Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/Hugn37bFHcWwKGSt1o973ACJ8GU.roa
File: Hugn37bFHcWwKGSt1o973ACJ8GU.roa (raw, json)
Hash identifier: ZzHm5b1lyMXBpRgWWVX39ARNBIleqAStqnMrMdOuRWE=
Subject key identifier: 1E:E8:27:DF:B6:C5:1D:C5:B0:28:64:AD:D6:8F:7B:DC:00:89:F0:65
Certificate issuer: /CN=c7f04b78b2eedf998edd5cc1e88671c8d10f1865
Certificate serial: A26F12
Authority key identifier: C7:F0:4B:78:B2:EE:DF:99:8E:DD:5C:C1:E8:86:71:C8:D1:0F:18:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x_BLeLLu35mO3VzB6IZxyNEPGGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/Hugn37bFHcWwKGSt1o973ACJ8GU.roa
Signing time: Tue 01 Feb 2022 07:08:28 +0000
ROA not before: Tue 01 Feb 2022 07:08:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206618
IP address blocks: 194.114.80.0/23 maxlen: 23
194.114.85.0/24 maxlen: 24
193.23.96.0/24 maxlen: 24
194.114.96.0/24 maxlen: 24
194.114.96.0/23 maxlen: 23
194.114.96.0/22 maxlen: 22
194.114.94.0/23 maxlen: 23
194.114.98.0/23 maxlen: 23
194.114.97.0/24 maxlen: 24
194.114.100.0/22 maxlen: 22
194.114.104.0/21 maxlen: 21
194.114.104.0/24 maxlen: 24
194.114.125.0/24 maxlen: 24
194.114.126.0/24 maxlen: 24
194.114.32.0/23 maxlen: 23
194.114.40.0/23 maxlen: 23
143.163.1.0/24 maxlen: 24
194.114.44.0/22 maxlen: 22
194.114.48.0/21 maxlen: 21
143.163.12.0/22 maxlen: 22
194.114.56.0/22 maxlen: 22
143.163.16.0/23 maxlen: 23
194.114.61.0/24 maxlen: 24
194.114.64.0/23 maxlen: 23
194.114.62.0/23 maxlen: 23
194.114.62.0/24 maxlen: 24
194.114.63.0/24 maxlen: 24
194.114.66.0/23 maxlen: 23
194.114.70.0/23 maxlen: 23
194.114.74.0/24 maxlen: 24
194.114.78.0/23 maxlen: 23
194.114.77.0/24 maxlen: 24
2a01:4dc0::/42 maxlen: 42
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10645266 (0xa26f12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7f04b78b2eedf998edd5cc1e88671c8d10f1865
Validity
Not Before: Feb 1 07:08:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ee827dfb6c51dc5b02864add68f7bdc0089f065
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e1:b0:cb:a3:ac:45:08:80:97:9f:51:76:0d:
73:25:da:9c:64:4e:32:c1:aa:57:e2:eb:9a:e6:72:
36:3a:a0:33:a9:6c:33:47:d1:1f:f6:a9:7e:5f:e5:
2e:a2:b0:b9:a8:ce:14:38:d0:36:72:49:34:6d:67:
af:6b:28:cc:fd:45:cc:4c:01:ce:31:7d:98:bc:8b:
c3:2e:09:ad:0a:3f:6a:ff:f2:61:02:cf:21:23:75:
25:fc:f6:1f:7c:38:28:41:e0:97:ca:ab:c3:6b:dc:
05:52:c5:51:0f:a9:cb:09:be:7d:74:05:cd:83:ba:
65:0d:2d:1f:43:af:5c:5a:24:25:75:f1:e9:4d:3e:
fa:8f:f6:5e:e0:b0:42:e8:7a:33:52:80:22:45:f6:
98:4a:96:7b:f0:63:16:0f:d3:cd:19:24:94:03:e3:
0c:ed:68:c4:52:d8:21:76:b5:5c:7f:51:6d:0c:fc:
1e:c3:a0:9c:09:3d:18:8d:e7:dc:2e:4b:4c:31:a6:
e7:ed:8d:fe:74:c5:e2:a1:7e:0e:b5:97:07:b0:68:
f7:95:d7:9b:30:b3:2c:27:f4:66:10:af:0f:e5:e2:
5a:01:bf:d2:e6:bf:e7:19:f6:31:83:6d:38:09:64:
95:ea:93:b2:81:b7:ed:81:b6:c2:5a:a0:1a:cb:20:
80:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:E8:27:DF:B6:C5:1D:C5:B0:28:64:AD:D6:8F:7B:DC:00:89:F0:65
X509v3 Authority Key Identifier:
keyid:C7:F0:4B:78:B2:EE:DF:99:8E:DD:5C:C1:E8:86:71:C8:D1:0F:18:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x_BLeLLu35mO3VzB6IZxyNEPGGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/Hugn37bFHcWwKGSt1o973ACJ8GU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/x_BLeLLu35mO3VzB6IZxyNEPGGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.163.1.0/24
143.163.12.0-143.163.17.255
193.23.96.0/24
194.114.32.0/23
194.114.40.0/23
194.114.44.0-194.114.59.255
194.114.61.0-194.114.67.255
194.114.70.0/23
194.114.74.0/24
194.114.77.0-194.114.81.255
194.114.85.0/24
194.114.94.0-194.114.111.255
194.114.125.0-194.114.126.255
IPv6:
2a01:4dc0::/42
Signature Algorithm: sha256WithRSAEncryption
2e:ec:ec:3c:a6:a8:c2:39:f6:56:d9:86:9d:0a:79:3d:c3:71:
ab:c7:ce:9e:f8:93:59:02:71:a3:d8:2e:4b:f9:5d:b6:ae:59:
ac:55:35:3b:f5:be:a8:2d:91:47:20:f1:f6:94:e5:8f:84:e2:
7a:cc:9b:7a:e5:c6:16:59:ee:b0:9d:8f:13:fd:65:94:c8:e4:
9d:e0:06:2d:19:bd:6d:b8:48:8d:9e:4b:bd:10:f8:b5:cd:00:
05:be:9e:4b:a6:bf:6f:99:a5:15:25:e6:c4:2c:e7:6a:94:fc:
43:6c:e0:5c:a3:e4:28:c3:f4:e2:d7:9b:90:e0:b6:9e:9a:93:
b4:59:56:e6:48:f5:98:5e:52:59:fe:57:bf:02:45:cc:4f:3d:
07:86:05:66:f5:92:5c:95:4e:ef:95:4d:b5:c0:12:3c:b9:b0:
b7:ad:d0:43:57:cd:78:b7:5b:7c:9f:7d:1a:25:ba:8f:d1:bf:
1a:0e:ec:6e:93:84:a4:32:52:46:76:a0:fc:11:eb:55:96:c5:
ca:7e:29:46:00:76:89:3e:48:b4:d8:90:41:ec:94:cd:35:0d:
c8:0a:44:d8:37:d0:40:2d:97:34:07:52:c1:fe:67:88:29:3c:
92:42:57:6e:d3:87:5a:8a:39:cb:f9:dd:b3:93:63:2a:3a:3a:
4a:e6:64:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:18 2023 by rpki-client on console-ams.rpki-client.org