Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/HKd9WJes0XrEc0riz1XpPb9kyYE.roa
File: HKd9WJes0XrEc0riz1XpPb9kyYE.roa (raw, json)
Hash identifier: fSlz65nTWULkTBrP+eHqqWZQG4cTZMtlVf1E49B1288=
Subject key identifier: 1C:A7:7D:58:97:AC:D1:7A:C4:73:4A:E2:CF:55:E9:3D:BF:64:C9:81
Certificate issuer: /CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Certificate serial: 0183D3061C06CACADD3565A96E27A2F78B52
Authority key identifier: DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/HKd9WJes0XrEc0riz1XpPb9kyYE.roa
Signing time: Thu 13 Oct 2022 20:25:36 +0000
ROA not before: Thu 13 Oct 2022 20:25:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 94.154.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d3:06:1c:06:ca:ca:dd:35:65:a9:6e:27:a2:f7:8b:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Validity
Not Before: Oct 13 20:25:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ca77d5897acd17ac4734ae2cf55e93dbf64c981
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a6:53:95:c8:08:a1:74:ae:3f:57:8b:33:13:
90:fd:63:4c:b2:1b:f9:4f:16:07:5b:98:c2:71:1f:
74:69:16:27:83:a4:32:22:93:60:70:b7:69:1f:3d:
78:d7:1f:ac:ec:08:c6:57:2d:a9:72:73:54:14:6b:
19:41:ae:ec:0c:b9:22:d7:e7:bd:7d:73:cf:b8:56:
c6:fc:ae:3b:ee:ed:71:2a:72:27:5a:41:f9:78:af:
01:ec:18:6a:be:31:a5:a4:4c:1b:8c:6e:cd:9e:80:
e7:f0:31:33:fd:fa:2b:85:5c:b4:5b:fd:fe:ac:20:
2d:f7:73:cd:0e:e9:8b:77:af:00:73:e2:46:94:bb:
9d:5d:21:6b:a8:b4:b6:83:d3:4e:ad:01:3d:9c:31:
8f:78:a1:03:1f:7a:70:d9:58:b2:dd:2f:95:71:8a:
56:2e:30:57:e6:d4:c3:6f:3a:73:05:b6:9c:a0:47:
0b:45:de:18:64:b3:ef:1d:d9:53:7c:1f:fb:2d:50:
a3:fb:05:8c:44:d5:c1:2f:80:66:8d:57:4a:38:ef:
47:38:b7:f2:7e:71:45:19:bc:96:5e:80:3e:0e:84:
fa:16:79:c6:94:cf:23:e9:4e:28:44:3b:c9:ea:10:
80:ae:c0:b2:d5:2f:94:f4:25:3a:f2:ce:28:f9:d6:
90:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:A7:7D:58:97:AC:D1:7A:C4:73:4A:E2:CF:55:E9:3D:BF:64:C9:81
X509v3 Authority Key Identifier:
keyid:DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/HKd9WJes0XrEc0riz1XpPb9kyYE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/3BHa76_4HH5QEnjYfZvCsgTXEVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.45.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:ee:bd:47:66:3b:32:81:68:38:c0:a6:c9:03:d5:20:dc:a5:
93:ce:ee:20:cc:34:16:76:ed:4a:4a:83:79:ce:82:b6:ad:91:
73:22:ec:d5:e1:e0:22:99:47:02:3c:b1:d8:53:c0:47:54:b5:
63:51:b4:f1:41:ac:d3:03:a4:5a:21:af:0c:a1:a2:e4:1c:71:
c2:ed:dd:8b:79:76:9d:a3:69:a1:dd:13:89:5b:22:0c:22:c6:
90:78:6c:24:8b:c1:66:31:d4:2c:fb:0d:eb:b0:07:66:60:23:
68:93:71:b6:68:28:d4:72:71:56:b5:db:3d:67:4f:b8:7f:5b:
3e:42:1d:95:fb:58:7f:9b:81:0f:1e:e4:72:42:fd:59:b6:94:
58:1c:32:14:e8:e9:13:e5:5b:84:ed:b0:8a:b4:e6:bb:3d:a5:
57:9f:2c:fd:7f:7a:e3:f9:03:2c:c5:52:13:f7:93:67:06:aa:
f4:0f:e3:2b:7d:dc:4a:65:17:eb:d1:ca:16:18:89:ba:25:ea:
22:40:0f:2c:33:a1:ae:14:18:6c:e6:05:86:22:ab:a2:dd:1f:
d7:68:d5:16:cd:1d:94:50:c2:79:ae:14:c0:76:0c:80:c1:50:
1f:7d:59:6f:b4:1e:d7:bb:85:d2:2b:44:bb:6e:80:84:ff:31:
0d:ee:ce:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:31 2024 by rpki-client on console-fra.rpki-client.org