Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/HcSONg3rC13F96iRdjC7sPOhIis.roa
File: HcSONg3rC13F96iRdjC7sPOhIis.roa (raw, json)
Hash identifier: 6AbqR6ACo+OpNEnNUHI++WkY5tqcrbshYiejp3RvrgE=
Subject key identifier: 1D:C4:8E:36:0D:EB:0B:5D:C5:F7:A8:91:76:30:BB:B0:F3:A1:22:2B
Certificate issuer: /CN=788f5b210f3c3eb42065960e85d061e9d9d63ab8
Certificate serial: 02B2E7BD
Authority key identifier: 78:8F:5B:21:0F:3C:3E:B4:20:65:96:0E:85:D0:61:E9:D9:D6:3A:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eI9bIQ88PrQgZZYOhdBh6dnWOrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/HcSONg3rC13F96iRdjC7sPOhIis.roa
Signing time: Wed 18 May 2022 13:58:12 +0000
ROA not before: Wed 18 May 2022 13:58:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198518
IP address blocks: 185.238.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45279165 (0x2b2e7bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=788f5b210f3c3eb42065960e85d061e9d9d63ab8
Validity
Not Before: May 18 13:58:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1dc48e360deb0b5dc5f7a8917630bbb0f3a1222b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:cf:7a:6a:23:1a:9d:ef:15:9e:cf:0f:d2:17:
99:bd:1c:5f:65:4d:9a:a8:05:90:82:a4:0a:59:46:
d5:18:1f:99:d0:a2:d7:2f:b6:6f:86:ca:85:4d:04:
26:47:00:c7:59:bd:2d:a9:99:f0:ca:17:ff:ea:c0:
ab:b4:eb:50:6d:e4:d0:9d:e0:da:9f:8b:83:df:b8:
f2:ae:ca:5e:fd:80:ce:fe:df:e5:2b:e9:b9:da:6f:
47:de:c9:80:93:9d:4f:f8:72:07:b9:1e:05:75:40:
bb:ac:a9:79:80:39:0b:d5:12:30:d6:d8:8b:4d:b4:
c6:1a:f3:a3:2a:a8:91:6e:87:8c:14:07:b1:69:3b:
f9:2f:e6:aa:cc:e9:9c:e4:6e:d5:cd:c1:7e:86:ab:
a9:9c:d5:49:be:57:b6:11:b2:4b:f4:06:db:d2:4d:
66:1c:52:08:5d:05:9b:6c:24:7c:c8:68:96:fa:62:
e9:4b:cc:fc:60:fb:44:1e:31:a4:3c:fe:76:41:54:
ca:fc:7b:aa:f0:ff:09:90:71:56:d1:76:3a:91:eb:
6e:14:c4:8c:90:dc:05:f9:8a:6f:92:42:54:e3:4b:
54:28:c3:d4:91:40:ca:f1:b2:8c:3f:ae:95:82:ba:
b9:a2:66:c1:82:8f:50:d7:9c:8c:26:69:90:c7:d0:
3f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:C4:8E:36:0D:EB:0B:5D:C5:F7:A8:91:76:30:BB:B0:F3:A1:22:2B
X509v3 Authority Key Identifier:
keyid:78:8F:5B:21:0F:3C:3E:B4:20:65:96:0E:85:D0:61:E9:D9:D6:3A:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eI9bIQ88PrQgZZYOhdBh6dnWOrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/HcSONg3rC13F96iRdjC7sPOhIis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/eI9bIQ88PrQgZZYOhdBh6dnWOrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.60.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:a1:e4:cd:00:8c:e8:d7:ff:68:ea:d8:0e:32:a7:c7:65:86:
62:9f:5e:d1:39:5b:b2:bd:c6:ac:17:28:bd:c7:88:e0:4f:af:
58:c0:e1:92:d1:be:c5:19:b2:3c:68:24:db:b0:b1:98:a7:a5:
df:11:79:ef:c1:e6:f5:5c:59:b2:1b:46:64:dc:d0:a0:25:40:
bf:f0:e8:16:f7:b7:3f:1a:c9:2f:08:eb:c5:66:c3:63:a2:b4:
9f:93:a7:df:ea:48:e1:9d:3f:c4:d2:68:05:3c:94:4d:e8:d6:
3e:75:51:f4:e1:d2:60:1d:ed:52:94:03:35:f3:07:63:b7:fd:
09:d1:63:66:53:de:55:90:2f:23:2f:23:a3:1c:f0:8c:e3:bb:
69:2c:a2:e5:e5:fc:11:23:19:94:27:ed:ea:e1:e8:92:68:2c:
ec:bd:44:b2:b2:10:9a:fb:25:32:d3:0e:af:fc:c1:b8:cb:c9:
12:0b:f8:a5:10:7c:96:33:56:aa:20:a8:10:04:47:4a:55:5f:
74:2a:87:c9:02:ef:b3:96:1f:03:71:00:97:7b:2f:04:81:28:
9f:50:61:3e:b9:ce:6c:05:cf:ba:f6:b1:f2:82:c8:84:ad:24:
fd:4f:8e:52:6f:53:3c:a9:69:e8:19:4a:ce:11:d1:a6:fe:98:
6a:8b:6d:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:44 2024 by rpki-client on console-fra.rpki-client.org