Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/767bd0-b0ef-4114-a58e-ff86bf881648/1/HrCdGvLYdkp30s8sekH6Qx7vWEw.roa
File: HrCdGvLYdkp30s8sekH6Qx7vWEw.roa (raw, json)
Hash identifier: I+ZgcJJWwwKfCTSrqPeP7rnQ8jdHfsm5CH5b/Viz2r8=
Subject key identifier: 1E:B0:9D:1A:F2:D8:76:4A:77:D2:CF:2C:7A:41:FA:43:1E:EF:58:4C
Certificate issuer: /CN=839a9a1b7e11fde77e4e1f57ff11864cee21f165
Certificate serial: 36491921
Authority key identifier: 83:9A:9A:1B:7E:11:FD:E7:7E:4E:1F:57:FF:11:86:4C:EE:21:F1:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g5qaG34R_ed-Th9X_xGGTO4h8WU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/767bd0-b0ef-4114-a58e-ff86bf881648/1/HrCdGvLYdkp30s8sekH6Qx7vWEw.roa
Signing time: Sat 01 Jan 2022 14:55:04 +0000
ROA not before: Sat 01 Jan 2022 14:55:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62168
IP address blocks: 141.105.118.0/24 maxlen: 24
2a01:8f80:100::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 910760225 (0x36491921)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=839a9a1b7e11fde77e4e1f57ff11864cee21f165
Validity
Not Before: Jan 1 14:55:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1eb09d1af2d8764a77d2cf2c7a41fa431eef584c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:49:33:3e:32:90:df:f9:fb:8b:6c:ad:6c:b6:
ae:b9:5b:55:0f:f6:83:e3:e3:53:83:4e:95:df:bd:
27:ac:1e:b2:86:4c:99:ee:6a:88:65:60:fd:09:fa:
10:d4:41:55:a1:08:86:c7:ed:57:3e:c7:f9:49:25:
ef:11:d4:29:94:69:ad:a2:84:35:a5:55:f0:15:4c:
ef:4d:49:9c:56:e1:b2:5c:16:8b:fb:6b:40:8f:41:
c7:7b:2c:3f:3f:70:20:27:9b:f1:01:8e:67:fe:c4:
db:66:69:b3:a7:1a:23:67:58:9b:69:38:56:56:c9:
cd:df:b1:ab:b0:3c:cb:6a:2c:fa:f4:d6:9a:5d:d0:
3f:45:2b:6a:50:02:2a:9f:15:51:f8:a9:d3:97:7f:
df:16:0d:98:4b:59:72:2e:28:62:ce:50:ad:02:58:
6d:2e:5f:32:8a:8e:6a:a3:00:af:36:54:7b:2e:32:
8d:93:f7:33:b4:9a:87:1b:81:a8:8f:b5:8d:ef:cc:
e3:d8:a7:d2:44:af:18:d7:80:5e:70:d1:c1:5b:65:
c3:8a:f6:15:04:3d:e0:9c:88:7a:9d:1d:a1:54:7c:
ef:d7:b6:78:7e:06:e4:00:73:de:ca:85:81:64:51:
53:b1:ca:13:16:4c:64:95:de:bf:96:27:c1:f1:3a:
f7:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:B0:9D:1A:F2:D8:76:4A:77:D2:CF:2C:7A:41:FA:43:1E:EF:58:4C
X509v3 Authority Key Identifier:
keyid:83:9A:9A:1B:7E:11:FD:E7:7E:4E:1F:57:FF:11:86:4C:EE:21:F1:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g5qaG34R_ed-Th9X_xGGTO4h8WU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/767bd0-b0ef-4114-a58e-ff86bf881648/1/HrCdGvLYdkp30s8sekH6Qx7vWEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/767bd0-b0ef-4114-a58e-ff86bf881648/1/g5qaG34R_ed-Th9X_xGGTO4h8WU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.105.118.0/24
IPv6:
2a01:8f80:100::/40
Signature Algorithm: sha256WithRSAEncryption
75:18:0b:04:54:79:73:d1:75:be:aa:13:1d:cd:69:85:04:30:
86:1c:7e:40:e6:31:cf:7c:8d:6a:c5:af:a1:c8:0d:3d:36:c8:
8a:39:bb:24:37:8e:c1:0c:81:1b:fd:e2:26:4a:75:88:d8:9f:
19:25:57:05:2a:4d:56:16:0b:9b:14:e8:61:7d:48:a5:c7:2f:
eb:d3:96:2f:08:5d:86:10:cf:41:a1:c4:17:e5:4d:8f:d8:82:
59:ac:06:74:38:2b:a9:de:a4:82:24:56:c8:d9:16:71:d5:13:
25:a2:fa:eb:d1:9e:72:98:bf:e6:32:c7:a6:08:ae:d1:c0:a1:
ee:83:76:f6:a1:5a:28:4b:8b:cf:ba:07:3c:57:54:bc:14:61:
9b:02:4d:92:b3:55:b2:33:44:17:a8:24:07:64:77:2b:42:b5:
4f:0b:b1:24:0f:0c:43:9f:54:9e:39:04:b9:dc:c3:13:0b:b4:
0b:25:39:64:53:07:55:97:14:43:0a:a0:1b:66:dd:ee:ba:a4:
dd:86:9c:1b:35:4d:da:b4:d8:b3:b3:f8:d3:bf:e2:72:1c:4e:
92:85:0d:da:64:88:d9:d9:2b:25:01:ad:cc:54:ea:f8:59:18:
46:73:81:4c:0f:78:22:8f:ef:74:b1:2c:99:26:a2:02:aa:b7:
c3:df:a8:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:46 2024 by rpki-client on console-fra.rpki-client.org