Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/670d1b-5129-4146-be5b-78c04bcedad3/1/H2CIgdcSILVZyOSDokG2p7j2_N8.roa
File: H2CIgdcSILVZyOSDokG2p7j2_N8.roa (raw, json)
Hash identifier: 53bfe2Cev5PLQwm2ltIlTHwMsTYP3FgFlLGwUKR7lhw=
Subject key identifier: 1F:60:88:81:D7:12:20:B5:59:C8:E4:83:A2:41:B6:A7:B8:F6:FC:DF
Certificate issuer: /CN=c05074877f78dbf49bd37a215491e69a0f8b6e43
Certificate serial: 071FFF
Authority key identifier: C0:50:74:87:7F:78:DB:F4:9B:D3:7A:21:54:91:E6:9A:0F:8B:6E:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wFB0h3942_Sb03ohVJHmmg-LbkM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/670d1b-5129-4146-be5b-78c04bcedad3/1/H2CIgdcSILVZyOSDokG2p7j2_N8.roa
Signing time: Tue 14 Jun 2022 05:46:44 +0000
ROA not before: Tue 14 Jun 2022 05:46:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49183
IP address blocks: 46.173.173.0/24 maxlen: 24
46.173.175.0/24 maxlen: 24
94.231.179.0/24 maxlen: 24
94.231.178.0/24 maxlen: 24
94.231.177.0/24 maxlen: 24
94.231.176.0/24 maxlen: 24
94.231.180.0/24 maxlen: 24
94.231.186.0/24 maxlen: 24
94.231.183.0/24 maxlen: 24
94.231.182.0/24 maxlen: 24
94.231.181.0/24 maxlen: 24
94.231.187.0/24 maxlen: 24
46.173.160.0/22 maxlen: 22
46.173.164.0/22 maxlen: 22
94.231.191.0/24 maxlen: 24
94.231.190.0/24 maxlen: 24
94.231.189.0/24 maxlen: 24
94.231.188.0/24 maxlen: 24
46.173.172.0/24 maxlen: 24
46.173.168.0/22 maxlen: 22
2001:678:d94::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 466943 (0x71fff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c05074877f78dbf49bd37a215491e69a0f8b6e43
Validity
Not Before: Jun 14 05:46:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f608881d71220b559c8e483a241b6a7b8f6fcdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:e3:73:32:cf:fa:53:c0:7b:53:9e:4a:6f:98:
43:8d:c1:d7:a0:92:0a:26:89:6a:a9:22:2a:7d:cb:
9d:14:5d:9a:c7:1a:2d:bf:93:03:ba:4c:4a:7d:a2:
2e:14:4f:b0:7c:0c:8f:9c:76:cc:17:2c:8b:c2:7d:
4c:f5:3d:17:5a:be:95:b1:1b:0e:b7:41:ee:9b:0a:
53:eb:73:6c:a4:71:00:08:73:99:04:8c:ed:17:83:
a9:1a:ba:80:8f:53:c5:c3:0c:e5:97:73:d5:9a:73:
a7:fd:f8:2a:b0:b6:ed:cf:cb:bd:31:3a:65:05:99:
1e:48:5c:9b:e8:e1:e5:67:8d:be:86:ad:9a:e0:b1:
31:6c:1b:1c:29:16:c8:8e:ca:7d:ab:bb:0c:57:de:
27:38:63:52:0e:00:f0:06:69:01:6c:bc:26:cc:1e:
c8:d5:60:66:06:06:fb:47:8c:b4:17:2b:b9:48:ed:
2c:7b:02:9c:75:0a:37:84:9b:43:d1:08:5f:df:2f:
06:2e:e9:f1:a6:c4:66:78:c5:ba:61:66:16:72:77:
97:85:8e:11:c8:eb:51:99:05:1b:3e:e1:fd:5d:37:
84:eb:0e:78:5b:3e:a1:c2:9d:4f:a5:82:7e:42:1e:
06:10:58:83:b6:4e:6d:ee:28:ab:a3:9b:92:90:2c:
d9:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:60:88:81:D7:12:20:B5:59:C8:E4:83:A2:41:B6:A7:B8:F6:FC:DF
X509v3 Authority Key Identifier:
keyid:C0:50:74:87:7F:78:DB:F4:9B:D3:7A:21:54:91:E6:9A:0F:8B:6E:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wFB0h3942_Sb03ohVJHmmg-LbkM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/670d1b-5129-4146-be5b-78c04bcedad3/1/H2CIgdcSILVZyOSDokG2p7j2_N8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/670d1b-5129-4146-be5b-78c04bcedad3/1/wFB0h3942_Sb03ohVJHmmg-LbkM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.173.160.0-46.173.173.255
46.173.175.0/24
94.231.176.0/21
94.231.186.0-94.231.191.255
IPv6:
2001:678:d94::/48
Signature Algorithm: sha256WithRSAEncryption
10:28:aa:ef:ce:2c:d3:69:4f:13:88:ae:9b:52:ba:8d:28:51:
e7:00:51:ce:2a:3e:57:19:23:12:a9:27:58:9e:f9:90:96:16:
b1:3e:4a:bf:cb:11:81:62:ea:3f:61:80:3f:ee:a0:58:a6:93:
a2:be:4d:4b:40:bd:58:6c:31:f2:11:cb:71:6f:51:89:17:08:
b9:57:d3:dc:80:76:66:79:8a:e5:25:b5:ef:08:f3:4f:80:42:
0c:39:94:e3:83:93:c1:35:10:b0:40:f8:22:aa:7d:80:86:92:
0b:9e:5b:f9:6f:59:63:cf:46:af:cb:bb:59:d3:da:e7:2f:56:
40:7a:f7:92:43:7c:dd:50:64:08:96:25:ab:59:a4:a4:80:ba:
9c:64:88:14:d4:23:03:a2:b7:0f:bc:51:78:0e:99:cd:4d:fe:
60:16:6b:8d:e6:0c:a1:c3:af:61:67:ec:cf:e6:29:a3:86:a3:
2a:0c:f2:3f:ed:d2:76:c8:ee:fc:db:78:47:1c:cb:70:f1:0a:
8e:f8:5e:18:56:cb:df:7e:91:44:9c:66:61:8e:37:07:98:9c:
fd:cf:db:4e:70:a6:76:21:b9:9a:3b:1d:e4:43:a8:c6:25:95:
b0:b4:2c:c3:4f:04:f2:df:6a:9b:8e:36:7c:a6:a2:ca:d9:45:
10:cf:a3:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:03 2024 by rpki-client on console-fra.rpki-client.org