0:51:97:28:91:36:84
Certificate issuer: /CN=156f04fc5ca875315ab0b854b64506b09c998e9a
Certificate serial: 0DAFD438
Authority key identifier: 15:6F:04:FC:5C:A8:75:31:5A:B0:B8:54:B6:45:06:B0:9C:99:8E:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FW8E_FyodTFasLhUtkUGsJyZjpo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/f710ce-440f-405f-ac50-aa942994fc60/1/HNxo1dmpN9RhV0wh87BRlyiRNoQ.roa
Signing time: Sat 01 Jan 2022 13:07:42 +0000
ROA not before: Sat 01 Jan 2022 13:07:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39591
IP address blocks: 193.23.113.0/24 maxlen: 24
91.198.234.0/24 maxlen: 24
2001:678:668::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 229626936 (0xdafd438)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=156f04fc5ca875315ab0b854b64506b09c998e9a
Validity
Not Before: Jan 1 13:07:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1cdc68d5d9a937d461574c21f3b0519728913684
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d7:c9:00:ec:1b:49:2f:6b:cb:1c:c1:ca:17:
c8:68:60:42:a3:0f:fd:93:22:a0:cd:7c:fa:dc:56:
dd:ed:42:ac:7f:52:15:66:fd:82:6b:95:27:c3:9d:
01:ef:93:8c:31:89:45:91:7e:4f:f4:95:88:6d:14:
ef:60:95:35:68:48:91:17:3f:88:15:27:e5:83:0b:
65:c0:9d:8f:c2:a8:62:9e:35:7b:a8:d1:01:70:75:
15:b0:e4:48:06:93:ef:ee:28:18:a3:e9:c7:5a:fb:
ed:45:f8:7e:9f:31:5e:7e:d6:ac:79:5c:79:48:97:
c4:a0:30:f9:21:f8:18:69:99:34:f1:a2:53:54:bc:
c4:8d:e6:74:50:0a:b1:98:91:39:3a:7b:fa:f9:be:
b2:4b:67:1f:d7:78:d8:cd:b1:b5:9a:04:f2:60:38:
91:7e:f5:ba:d7:b6:3b:69:4b:5e:17:76:f8:82:b4:
7b:9c:5e:75:e3:d0:49:d9:87:5f:cd:de:be:5e:bd:
24:97:00:0a:ab:cd:de:01:ac:6c:bf:c6:f1:ef:6b:
01:f8:35:94:df:38:63:41:b4:f7:73:b1:ba:c4:83:
75:62:e0:7f:b2:bc:92:1b:2a:d6:c9:90:ec:45:25:
40:c1:aa:4e:fe:7f:a4:44:64:7b:81:9e:ab:f4:bb:
90:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:DC:68:D5:D9:A9:37:D4:61:57:4C:21:F3:B0:51:97:28:91:36:84
X509v3 Authority Key Identifier:
keyid:15:6F:04:FC:5C:A8:75:31:5A:B0:B8:54:B6:45:06:B0:9C:99:8E:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FW8E_FyodTFasLhUtkUGsJyZjpo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/f710ce-440f-405f-ac50-aa942994fc60/1/HNxo1dmpN9RhV0wh87BRlyiRNoQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/f710ce-440f-405f-ac50-aa942994fc60/1/FW8E_FyodTFasLhUtkUGsJyZjpo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.234.0/24
193.23.113.0/24
IPv6:
2001:678:668::/48
Signature Algorithm: sha256WithRSAEncryption
05:e1:62:f1:68:8d:3c:f8:90:4a:ce:eb:74:49:13:af:f5:72:
2b:5c:cc:ac:3f:e2:16:02:84:18:e9:02:e7:1a:b9:da:54:89:
b7:7d:bc:01:ec:a7:21:f1:d4:83:17:67:fc:fa:f1:68:87:df:
2c:b0:dc:55:70:fa:21:95:cc:15:4d:71:12:13:f9:2f:92:70:
55:b2:79:f4:5e:ae:be:39:37:45:87:a8:f1:28:10:f4:7a:d1:
11:77:6a:36:90:f2:e2:94:93:37:00:1d:91:70:51:e2:14:b1:
69:78:ef:57:ae:3b:5c:56:55:23:22:e4:06:6d:19:2b:c9:71:
5f:37:cc:78:e5:c4:0a:a9:22:34:dd:a9:6b:25:13:4b:81:13:
fb:15:98:ad:99:fb:93:30:84:73:6b:a0:30:4f:f9:d5:f3:47:
e6:c7:bd:31:7d:a8:14:07:7b:eb:09:84:4f:4a:10:64:69:02:
5b:5b:38:56:8d:9c:e6:54:e2:c3:11:4b:8e:e3:4b:8e:f9:6d:
cf:2d:33:2d:f4:31:38:54:1f:2e:0c:7e:40:b4:d8:24:2c:2e:
b6:e5:92:76:14:56:2c:f4:e3:53:64:32:b8:30:17:ec:18:95:
1a:e2:f4:53:b0:3d:4d:8e:2e:9b:e4:6f:51:0a:de:4f:8a:40:
fc:1f:b4:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:16:00 2025 by rpki-client