Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/H9u1K73IHQNbMtjiTRty0LDXyVA.roa
File: H9u1K73IHQNbMtjiTRty0LDXyVA.roa (raw, json)
Hash identifier: jXKyeZQY3bAyCp4THqEfgdS7zv3RzUAKcARH336WkVc=
Subject key identifier: 1F:DB:B5:2B:BD:C8:1D:03:5B:32:D8:E2:4D:1B:72:D0:B0:D7:C9:50
Certificate issuer: /CN=827af17f0499627e4b3c8cc5c333ec4b8e7635e0
Certificate serial: 0FB60163
Authority key identifier: 82:7A:F1:7F:04:99:62:7E:4B:3C:8C:C5:C3:33:EC:4B:8E:76:35:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnrxfwSZYn5LPIzFwzPsS452NeA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/H9u1K73IHQNbMtjiTRty0LDXyVA.roa
Signing time: Sat 01 Jan 2022 05:06:25 +0000
ROA not before: Sat 01 Jan 2022 05:06:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.195.0.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 263586147 (0xfb60163)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827af17f0499627e4b3c8cc5c333ec4b8e7635e0
Validity
Not Before: Jan 1 05:06:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1fdbb52bbdc81d035b32d8e24d1b72d0b0d7c950
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:13:fc:f8:61:4d:eb:0e:37:a7:28:80:05:33:
5e:f1:d3:18:7f:d0:6e:9e:ed:81:bb:4d:d9:9c:ea:
96:6a:4a:6c:c9:5d:fd:4b:bf:b5:bb:ec:7b:45:b9:
50:32:70:da:fd:20:24:ef:a1:1f:18:bb:0a:9a:dd:
4d:ee:d1:08:30:fb:57:ea:13:51:d0:18:7f:03:7f:
dc:a5:77:70:8b:4f:6b:9b:16:b9:cf:48:09:82:95:
d6:f3:13:b0:e3:6d:89:56:52:59:02:e6:4f:f1:7a:
3e:ed:14:80:b4:0c:25:b2:06:fc:e3:10:09:06:78:
78:76:b4:ba:9b:ca:41:c6:15:89:16:83:78:f9:4f:
ea:4c:13:3d:5c:ee:63:64:cc:d4:89:b1:f7:d6:48:
4e:f3:0d:48:71:ca:7c:54:1c:23:33:9b:83:ff:23:
24:f1:fe:5c:79:e1:fc:29:cd:6d:47:df:0b:cb:3e:
4f:4f:d2:a7:09:36:99:eb:d7:68:54:8e:f5:ba:92:
a0:8c:fd:cb:79:1e:25:1d:30:51:f5:02:84:47:7f:
39:8b:f2:6d:20:d3:6b:74:e3:ef:76:4a:71:42:fe:
73:19:7e:a0:6a:a2:b3:0c:9e:45:9c:a9:8b:5e:a3:
06:a6:db:6b:b9:48:4f:97:01:87:13:27:fe:8c:61:
b2:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:DB:B5:2B:BD:C8:1D:03:5B:32:D8:E2:4D:1B:72:D0:B0:D7:C9:50
X509v3 Authority Key Identifier:
keyid:82:7A:F1:7F:04:99:62:7E:4B:3C:8C:C5:C3:33:EC:4B:8E:76:35:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnrxfwSZYn5LPIzFwzPsS452NeA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/H9u1K73IHQNbMtjiTRty0LDXyVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/gnrxfwSZYn5LPIzFwzPsS452NeA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.195.0.0/22
Signature Algorithm: sha256WithRSAEncryption
27:82:8a:96:13:e5:43:77:c5:9d:a9:94:8d:3d:9c:0a:bb:fa:
b2:4e:32:80:58:0e:f4:72:73:e5:3c:1e:e5:78:47:3a:3e:d7:
91:d3:74:24:36:59:f3:7b:52:2a:5b:a3:5e:2c:78:83:64:de:
68:e8:6d:07:39:39:d9:d5:6c:47:b9:02:ea:a1:68:9b:91:ac:
12:64:d2:e5:9c:af:a5:71:dd:79:e5:ce:a8:47:33:de:e1:c7:
42:c9:b3:1c:8d:a2:f3:1f:41:a4:eb:45:bd:9e:5f:0f:f3:1b:
5a:47:cf:16:c3:b4:fd:10:b9:f4:31:c9:f0:1a:b7:e7:03:bf:
1b:41:1c:a2:30:d5:f7:aa:65:04:eb:1d:98:f5:c6:89:95:f4:
4f:79:5a:67:f3:d0:5b:07:37:4e:78:55:f7:ec:4a:0a:97:92:
1e:b2:64:2d:ae:40:b5:00:99:88:22:bf:5e:b5:3b:7a:5a:f5:
d8:c3:ae:af:9b:8d:61:5b:ab:4b:93:6f:9e:41:a5:03:55:b0:
8d:1d:4d:21:a1:b4:77:bc:7d:18:df:0e:75:01:7a:42:91:8d:
5d:39:8b:5b:30:26:63:9b:85:2b:4b:f4:57:5a:c4:4a:74:d9:
07:9f:08:bd:4e:b1:80:a3:4a:3f:db:b2:d8:3d:5e:f3:49:c2:
fb:37:e2:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:01 2024 by rpki-client on console-fra.rpki-client.org