Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/hAQHQq-dNw-IBj6mcNj5tqNXlXU.roa
File: hAQHQq-dNw-IBj6mcNj5tqNXlXU.roa (raw, json)
Hash identifier: uLXtNWrh0c6NkaP20gAcYlIhxR2KPYbaMQlMztLCFAo=
Subject key identifier: 84:04:07:42:AF:9D:37:0F:88:06:3E:A6:70:D8:F9:B6:A3:57:95:75
Certificate issuer: /CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Certificate serial: 018457E03C1122224035C92050A1122DDC68
Authority key identifier: F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/hAQHQq-dNw-IBj6mcNj5tqNXlXU.roa
Signing time: Tue 08 Nov 2022 15:33:43 +0000
ROA not before: Tue 08 Nov 2022 15:33:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48314
IP address blocks: 185.93.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:57:e0:3c:11:22:22:40:35:c9:20:50:a1:12:2d:dc:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Validity
Not Before: Nov 8 15:33:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=84040742af9d370f88063ea670d8f9b6a3579575
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:c0:e9:fb:30:fb:ed:94:78:8b:7a:b7:45:20:
a3:63:9b:26:44:62:cf:f3:5b:6d:81:7d:51:c2:57:
68:24:7c:be:48:d3:c0:c7:23:0d:30:6b:c5:08:50:
4d:95:82:99:7d:aa:26:85:8e:5e:40:d4:ad:26:fb:
ae:cd:03:3b:73:a7:72:1e:0c:4a:f3:1d:ea:0e:d4:
33:a7:8a:db:e1:53:14:7a:0a:07:8c:29:42:f7:f9:
ed:84:ce:d8:39:46:a2:22:bf:b0:e0:c6:a6:39:95:
c7:51:02:76:07:78:31:82:ef:d0:31:03:9f:06:59:
30:3d:16:fe:9c:03:7c:28:dc:28:75:1d:fc:f3:61:
21:1b:0d:5a:67:d2:f3:9f:81:8e:22:f1:96:81:b8:
ae:ae:5e:11:46:d0:90:9d:2f:f9:75:87:78:f2:ea:
59:1d:9f:ac:8a:1c:ef:3c:a4:73:9f:67:af:3f:4c:
f1:0b:4e:6f:77:1c:24:c0:a8:95:c8:aa:1c:2c:4e:
c1:56:2f:c1:15:37:b5:d1:74:d2:86:18:ad:7f:cb:
57:85:df:fc:87:28:20:54:e3:8e:d3:f3:c2:b2:a2:
48:1f:95:42:10:f7:e2:06:af:b7:9b:6d:ef:e2:c9:
81:c9:61:12:56:6b:9a:f8:bf:05:a6:16:3e:c1:76:
c0:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:04:07:42:AF:9D:37:0F:88:06:3E:A6:70:D8:F9:B6:A3:57:95:75
X509v3 Authority Key Identifier:
keyid:F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/hAQHQq-dNw-IBj6mcNj5tqNXlXU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.220.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:15:9d:95:0d:e4:b2:7c:48:b8:9f:8c:f2:07:d3:42:36:b9:
8c:63:ce:89:13:e9:6b:bd:07:7a:fa:ba:f3:c0:49:bb:e3:36:
ea:20:75:22:6e:aa:d2:72:87:6a:5a:c2:e6:b8:ac:77:5c:6b:
1e:d0:26:e7:cd:42:37:7f:bc:68:bc:07:40:43:87:3f:3e:d2:
08:40:dc:37:ee:95:c9:2e:22:d2:94:30:d6:cd:f0:fd:e9:5a:
bb:51:24:fb:71:c8:a4:11:69:40:ae:1f:76:1c:6a:4a:00:0b:
dd:33:4d:77:77:06:2d:cf:a7:48:55:07:79:0a:4c:2e:06:34:
4d:0a:19:10:d9:88:49:30:ad:f9:12:ee:57:a5:bd:75:85:24:
58:ab:90:bb:10:1d:cd:2e:ee:d8:aa:ee:61:22:bf:c2:42:8b:
44:47:a5:fb:c5:e3:03:f1:73:37:8a:d2:ae:c2:d0:c4:ee:1d:
d3:a0:fe:de:ea:79:41:2b:02:91:c5:ac:9f:6a:4f:ec:c6:70:
6b:83:5a:8f:bb:25:b9:f1:c3:a0:1b:ff:02:0e:17:e9:dc:52:
a0:e9:cc:82:97:21:be:44:3d:d4:c9:5f:7e:b8:a4:ea:76:f9:
23:3f:f2:6c:6b:51:40:0b:2b:4f:cf:3f:82:20:d0:5e:d9:3e:
27:07:a7:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:17 2024 by rpki-client on console-ams.rpki-client.org