Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/cb53fc-7096-4594-91b1-d92785a61219/1/HJjgZhyrXAl1I-qbNF73cABGZes.roa
File: HJjgZhyrXAl1I-qbNF73cABGZes.roa (raw, json)
Hash identifier: +RdDOpgBuifBOOluBOBEhay+LH+ajaFl+7oDOSS/sJ8=
Subject key identifier: 1C:98:E0:66:1C:AB:5C:09:75:23:EA:9B:34:5E:F7:70:00:46:65:EB
Certificate issuer: /CN=3812c97dbd32195b6afa91140b5520b5e0c2c5be
Certificate serial: 03C3FA13
Authority key identifier: 38:12:C9:7D:BD:32:19:5B:6A:FA:91:14:0B:55:20:B5:E0:C2:C5:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OBLJfb0yGVtq-pEUC1UgteDCxb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/cb53fc-7096-4594-91b1-d92785a61219/1/HJjgZhyrXAl1I-qbNF73cABGZes.roa
Signing time: Sat 01 Jan 2022 10:57:25 +0000
ROA not before: Sat 01 Jan 2022 10:57:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44322
IP address blocks: 185.83.240.0/22 maxlen: 24
2a05:a000::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63175187 (0x3c3fa13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3812c97dbd32195b6afa91140b5520b5e0c2c5be
Validity
Not Before: Jan 1 10:57:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c98e0661cab5c097523ea9b345ef770004665eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:d0:38:b4:2f:98:8c:95:3b:4c:fb:da:87:b0:
09:f4:a6:d1:ce:8d:b7:30:3e:bd:d5:61:5b:45:67:
ba:53:59:ee:d3:fb:08:e1:9f:50:cb:05:23:66:04:
db:32:ee:3e:10:4d:58:dd:6c:0b:fb:56:2d:3b:38:
97:eb:98:98:77:f4:a6:4d:e4:0d:18:45:a3:76:7d:
5d:55:7c:2b:1a:fd:f0:05:08:28:55:ff:f2:f6:02:
67:b3:57:89:9b:f4:08:a4:6a:3f:c2:9b:ae:36:39:
1b:fa:36:27:86:b0:29:32:0b:d7:eb:d4:11:22:03:
f1:d5:b5:cb:ea:62:37:43:9b:67:e4:b2:b8:cc:d9:
05:12:c2:f1:67:ea:ac:ff:bc:e3:14:b0:1a:15:25:
64:82:bb:e1:79:2c:98:43:fa:b4:19:f0:07:f9:7b:
79:94:d5:e9:87:00:4c:58:7a:02:4a:75:02:f6:4d:
6c:b8:42:f9:e7:ad:e8:48:bd:18:5d:d5:7d:0c:45:
11:1f:08:b1:86:23:93:2b:5e:fd:ce:22:5e:d9:8b:
a5:4e:62:39:53:cf:a7:94:75:d0:82:fe:c7:4f:94:
24:e9:ea:03:a1:a1:1c:97:00:d8:98:48:82:81:56:
2a:a0:09:29:d6:61:bb:a5:68:b9:69:22:6d:32:91:
5c:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:98:E0:66:1C:AB:5C:09:75:23:EA:9B:34:5E:F7:70:00:46:65:EB
X509v3 Authority Key Identifier:
keyid:38:12:C9:7D:BD:32:19:5B:6A:FA:91:14:0B:55:20:B5:E0:C2:C5:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OBLJfb0yGVtq-pEUC1UgteDCxb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/cb53fc-7096-4594-91b1-d92785a61219/1/HJjgZhyrXAl1I-qbNF73cABGZes.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/cb53fc-7096-4594-91b1-d92785a61219/1/OBLJfb0yGVtq-pEUC1UgteDCxb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.240.0/22
IPv6:
2a05:a000::/29
Signature Algorithm: sha256WithRSAEncryption
87:89:69:db:e9:4f:ca:1f:8e:79:f7:21:e7:78:90:24:4f:25:
99:d3:80:44:a8:bd:0a:66:64:c7:86:8e:b7:15:f8:57:c5:0e:
66:16:36:1c:25:71:81:6c:71:66:d9:a0:41:77:67:5c:42:b9:
11:32:c9:4e:78:84:96:a0:b7:8e:e6:c1:6d:3f:97:13:ea:2d:
c6:ec:a0:ec:b4:54:0f:5c:36:08:66:3f:b5:68:f9:95:de:92:
48:8e:6e:dc:66:c7:48:48:85:67:23:12:75:9b:f0:45:83:a5:
42:09:3d:df:06:78:96:3f:11:6e:f1:67:1a:7f:72:d7:58:21:
ad:c7:d1:0f:e1:61:0b:5a:ab:2f:b4:59:db:70:73:b7:21:52:
f4:f3:cd:69:28:e1:09:f2:74:a4:b4:82:e8:6c:30:ac:73:f1:
e4:d3:78:93:cd:5f:4d:0a:13:c5:3a:74:12:b5:98:13:99:03:
6f:95:46:97:87:ff:f8:9b:b8:9d:eb:a5:f0:02:f0:26:ce:d6:
3b:dc:76:6b:32:ac:e3:90:cf:52:b3:2a:c7:69:d8:88:3e:ed:
93:9e:ad:a3:f6:a4:00:de:ae:83:b0:1f:56:a9:c8:cc:31:b4:
16:cf:84:c4:06:42:6c:4f:a4:d7:c9:36:b0:c5:cf:00:e4:4c:
ae:a7:9d:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:59 2024 by rpki-client on console-ams.rpki-client.org