Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/hpK6Jbhjr8xANYLYzsfXeDg2ALo.roa
File: hpK6Jbhjr8xANYLYzsfXeDg2ALo.roa (raw, json)
Hash identifier: V5jVqCWQtsdlBcXp3WGEvL39F0B/ZnmOBwgjNtI1cXo=
Subject key identifier: 86:92:BA:25:B8:63:AF:CC:40:35:82:D8:CE:C7:D7:78:38:36:00:BA
Certificate issuer: /CN=e85b83c87c4a3d8315025379f72987520bb5d046
Certificate serial: 05284CF3
Authority key identifier: E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/hpK6Jbhjr8xANYLYzsfXeDg2ALo.roa
Signing time: Sat 01 Jan 2022 14:05:51 +0000
ROA not before: Sat 01 Jan 2022 14:05:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204427
IP address blocks: 37.148.171.0/24 maxlen: 24
37.148.169.0/24 maxlen: 24
37.148.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86527219 (0x5284cf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e85b83c87c4a3d8315025379f72987520bb5d046
Validity
Not Before: Jan 1 14:05:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8692ba25b863afcc403582d8cec7d778383600ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0c:4a:70:f9:fb:b0:bc:9e:6f:f8:e2:cb:db:
68:68:b7:1c:3e:d8:8b:42:59:2b:cf:e6:4a:b4:b2:
37:34:d4:b0:eb:46:98:1a:d2:1f:a1:e0:b4:f6:fd:
1f:af:dc:fe:35:ab:93:b8:8b:53:7a:3a:e7:d6:40:
2e:79:3e:fd:35:97:ec:bf:39:aa:b0:00:6f:c3:e2:
4b:35:e7:b5:94:e8:63:b3:f5:ee:be:4b:e4:78:45:
ff:74:fc:3d:2c:6c:74:1c:06:ae:8b:a4:c1:f9:8a:
fb:a1:bb:8a:89:14:57:8c:b8:79:8e:cf:1c:84:93:
93:08:e2:29:21:fb:b1:53:9f:0c:fd:73:10:c2:5b:
24:70:57:7c:3e:ca:12:e9:2c:4c:3d:a1:75:04:ff:
1d:54:af:7d:41:47:a2:eb:f7:a9:3b:24:ab:1d:b6:
6f:cb:a0:77:3b:a3:3f:84:5d:46:32:58:08:3c:fe:
5f:4b:d5:03:bb:c9:2d:0d:f4:f6:d7:21:08:de:0c:
73:86:6e:69:a6:98:1f:dc:a0:fb:4c:8c:c7:98:59:
f4:23:25:18:ef:0a:3d:10:e3:d1:83:71:0e:53:6d:
85:77:5e:53:9e:52:16:e2:fe:96:fb:a4:e1:95:86:
b8:dc:70:af:47:0f:b7:69:e9:24:8f:48:64:78:21:
da:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:92:BA:25:B8:63:AF:CC:40:35:82:D8:CE:C7:D7:78:38:36:00:BA
X509v3 Authority Key Identifier:
keyid:E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/hpK6Jbhjr8xANYLYzsfXeDg2ALo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/6FuDyHxKPYMVAlN59ymHUgu10EY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.148.169.0-37.148.171.255
Signature Algorithm: sha256WithRSAEncryption
2d:6b:ba:fe:f2:8f:3f:0d:0e:04:0b:66:97:2b:f6:f9:06:44:
90:f7:04:8d:b1:e1:a2:b3:be:26:14:f8:83:b0:e3:c9:e9:2e:
1e:54:ab:80:ee:d5:ed:6d:8b:8c:35:10:6e:78:38:72:0b:96:
ac:04:2f:2a:38:87:fd:62:cc:a9:0b:6d:a2:53:17:e2:89:81:
3f:81:9d:15:8f:af:3f:3d:77:da:4e:53:99:d8:7d:74:1e:f6:
64:92:c3:4c:39:c4:d2:73:51:73:eb:ac:f0:37:54:7d:13:ce:
1c:db:08:6e:cc:c6:79:db:0d:ce:16:c6:14:86:b8:5d:dc:08:
38:59:b6:58:0f:df:dc:64:38:dd:70:04:cc:16:8d:6d:78:83:
b7:a2:86:5c:8c:43:c5:ba:49:cc:72:56:87:23:b1:49:34:68:
77:f1:3e:b3:a9:27:42:8f:d0:75:dc:ba:4a:4c:dd:2a:24:9e:
ac:20:9e:3e:cf:a1:cc:fe:11:59:2c:1e:c6:f1:fa:e8:76:41:
53:99:10:27:44:af:43:b6:4d:50:17:ee:51:6e:c6:9d:f1:61:
e9:1f:9e:22:d9:0d:b1:12:3f:0b:30:6a:34:4d:7d:be:a0:0e:
cf:1b:3b:5a:8b:87:b5:d5:f1:2e:04:7f:74:b3:5a:93:0b:d0:
44:ee:b5:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:23 2023 by rpki-client on console.sobornost.net