Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/hoSA8zZuacicTY5Tw1sFKGXIAvQ.roa
File: hoSA8zZuacicTY5Tw1sFKGXIAvQ.roa (raw, json)
Hash identifier: byD2b6TfZs6/cXVUMMdc929GBrZ09x29tIKYgQjgFPA=
Subject key identifier: 86:84:80:F3:36:6E:69:C8:9C:4D:8E:53:C3:5B:05:28:65:C8:02:F4
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 07061035
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/hoSA8zZuacicTY5Tw1sFKGXIAvQ.roa
Signing time: Sat 01 Jan 2022 03:54:12 +0000
ROA not before: Sat 01 Jan 2022 03:54:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205962
IP address blocks: 185.200.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117837877 (0x7061035)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jan 1 03:54:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=868480f3366e69c89c4d8e53c35b052865c802f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f4:40:50:8f:19:d3:2e:50:a5:da:d0:7a:68:
d0:96:98:ad:41:74:d6:03:8f:f1:c3:b1:6f:54:18:
58:0f:d3:49:4d:43:2e:20:f1:85:b8:33:ad:72:b6:
69:67:d8:c4:96:2c:0a:48:99:4e:34:1c:db:53:6a:
07:59:db:d8:98:cf:50:04:10:15:05:d3:04:0b:44:
29:91:a4:ec:b8:b2:5a:b0:f0:76:32:cf:8e:1e:66:
6a:46:50:1c:c8:b0:fe:c0:b8:22:76:c9:af:db:3e:
bb:0e:77:8c:b2:52:0c:b9:05:f6:c3:8f:38:29:fe:
b9:26:a1:fa:a4:08:a6:d7:20:f3:0c:80:64:d3:e0:
48:91:6c:ec:b2:0f:32:09:3c:8e:eb:d4:76:8e:d3:
b9:09:c6:8e:7e:88:a7:e1:01:9c:4a:8a:92:a6:60:
a9:0d:8e:41:8f:cc:0b:f0:de:99:64:6b:bd:59:ee:
46:05:f5:06:18:14:f1:f2:0b:dc:11:c2:0d:93:97:
31:01:f3:a0:52:fe:27:41:4e:01:c3:1b:1f:36:64:
bb:b2:a7:8a:23:8e:13:fb:56:66:c4:c1:aa:77:3f:
97:5f:ae:44:99:54:89:50:90:30:30:8e:ef:f3:92:
97:35:26:87:81:54:3a:95:70:31:86:70:48:bf:dd:
d7:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:84:80:F3:36:6E:69:C8:9C:4D:8E:53:C3:5B:05:28:65:C8:02:F4
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/hoSA8zZuacicTY5Tw1sFKGXIAvQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.63.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:c3:8b:59:18:12:7f:85:2f:e7:5e:e1:20:db:2d:0f:d8:fe:
59:47:c9:5d:45:91:d4:a2:87:e0:88:33:45:5b:fb:bf:ac:a7:
48:0d:09:70:38:30:d4:a8:3b:4a:ec:0b:65:af:23:13:f0:48:
3d:60:d3:bf:f2:1e:b7:de:2a:42:9b:2d:41:e7:76:fe:ce:e7:
ef:56:b2:b2:17:2f:52:10:4d:21:79:c3:23:ca:84:93:ae:73:
3d:9b:d4:40:b5:24:ae:65:14:94:ca:9b:86:42:99:da:4f:b7:
b7:91:f3:8d:cd:ae:f2:9b:2b:6a:98:50:c2:3c:05:51:04:c4:
72:f8:1e:c7:f0:ed:d4:b9:61:8d:39:a8:90:81:0d:36:04:59:
00:97:0e:7c:22:ed:87:b2:6e:11:a9:0d:f9:89:65:21:19:3e:
b2:fc:3c:28:74:71:80:b4:47:4a:1d:70:99:50:aa:1b:ac:ef:
53:e4:6c:64:5c:ab:06:81:b5:35:fd:42:be:bb:04:e4:01:c8:
fb:b0:7e:f4:29:8a:80:40:db:4c:d1:07:f0:25:27:c0:88:9d:
ff:34:78:a2:3a:ca:f6:d2:17:22:f8:9e:c1:0d:1a:01:86:6b:
8d:9f:cb:40:36:47:92:df:b2:b3:95:91:50:73:ed:9a:26:71:
50:86:46:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:32 2023 by rpki-client on console-fra.rpki-client.org