Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/HKbETyFkfCLf4LYWSxfGgIAv1Lg.roa
File: HKbETyFkfCLf4LYWSxfGgIAv1Lg.roa (raw, json)
Hash identifier: 2dQtuX4Zg0EB6uyfPSZ9IZZoCXAIQtiZHhM1oSkA/bM=
Subject key identifier: 1C:A6:C4:4F:21:64:7C:22:DF:E0:B6:16:4B:17:C6:80:80:2F:D4:B8
Certificate issuer: /CN=0241ef4436142506f2659383c16ebda1e29b4f86
Certificate serial: 018460D4B60B30369027F8BAAA35C7C73634
Authority key identifier: 02:41:EF:44:36:14:25:06:F2:65:93:83:C1:6E:BD:A1:E2:9B:4F:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/HKbETyFkfCLf4LYWSxfGgIAv1Lg.roa
Signing time: Thu 10 Nov 2022 09:17:43 +0000
ROA not before: Thu 10 Nov 2022 09:17:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 195.47.207.0/24 maxlen: 24
193.164.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:60:d4:b6:0b:30:36:90:27:f8:ba:aa:35:c7:c7:36:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0241ef4436142506f2659383c16ebda1e29b4f86
Validity
Not Before: Nov 10 09:17:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ca6c44f21647c22dfe0b6164b17c680802fd4b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:21:ba:78:7e:78:67:d9:da:1e:da:d2:15:97:
ab:d3:9e:ca:23:51:c5:07:07:6f:0f:7b:4e:a9:40:
d3:a7:9e:d5:3e:5e:74:53:f7:ee:a9:ce:2a:81:b2:
0d:80:5b:63:83:70:3d:38:d5:02:e5:6d:5d:fa:46:
25:d2:27:94:2e:f8:0f:63:10:bc:d2:6e:90:ab:aa:
34:5f:94:ba:bb:84:68:ed:f7:9b:4e:7a:fd:6c:34:
1b:7f:c9:77:86:c2:a6:49:bd:89:de:a1:aa:e3:56:
bc:34:64:23:a0:96:e2:6c:e9:fd:7a:3a:95:19:dc:
8d:51:4d:88:56:21:7f:62:dc:5f:39:50:bc:62:46:
6c:bc:67:c5:36:b0:90:54:aa:a5:22:01:e4:04:23:
fe:72:42:fb:84:e2:96:e2:74:ca:b7:4d:4d:e5:ae:
bd:c2:dc:e1:94:c4:26:fb:88:e9:e3:ee:89:a4:ac:
e2:db:bb:4d:b4:23:16:88:85:f8:f6:3f:1d:64:9a:
bd:35:9e:43:ad:fe:0a:d0:88:4d:c5:29:a6:38:b9:
78:c6:34:37:4f:49:86:a0:f1:dd:d0:f4:45:bf:7f:
1c:63:94:20:6f:16:19:9d:92:09:0c:62:51:55:0e:
a5:55:04:ee:35:7f:86:4e:3b:20:02:e1:3e:a5:2a:
9f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:A6:C4:4F:21:64:7C:22:DF:E0:B6:16:4B:17:C6:80:80:2F:D4:B8
X509v3 Authority Key Identifier:
keyid:02:41:EF:44:36:14:25:06:F2:65:93:83:C1:6E:BD:A1:E2:9B:4F:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/HKbETyFkfCLf4LYWSxfGgIAv1Lg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.164.14.0/24
195.47.207.0/24
Signature Algorithm: sha256WithRSAEncryption
68:d6:e9:bc:84:ff:5d:4f:f8:3c:9a:d5:7f:24:5f:7f:b6:75:
11:b3:58:d0:7d:a4:ce:6a:0d:18:e4:f2:1e:a6:b5:ad:87:02:
24:6d:69:79:d3:6b:6b:69:5e:83:40:88:7a:b3:f4:2b:c6:6f:
aa:b8:d9:e4:47:a3:d4:8b:44:49:81:d8:16:25:dd:3c:6a:34:
ea:19:d3:9b:cb:72:96:31:49:33:ad:72:3b:26:52:ab:9c:d3:
de:a7:54:c2:d7:33:d2:cc:f1:13:2d:12:e8:0d:d4:d4:19:3d:
c6:36:47:8d:45:f6:76:48:50:54:47:65:88:d7:59:ee:7a:3d:
40:1e:8e:c7:a2:e7:be:2b:f2:10:20:19:f6:ee:7d:4d:d0:0d:
61:93:71:37:86:71:05:cc:55:cc:4e:31:69:ae:69:cb:7e:d8:
43:46:35:7d:7a:71:e1:c7:00:1d:4a:2e:98:70:6b:18:64:28:
f4:26:83:d4:3e:76:8b:15:5b:79:de:13:f5:86:5d:91:36:4b:
05:1d:e5:48:d5:4c:6a:93:4b:89:e0:b0:0d:c5:3b:ce:12:c9:
ff:3a:36:4b:d6:b9:39:6d:cc:6b:48:ea:42:1c:bf:43:4f:22:
ec:10:87:39:32:50:53:d1:b4:d2:a5:2a:4b:3c:87:42:0b:b7:
06:ee:12:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:10 2023 by rpki-client on console-fra.rpki-client.org