Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/HrpE7h99w-WPWyxhJ2FSvLT1PoM.roa
File: HrpE7h99w-WPWyxhJ2FSvLT1PoM.roa (raw, json)
Hash identifier: 8SC+xMEsGkM54MfOm9VVgjQtnt0lXsv5MP6wb4nmziI=
Subject key identifier: 1E:BA:44:EE:1F:7D:C3:E5:8F:5B:2C:61:27:61:52:BC:B4:F5:3E:83
Certificate issuer: /CN=b4dd6d658e14571e839f7813da31f2217422818e
Certificate serial: 0C1A1818
Authority key identifier: B4:DD:6D:65:8E:14:57:1E:83:9F:78:13:DA:31:F2:21:74:22:81:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tN1tZY4UVx6Dn3gT2jHyIXQigY4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/HrpE7h99w-WPWyxhJ2FSvLT1PoM.roa
Signing time: Sat 01 Jan 2022 07:03:51 +0000
ROA not before: Sat 01 Jan 2022 07:03:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50304
IP address blocks: 185.213.52.0/22 maxlen: 24
2a0b:8340::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 203036696 (0xc1a1818)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4dd6d658e14571e839f7813da31f2217422818e
Validity
Not Before: Jan 1 07:03:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1eba44ee1f7dc3e58f5b2c61276152bcb4f53e83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c4:dc:ee:cc:32:25:da:69:40:5f:fb:d5:fc:
34:95:37:bf:a7:e5:56:6c:ae:b8:8b:c1:d1:e2:4b:
b8:d6:c1:28:58:37:d1:01:cd:02:9a:8f:28:5d:fb:
68:eb:00:ca:3f:6c:4e:69:31:21:17:1c:14:35:f8:
3f:64:42:3e:a7:8f:50:b2:db:37:b4:f6:9b:ce:ef:
a0:db:e6:c9:92:57:80:fe:21:75:71:d0:fe:46:20:
e0:f1:6c:3b:c9:e0:c5:96:86:3d:61:08:1d:49:0f:
23:d9:2b:f5:df:89:34:c4:e8:dc:af:7f:fa:3c:38:
75:0c:f8:52:3a:8b:57:58:94:fb:65:87:a7:9c:65:
8a:87:81:59:66:95:d2:c4:7a:91:32:61:13:78:6c:
9d:e4:0b:be:ae:55:3e:28:43:1b:29:35:65:2c:70:
01:b6:14:8c:b5:40:82:4b:4b:0c:fe:09:7c:54:44:
18:4a:0f:1e:66:4b:56:da:1c:a4:e1:8c:59:71:f7:
ce:bb:00:5c:e7:c9:3e:a1:e8:23:21:22:bd:08:27:
10:58:4a:50:46:c1:77:6f:63:27:78:e7:89:e6:2a:
86:65:59:20:51:26:53:2d:d6:33:4a:ec:0a:a1:a8:
8a:bc:c3:84:24:fb:9d:82:09:e5:b6:65:52:9d:6c:
ff:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:BA:44:EE:1F:7D:C3:E5:8F:5B:2C:61:27:61:52:BC:B4:F5:3E:83
X509v3 Authority Key Identifier:
keyid:B4:DD:6D:65:8E:14:57:1E:83:9F:78:13:DA:31:F2:21:74:22:81:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tN1tZY4UVx6Dn3gT2jHyIXQigY4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/HrpE7h99w-WPWyxhJ2FSvLT1PoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.52.0/22
IPv6:
2a0b:8340::/29
Signature Algorithm: sha256WithRSAEncryption
7b:68:de:91:ea:99:69:41:48:3c:68:84:75:42:ed:81:51:e7:
36:a4:99:83:41:56:45:a6:42:08:6a:ac:d3:4f:67:a9:69:cd:
84:96:05:5a:4d:3a:86:a2:a6:c8:a7:ed:e0:18:06:9c:97:19:
e5:cd:ef:73:22:04:a8:84:73:a0:7e:9a:f8:86:f2:2b:e6:8d:
d7:6e:9c:ea:9a:e8:8c:32:83:26:62:3a:aa:7e:78:5b:4e:ae:
38:0d:29:87:df:c7:d1:c7:ba:c0:a4:47:5c:74:38:02:ab:01:
64:84:9c:e7:5e:1c:24:61:8c:51:f2:bc:c8:96:bd:b2:18:07:
85:02:a1:16:08:a0:7f:cd:b1:e7:9c:2f:52:2a:87:60:10:b5:
9c:c1:26:1b:92:21:2d:5b:a4:3d:ce:45:b4:8f:ab:b6:82:f9:
7c:6e:d6:3d:ce:9b:fc:66:d5:8b:a1:0f:96:4b:22:c9:ed:2d:
ea:3c:2c:7a:b1:f6:ef:b6:b8:4c:2c:35:ce:97:63:a9:87:96:
d9:f5:8c:92:07:a7:92:bf:72:2e:75:60:14:d9:20:93:25:d2:
2a:07:d3:a7:42:10:51:59:19:39:de:99:63:f2:d0:fb:2b:49:
78:7a:79:b3:3d:cc:07:d1:12:98:0e:14:66:dd:fa:d8:d4:1e:
ac:9e:05:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:27 2024 by rpki-client on console-ams.rpki-client.org