Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/Hrp-8vOqo0ZwEZuVufSpVzOejHE.roa
File: Hrp-8vOqo0ZwEZuVufSpVzOejHE.roa (raw, json)
Hash identifier: hB6CeUVCNOT5KiUzBraDoFUesJMqVshlfCXTnQvN5sc=
Subject key identifier: 1E:BA:7E:F2:F3:AA:A3:46:70:11:9B:95:B9:F4:A9:57:33:9E:8C:71
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 018437E3DA09B9A3BB4DB1E399F98E316F9A
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/Hrp-8vOqo0ZwEZuVufSpVzOejHE.roa
Signing time: Wed 02 Nov 2022 10:29:50 +0000
ROA not before: Wed 02 Nov 2022 10:29:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 185.148.243.0/24 maxlen: 24
185.148.241.0/24 maxlen: 24
185.174.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:37:e3:da:09:b9:a3:bb:4d:b1:e3:99:f9:8e:31:6f:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Nov 2 10:29:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1eba7ef2f3aaa34670119b95b9f4a957339e8c71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:a2:7b:32:2c:e1:72:89:67:99:f0:7a:d9:55:
9b:55:1e:a6:56:2a:d5:09:fc:8c:ff:4a:ee:a1:3f:
4f:5f:34:09:e9:dc:f6:bd:04:00:d5:c0:81:2c:17:
e5:36:66:51:73:1c:5f:3c:02:bf:48:fc:85:f8:c7:
80:4e:46:15:17:08:c9:db:44:c5:5e:06:05:f0:3b:
19:68:77:b4:5a:5a:03:46:79:1c:df:33:3b:f4:6a:
76:c1:33:b8:63:12:a2:a9:bf:d6:0e:43:16:0e:cc:
e6:d8:3e:0c:72:15:60:b7:d9:9c:a5:3e:1c:0e:f2:
c7:b7:ea:d7:8c:e9:90:81:0b:19:6f:d5:42:22:06:
3b:4f:cf:c5:fc:25:98:79:97:dc:91:7e:2c:83:7c:
ea:51:92:b6:3d:bf:b0:26:57:20:73:88:d7:c9:f8:
51:21:1e:5d:b0:7a:3e:ec:96:4d:ff:60:e5:d2:9e:
f6:5f:b2:0c:94:fa:2c:bd:24:30:23:ff:c3:55:a4:
db:5a:77:41:d0:55:49:0e:6e:8c:8e:cf:75:ca:e3:
d1:b4:dc:02:c2:ea:f8:d0:e4:fe:d9:df:e7:d5:61:
17:7a:8c:d0:8b:33:fc:56:89:db:1a:ad:6d:24:e4:
bd:29:f5:0c:ed:bb:4c:d2:5d:7e:f5:0b:0a:93:80:
1f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:BA:7E:F2:F3:AA:A3:46:70:11:9B:95:B9:F4:A9:57:33:9E:8C:71
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/Hrp-8vOqo0ZwEZuVufSpVzOejHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.148.241.0/24
185.148.243.0/24
185.174.21.0/24
Signature Algorithm: sha256WithRSAEncryption
10:67:1a:e9:4f:43:40:09:b3:69:0c:df:b0:5c:62:51:8b:cf:
0a:98:06:b7:08:16:89:36:ef:f2:b0:1b:33:58:05:78:d1:14:
38:17:64:1d:9b:b6:5f:74:a1:16:dc:aa:30:2e:41:3a:45:23:
00:3c:9a:dc:14:fb:67:cd:75:76:e2:18:fe:81:8c:94:1e:b5:
ee:13:b1:5b:51:59:28:71:06:79:47:2f:0e:d4:c2:63:06:c9:
ab:25:ca:89:e3:6a:6c:78:4e:8b:67:4f:ff:85:15:4f:4b:ec:
ea:86:36:06:d6:ab:3c:7c:68:93:95:9c:5e:f5:52:50:82:98:
ab:0d:ad:db:75:3d:15:b0:ca:7c:9d:17:45:c0:be:cb:f7:a0:
0e:48:cb:da:90:bf:e5:b7:3e:13:ee:fa:73:83:7b:81:d2:42:
ce:c2:ab:c9:03:52:59:c5:b1:df:a0:f4:4f:81:bd:37:1d:f7:
27:4b:db:85:cc:72:01:74:5e:54:15:87:c7:12:fb:92:cb:85:
fa:61:31:c7:89:72:6b:91:e2:f5:7c:3c:ab:9e:8e:a3:94:0c:
17:d6:e4:64:f4:5c:64:54:b9:2d:9b:2f:fa:f7:77:d5:eb:13:
8c:9b:fe:17:46:12:27:ae:c7:1d:a3:cc:82:eb:26:29:b2:76:
be:b3:c2:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:49 2024 by rpki-client on console-fra.rpki-client.org