Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/3c08f1-96e0-4c54-a466-07d4b115cc82/1/Htrwvqu274ZhcBhlzoqCASs8kqo.roa
File: Htrwvqu274ZhcBhlzoqCASs8kqo.roa (raw, json)
Hash identifier: UH4tBtQ0OmNRAsf+VoahOL0zzE6nVQDYFvtLJbb2zA4=
Subject key identifier: 1E:DA:F0:BE:AB:B6:EF:86:61:70:18:65:CE:8A:82:01:2B:3C:92:AA
Certificate issuer: /CN=6f98d1f99e3833ef401d46348eec8b752088c55d
Certificate serial: 08CBD261
Authority key identifier: 6F:98:D1:F9:9E:38:33:EF:40:1D:46:34:8E:EC:8B:75:20:88:C5:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b5jR-Z44M-9AHUY0juyLdSCIxV0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/3c08f1-96e0-4c54-a466-07d4b115cc82/1/Htrwvqu274ZhcBhlzoqCASs8kqo.roa
Signing time: Sat 01 Jan 2022 07:01:13 +0000
ROA not before: Sat 01 Jan 2022 07:01:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56600
IP address blocks: 192.162.152.0/22 maxlen: 22
192.162.152.0/24 maxlen: 24
192.162.153.0/24 maxlen: 24
192.162.155.0/24 maxlen: 24
192.162.154.0/24 maxlen: 24
176.126.134.0/24 maxlen: 24
176.126.133.0/24 maxlen: 24
176.126.136.0/24 maxlen: 24
176.126.135.0/24 maxlen: 24
176.126.136.0/21 maxlen: 21
176.126.137.0/24 maxlen: 24
176.126.139.0/24 maxlen: 24
176.126.138.0/24 maxlen: 24
176.126.143.0/24 maxlen: 24
176.126.142.0/24 maxlen: 24
176.126.144.0/21 maxlen: 21
176.126.145.0/24 maxlen: 24
176.126.141.0/24 maxlen: 24
176.126.146.0/24 maxlen: 24
176.126.148.0/24 maxlen: 24
176.126.147.0/24 maxlen: 24
176.126.149.0/24 maxlen: 24
176.126.152.0/22 maxlen: 22
176.126.157.0/24 maxlen: 24
176.126.156.0/24 maxlen: 24
176.126.156.0/23 maxlen: 23
176.126.129.0/24 maxlen: 24
176.126.128.0/24 maxlen: 24
176.126.128.0/21 maxlen: 21
176.126.130.0/24 maxlen: 24
176.126.132.0/24 maxlen: 24
176.126.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147575393 (0x8cbd261)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f98d1f99e3833ef401d46348eec8b752088c55d
Validity
Not Before: Jan 1 07:01:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1edaf0beabb6ef8661701865ce8a82012b3c92aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:6e:47:3c:0f:8e:b8:6b:d2:d5:2c:c9:1e:2d:
dc:52:35:fb:0f:6c:c7:b8:05:54:37:9d:2a:af:68:
93:42:d1:fb:1b:e2:9e:04:3a:9e:ed:02:cf:b8:bd:
ec:cc:59:f2:10:54:bd:06:0b:c4:f5:56:af:44:c9:
3f:ce:d3:b3:1d:c4:31:dd:4f:7f:cb:fd:42:17:ba:
7d:b3:e8:de:aa:ba:5c:fa:09:38:1a:f0:3b:46:a3:
0d:f6:0f:47:fb:d6:dc:94:4b:13:31:60:84:7c:62:
3d:5d:b4:b7:7c:e3:ab:57:95:86:b3:35:32:01:84:
85:c2:b5:bd:e9:ed:fd:ca:22:35:4a:70:2f:b4:05:
24:ad:a1:f7:e9:a2:d2:a8:35:9a:7b:ba:15:3c:b5:
29:05:41:17:d8:b4:09:b9:63:d9:47:35:cc:56:57:
51:84:42:7e:a6:f6:89:c4:1c:02:3a:65:dd:93:75:
04:8d:bf:99:20:c6:27:f5:d4:c9:5b:7f:4e:65:c2:
da:9e:7a:dd:51:4a:2d:c6:4d:96:8f:d4:81:19:f1:
6c:15:b9:4e:65:d3:0f:09:00:e3:c9:ac:6b:1c:7f:
bb:b8:ee:bd:8b:89:ae:75:0f:8e:8b:cf:f8:8c:19:
65:62:82:f0:2c:ae:fd:c8:05:04:ac:6f:8d:a0:8e:
be:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:DA:F0:BE:AB:B6:EF:86:61:70:18:65:CE:8A:82:01:2B:3C:92:AA
X509v3 Authority Key Identifier:
keyid:6F:98:D1:F9:9E:38:33:EF:40:1D:46:34:8E:EC:8B:75:20:88:C5:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5jR-Z44M-9AHUY0juyLdSCIxV0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/3c08f1-96e0-4c54-a466-07d4b115cc82/1/Htrwvqu274ZhcBhlzoqCASs8kqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/3c08f1-96e0-4c54-a466-07d4b115cc82/1/b5jR-Z44M-9AHUY0juyLdSCIxV0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.126.128.0-176.126.157.255
192.162.152.0/22
Signature Algorithm: sha256WithRSAEncryption
24:a7:f1:b0:a1:36:e7:e6:71:f8:96:7e:f2:22:39:00:bc:19:
a0:98:e0:2d:5b:73:2b:b1:76:ce:a0:b6:5a:0c:42:63:ba:05:
8a:ee:e9:f3:b5:ef:1f:2c:ba:df:b4:e8:48:e8:53:4a:ea:7a:
77:c6:08:62:80:b9:3c:43:66:48:69:08:6a:72:95:aa:8b:1f:
79:23:40:96:ee:50:68:33:f4:e6:a1:ad:ba:b2:f4:68:5c:32:
d0:6d:82:2f:15:0f:ca:b6:52:dc:6b:e5:4a:f6:f3:fa:42:c8:
4e:09:df:d9:d6:73:73:0f:a9:c0:ad:f8:d1:7a:11:1a:e4:b1:
a7:1c:07:e4:c7:cb:d1:99:aa:b5:02:f6:1c:80:48:f1:9f:0d:
07:bd:53:e6:55:08:84:d7:58:10:0e:27:ce:56:30:3a:c7:ee:
d6:4a:86:58:22:84:18:b8:17:94:cf:98:50:21:9a:76:6c:e3:
13:6c:c2:f3:5e:d6:c3:82:da:6d:db:0d:88:5e:17:9f:3c:11:
3e:95:52:2c:10:58:e2:50:0c:4e:a1:52:e2:61:a2:c5:01:22:
b2:61:c0:29:c0:e1:ad:c7:69:b4:ea:b5:da:04:a6:c7:b0:48:
2d:f3:79:df:d9:32:a0:b2:70:8d:5b:f3:f6:9f:9f:70:25:84:
2f:70:ef:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:51 2024 by rpki-client on console-fra.rpki-client.org