Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/hjYpBW2crcxn1mPotUZCK9btKNM.roa
File: hjYpBW2crcxn1mPotUZCK9btKNM.roa (raw, json)
Hash identifier: w+ujlr01uRY7lZzRwVvx4W8s9CMKwCuRNygJLFf8iiI=
Subject key identifier: 86:36:29:05:6D:9C:AD:CC:67:D6:63:E8:B5:46:42:2B:D6:ED:28:D3
Certificate issuer: /CN=c5d5ce69fccf0c6bb8e2b2667e1e38fb940f3d26
Certificate serial: 0184BDBAC7313156266767319DCDC5649A7A
Authority key identifier: C5:D5:CE:69:FC:CF:0C:6B:B8:E2:B2:66:7E:1E:38:FB:94:0F:3D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/hjYpBW2crcxn1mPotUZCK9btKNM.roa
Signing time: Mon 28 Nov 2022 10:14:05 +0000
ROA not before: Mon 28 Nov 2022 10:14:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31014
IP address blocks: 193.28.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:bd:ba:c7:31:31:56:26:67:67:31:9d:cd:c5:64:9a:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5d5ce69fccf0c6bb8e2b2667e1e38fb940f3d26
Validity
Not Before: Nov 28 10:14:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=863629056d9cadcc67d663e8b546422bd6ed28d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:6b:36:e9:44:5a:9f:c6:44:94:e1:20:3d:d0:
1f:67:8a:cd:42:16:6a:91:30:19:94:ac:23:79:39:
c0:1c:a8:c2:b2:d9:82:07:a2:ac:65:6e:ea:49:6c:
40:1e:fc:98:26:7d:70:11:42:e6:8f:59:15:7f:af:
e5:ee:df:97:5f:28:a8:81:b5:a8:54:72:a4:d1:dc:
c1:dd:cd:57:78:05:9f:2c:8f:02:e7:3c:ec:68:ec:
63:df:e5:91:04:7c:86:ef:6d:5f:17:3f:f7:5a:68:
f1:68:89:4f:05:d9:45:70:fc:07:3c:4a:70:2a:ad:
88:77:4c:00:1a:49:92:23:50:c7:3e:a5:4e:2d:ba:
a7:c7:2c:aa:3c:1d:d2:59:5e:19:0b:0e:f8:00:46:
a6:7e:44:67:d3:92:a1:22:5c:e4:f8:7c:70:07:e0:
c3:13:73:8d:4c:43:97:1a:54:bb:05:3e:c5:34:13:
8f:c3:3b:01:1c:6e:d8:6b:3a:11:5e:ea:c0:ff:e8:
8e:f2:9c:a9:ce:37:93:ef:ff:ef:54:82:76:b7:57:
8a:4c:23:71:ab:29:2d:84:38:1b:a5:84:55:c5:19:
0e:e1:1d:8b:22:87:bf:31:da:51:2e:64:6e:30:ff:
e3:b2:c9:b8:6b:d6:71:f3:91:41:44:60:49:69:35:
0b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:36:29:05:6D:9C:AD:CC:67:D6:63:E8:B5:46:42:2B:D6:ED:28:D3
X509v3 Authority Key Identifier:
keyid:C5:D5:CE:69:FC:CF:0C:6B:B8:E2:B2:66:7E:1E:38:FB:94:0F:3D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/hjYpBW2crcxn1mPotUZCK9btKNM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.28.250.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:87:b3:7e:13:1f:cc:09:ab:b1:37:81:14:02:52:11:27:0a:
b1:d8:72:e2:27:1d:1c:ff:9a:31:f9:ab:39:a1:b2:1b:32:b3:
0a:8d:8d:09:71:78:b2:5b:a1:be:cf:a1:38:df:a0:a1:e6:ba:
86:47:79:65:7a:2e:e3:0a:46:18:52:59:1c:c0:ec:a5:d5:c3:
44:9a:a9:a7:4e:fd:2b:0e:0e:22:22:b2:67:ec:5c:35:97:e1:
c1:56:a7:1c:d3:43:14:62:61:2d:a3:b8:48:4e:01:25:6b:53:
17:36:41:9f:ae:a2:9a:4b:d8:13:72:c0:e2:03:86:d7:5d:47:
8e:8c:1b:32:84:f6:bc:01:51:50:b7:a3:f3:b9:40:44:ea:70:
d8:82:9d:c9:c5:72:a8:6f:75:bd:27:5d:ec:df:e3:f6:54:fe:
e3:96:60:a3:fd:66:48:54:da:48:2a:0c:5f:79:2c:bd:fe:e2:
49:a5:8c:6f:f4:20:85:84:a7:12:67:08:0e:46:92:8d:33:d3:
fe:4e:4c:c6:78:60:72:b2:ad:1b:82:21:04:31:15:2d:87:c5:
d5:b9:23:30:86:de:82:4c:13:37:55:43:20:d4:ed:86:34:eb:
6e:2b:04:80:c2:64:16:02:1f:fe:84:37:d6:25:e1:69:d0:63:
74:6e:91:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:28 2023 by rpki-client on console.sobornost.net