Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/f41051-0810-43ff-b196-cfefdfdfbe6b/1/HzOvM5diIxiUK2LR8UiDVji5a7E.roa
File: HzOvM5diIxiUK2LR8UiDVji5a7E.roa (raw, json)
Hash identifier: u7Yo+O7xMR5qdHoChOxWXh4SJO/1FQGUfrpW/cq7cjM=
Subject key identifier: 1F:33:AF:33:97:62:23:18:94:2B:62:D1:F1:48:83:56:38:B9:6B:B1
Certificate issuer: /CN=d26a4409ea91f506d633871c6c35540d460337d1
Certificate serial: 0176D8
Authority key identifier: D2:6A:44:09:EA:91:F5:06:D6:33:87:1C:6C:35:54:0D:46:03:37:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0mpECeqR9QbWM4ccbDVUDUYDN9E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/f41051-0810-43ff-b196-cfefdfdfbe6b/1/HzOvM5diIxiUK2LR8UiDVji5a7E.roa
Signing time: Wed 09 Feb 2022 15:38:44 +0000
ROA not before: Wed 09 Feb 2022 15:38:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60203
IP address blocks: 185.62.21.0/24 maxlen: 24
185.62.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95960 (0x176d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d26a4409ea91f506d633871c6c35540d460337d1
Validity
Not Before: Feb 9 15:38:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f33af3397622318942b62d1f148835638b96bb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:6a:26:3c:52:d8:ac:50:d9:08:81:96:3c:89:
9f:e4:e6:21:2d:a3:8b:08:c1:eb:a6:0e:83:bb:7e:
7c:7d:a7:fb:9b:f9:b9:e4:7d:98:3b:37:70:7d:2c:
69:3b:ed:5b:39:76:85:ed:fe:66:44:32:44:bc:fe:
52:cf:d3:c8:d8:5a:5e:62:07:46:0a:68:97:4a:28:
33:01:86:fe:b3:91:d9:24:df:6b:37:67:44:cf:fb:
2b:9c:1f:fb:9d:86:61:2e:61:82:cb:9c:c5:c4:a7:
be:8d:df:10:76:be:af:7a:fb:82:d9:fc:54:15:79:
92:8e:67:2b:d4:1e:74:e5:72:03:6f:ec:31:91:77:
c0:7b:a5:bb:0e:80:b4:72:00:64:db:92:0e:b5:72:
9a:63:5e:e2:49:d9:12:10:dd:dc:9f:bc:1c:39:d9:
ec:0f:ea:94:f2:c3:9c:66:cf:5a:1b:60:68:e0:01:
35:09:54:07:44:fe:d5:85:48:28:17:6e:c4:3d:42:
a5:19:ee:6a:ea:1a:07:ff:27:b4:65:88:74:47:2f:
a8:f1:2a:dc:26:6c:93:59:fa:33:c9:11:91:5c:d9:
7e:af:70:55:df:8f:84:66:77:dd:72:3f:e3:c2:49:
ce:95:ee:ab:d9:a3:3c:10:08:3f:ee:2a:4a:1d:f7:
cd:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:33:AF:33:97:62:23:18:94:2B:62:D1:F1:48:83:56:38:B9:6B:B1
X509v3 Authority Key Identifier:
keyid:D2:6A:44:09:EA:91:F5:06:D6:33:87:1C:6C:35:54:0D:46:03:37:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0mpECeqR9QbWM4ccbDVUDUYDN9E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f41051-0810-43ff-b196-cfefdfdfbe6b/1/HzOvM5diIxiUK2LR8UiDVji5a7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f41051-0810-43ff-b196-cfefdfdfbe6b/1/0mpECeqR9QbWM4ccbDVUDUYDN9E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.62.20.0/23
Signature Algorithm: sha256WithRSAEncryption
03:7e:8c:e7:b8:e0:3a:ab:a9:7e:a6:a9:66:23:ad:ae:7c:54:
c8:27:fe:0c:48:d6:2d:eb:5b:24:8c:01:ee:d2:d7:4a:bd:74:
71:6a:a2:4c:e7:8c:1f:77:4a:dd:2f:51:42:2f:64:83:a9:c0:
65:0e:16:b4:2e:c8:40:38:20:74:2c:1e:2f:50:72:a5:35:a8:
1c:61:fe:e9:71:3c:95:de:04:9d:81:fd:9a:07:c2:0b:de:c9:
df:a1:0c:79:46:09:1c:eb:f8:e0:db:a5:e9:f2:29:a4:56:f6:
05:8e:3a:4d:fd:88:97:92:60:46:2c:4a:e2:65:cf:79:0f:62:
d2:4f:8d:bf:55:db:66:1f:20:e2:cf:f2:f0:93:47:1c:31:26:
5c:87:6e:9c:f5:df:0f:a4:37:4b:21:6a:bc:99:fd:59:44:dd:
1d:6e:d8:e1:c0:22:dd:b2:55:52:a5:4f:ec:72:8d:84:ce:96:
fb:ef:c4:f1:10:49:3f:5a:f0:9b:ed:89:0f:b4:b0:50:4a:bf:
cc:45:0c:a2:b7:44:ad:87:82:de:5d:6e:21:67:8e:c8:0e:19:
8a:f3:b7:95:bd:fe:73:38:1e:af:83:b3:f9:7f:36:6b:35:a2:
6b:90:d4:35:3a:95:f7:1c:5a:1c:79:0b:f5:cb:2d:77:89:d2:
34:44:ef:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:20 2023 by rpki-client on console-ams.rpki-client.org