Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/H6fWS7iVcFYGKYALW1wAK0tIry8.roa
File: H6fWS7iVcFYGKYALW1wAK0tIry8.roa (raw, json)
Hash identifier: qPjfzFxwx2Zd80Zc+vSQNkZOz37ZQt24ZbrLmSyIb9s=
Subject key identifier: 1F:A7:D6:4B:B8:95:70:56:06:29:80:0B:5B:5C:00:2B:4B:48:AF:2F
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0182B1E3BD20E7EC3128257EDE2484C33A3B
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/H6fWS7iVcFYGKYALW1wAK0tIry8.roa
Signing time: Thu 18 Aug 2022 16:57:48 +0000
ROA not before: Thu 18 Aug 2022 16:57:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44592
IP address blocks: 185.117.3.0/24 maxlen: 24
45.13.227.0/24 maxlen: 24
5.253.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b1:e3:bd:20:e7:ec:31:28:25:7e:de:24:84:c3:3a:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Aug 18 16:57:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1fa7d64bb89570560629800b5b5c002b4b48af2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:72:36:93:b3:e9:de:de:43:6b:2d:54:8b:c6:
82:85:ec:d5:e4:1d:06:8e:15:55:24:42:30:be:00:
34:ee:1e:77:10:12:92:81:5c:5a:75:79:0a:61:76:
5f:b3:fe:d9:a4:94:c1:f3:4e:96:3e:7e:62:fc:d7:
03:fc:17:54:28:bc:c3:0c:29:49:f3:ec:c1:06:46:
b4:56:dd:76:cf:40:a3:2f:a1:b9:50:1a:c7:45:11:
1c:fc:b9:d1:7a:24:37:0c:b2:97:71:8a:33:73:39:
da:63:b0:e8:89:0a:8b:48:ea:85:df:6f:e6:fb:a0:
51:7e:5c:7c:1f:bd:78:8c:e9:ec:36:ce:85:d8:a3:
55:40:85:51:1d:00:f2:c6:1b:38:7b:7c:00:87:82:
ed:5b:e8:a8:f2:45:e9:ed:4c:df:ed:67:e8:71:ad:
65:61:38:61:5b:fc:55:76:85:1f:ab:e8:de:b6:cd:
ce:34:99:ba:b7:35:ad:cf:bc:0a:ba:5c:97:9a:5d:
55:f4:19:54:c9:69:f8:58:8d:f4:37:34:30:32:b3:
d7:68:5c:42:d3:3b:93:cd:ac:66:39:9d:13:ec:77:
f1:49:77:3f:ac:04:f7:a9:5c:56:f6:3f:ca:7c:1f:
2b:63:d2:d7:f2:3e:3b:64:4f:1a:e6:bf:52:f8:1f:
8e:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:A7:D6:4B:B8:95:70:56:06:29:80:0B:5B:5C:00:2B:4B:48:AF:2F
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/H6fWS7iVcFYGKYALW1wAK0tIry8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.246.0/24
45.13.227.0/24
185.117.3.0/24
Signature Algorithm: sha256WithRSAEncryption
98:20:1d:d8:cf:52:78:0e:f2:63:b9:fe:a0:88:0b:ca:be:bb:
4e:d8:6e:ae:be:ec:a1:c8:9e:39:0e:8b:8d:e9:8a:00:d6:18:
92:82:e0:ea:77:86:e1:7f:54:da:88:1f:1f:99:7e:4d:41:f4:
39:40:02:57:8a:8b:06:1a:7d:b3:8d:b4:56:12:44:5e:e7:cc:
13:cc:b4:7b:f7:76:60:87:8c:a2:d5:14:56:aa:9d:a8:f6:94:
f4:06:92:9c:56:dd:d8:f9:c9:41:a7:12:69:8a:33:51:24:11:
cc:c4:bc:88:d1:f7:df:f6:f0:9b:02:5b:18:81:5a:00:14:fb:
60:4f:cd:58:c1:02:4a:09:1a:dc:14:70:d6:a7:a9:55:e5:0a:
cc:02:6c:df:7a:20:85:d3:30:11:6f:8f:ff:0e:54:aa:fd:9d:
ea:9c:39:a0:a4:54:b7:77:2a:68:11:35:31:2b:68:62:32:ec:
d0:8d:99:7f:60:63:18:b6:cb:ac:41:e8:78:f7:35:39:5b:eb:
f0:03:d8:45:c3:95:3e:8f:72:b0:71:f5:fd:17:f2:17:0e:4f:
a4:56:a7:b8:22:c6:5b:dc:b0:05:5c:56:46:3f:a7:fc:43:28:
8d:f4:9f:f3:40:bf:89:65:1e:12:ec:b0:ce:09:09:76:b4:e0:
4a:0d:c3:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:19 2023 by rpki-client on console-ams.rpki-client.org