Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/069008-2e4f-4323-b6a2-e8d6c2f071df/1/1HbFnja3K40mLeGYHiQWQINbBUI.roa
File: 1HbFnja3K40mLeGYHiQWQINbBUI.roa (raw, json)
Hash identifier: 4hBFfAX7uIZwhwImwIFWgXW8NiyjxdJI/F5K8FWix/0=
Subject key identifier: D4:76:C5:9E:36:B7:2B:8D:26:2D:E1:98:1E:24:16:40:83:5B:05:42
Certificate issuer: /CN=9fa7859dc39d4736142cf1e229c8ac4be623b903
Certificate serial: 03579884
Authority key identifier: 9F:A7:85:9D:C3:9D:47:36:14:2C:F1:E2:29:C8:AC:4B:E6:23:B9:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n6eFncOdRzYULPHiKcisS-YjuQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/069008-2e4f-4323-b6a2-e8d6c2f071df/1/1HbFnja3K40mLeGYHiQWQINbBUI.roa
Signing time: Sat 01 Jan 2022 03:01:23 +0000
ROA not before: Sat 01 Jan 2022 03:01:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 185.1.107.0/24 maxlen: 24
2001:7f8:c1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56072324 (0x3579884)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9fa7859dc39d4736142cf1e229c8ac4be623b903
Validity
Not Before: Jan 1 03:01:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d476c59e36b72b8d262de1981e241640835b0542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f7:7e:4e:a9:0c:a6:26:24:b8:11:b2:73:f3:
ee:e2:9a:52:dd:16:10:1b:c9:07:30:36:c6:ba:8a:
d8:83:52:b5:1d:5c:6a:ed:81:60:ea:74:16:93:33:
b5:ce:26:5d:93:98:8c:50:c6:ed:b8:0f:be:04:93:
12:9a:e4:56:92:1e:7e:72:70:0f:c1:97:4b:93:58:
bc:6f:0f:f5:79:8c:ba:f2:2a:30:d8:7a:6d:48:71:
f2:c7:e6:ca:5f:75:e8:5d:b4:1c:2a:c2:33:ae:fc:
f5:20:a0:6d:7b:f8:99:f4:c3:ff:ee:d1:15:3a:7f:
ef:99:96:76:0e:c6:5f:7f:cd:8d:3b:d4:2a:be:9e:
22:7e:77:cf:6c:68:8f:a3:39:dd:13:75:a4:ee:84:
7c:dc:39:d0:ed:97:c7:1a:f4:63:5e:b4:55:d2:42:
d3:73:bb:d6:b4:dc:78:ff:b2:7b:fa:74:d1:86:04:
48:ef:7a:67:f3:12:a1:bd:06:d5:d8:57:80:e2:e7:
64:7d:69:8e:e9:33:3f:86:c8:29:df:3b:07:f8:6a:
ce:ba:7f:0a:e1:ac:02:43:bc:db:86:4b:6c:ea:e8:
61:f7:7d:37:e5:e8:d8:3a:0a:f8:dc:e6:39:8b:7d:
d9:31:88:e5:43:55:58:e7:ce:4d:54:85:8e:d8:56:
69:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:76:C5:9E:36:B7:2B:8D:26:2D:E1:98:1E:24:16:40:83:5B:05:42
X509v3 Authority Key Identifier:
keyid:9F:A7:85:9D:C3:9D:47:36:14:2C:F1:E2:29:C8:AC:4B:E6:23:B9:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n6eFncOdRzYULPHiKcisS-YjuQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/069008-2e4f-4323-b6a2-e8d6c2f071df/1/1HbFnja3K40mLeGYHiQWQINbBUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/069008-2e4f-4323-b6a2-e8d6c2f071df/1/n6eFncOdRzYULPHiKcisS-YjuQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.107.0/24
IPv6:
2001:7f8:c1::/48
Signature Algorithm: sha256WithRSAEncryption
61:af:89:89:d6:9b:6a:e5:67:de:86:cb:32:fd:58:16:1b:7c:
2a:67:f3:94:3f:7a:2f:15:12:af:63:3b:d9:1c:50:06:71:ee:
1e:7a:6f:0d:c4:52:7a:44:65:7d:8d:c8:9b:d8:61:63:fa:16:
19:d6:6b:36:3b:64:fb:8e:56:a2:d6:fc:a8:44:4f:f3:2d:25:
4a:95:59:ed:f2:16:a3:5d:b5:e3:d7:ac:52:ee:af:3c:bf:0c:
95:80:9c:e4:50:6c:1a:f7:f8:66:31:b1:91:00:32:61:ce:25:
c4:4f:44:2e:d6:25:a9:cd:d0:8b:a3:10:e4:df:04:60:8e:5b:
47:8e:32:d9:25:be:2b:05:9f:79:13:3e:ff:3d:46:a6:88:b0:
7f:3a:c9:a5:a6:b7:f4:04:e7:88:23:ba:e9:2b:98:da:0b:44:
b5:29:91:e1:7b:7e:10:a6:a0:74:8d:d0:39:86:71:a4:7c:e1:
d3:22:83:95:4b:93:cb:3a:94:8f:b9:e4:e1:dc:a3:70:2b:05:
01:6f:2c:a9:97:1f:33:f3:67:72:e0:1f:b7:f2:0b:26:70:d6:
0f:2d:74:bc:84:95:e1:c7:a6:0b:6a:09:6e:25:df:0e:52:b1:
78:a9:67:de:af:be:78:90:74:fb:63:66:83:b6:54:cf:68:07:
0a:42:31:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:04 2023 by rpki-client on console-ams.rpki-client.org