Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/c758a2-e70c-4e3e-a6b2-dcef869046ca/1/hCX_ummEuhumm8ECUrE-XBAy_8M.roa
File: hCX_ummEuhumm8ECUrE-XBAy_8M.roa (raw, json)
Hash identifier: 7GTOkZ7gtGZatWOYPVVkU6ZSAuLtvX+m8tNWA9VoEGg=
Subject key identifier: 84:25:FF:BA:69:84:BA:1B:A6:9B:C1:02:52:B1:3E:5C:10:32:FF:C3
Certificate issuer: /CN=0f61618fcd4ac64240b15c1dfa36e671031759ad
Certificate serial: 0C732713
Authority key identifier: 0F:61:61:8F:CD:4A:C6:42:40:B1:5C:1D:FA:36:E6:71:03:17:59:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2Fhj81KxkJAsVwd-jbmcQMXWa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/c758a2-e70c-4e3e-a6b2-dcef869046ca/1/hCX_ummEuhumm8ECUrE-XBAy_8M.roa
Signing time: Sat 01 Jan 2022 13:07:24 +0000
ROA not before: Sat 01 Jan 2022 13:07:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204938
IP address blocks: 185.224.0.0/24 maxlen: 24
185.224.1.0/24 maxlen: 24
185.224.2.0/24 maxlen: 24
185.224.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 208873235 (0xc732713)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f61618fcd4ac64240b15c1dfa36e671031759ad
Validity
Not Before: Jan 1 13:07:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8425ffba6984ba1ba69bc10252b13e5c1032ffc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:dc:a9:a9:3a:8e:bb:e1:3f:c0:be:ff:7c:66:
d4:47:33:5d:33:db:29:bd:aa:cd:32:ea:cb:95:53:
e8:58:6a:42:01:c8:63:3b:d4:e8:60:40:06:45:83:
a0:56:f0:47:3a:54:41:46:b9:16:6d:60:8c:d7:7e:
f7:da:15:41:60:ea:40:42:ae:7e:af:89:ac:cb:40:
7d:ea:ee:1e:dd:2e:ec:a1:25:d9:13:1a:4b:f5:93:
73:fa:0e:89:9b:b5:e5:61:79:58:48:a2:10:86:4b:
1b:67:a4:d5:b6:31:6c:45:0d:12:6f:14:e6:0d:71:
fc:83:02:cb:fc:41:cd:22:be:0d:6c:87:ff:5f:20:
de:9e:6e:22:c7:b0:07:ba:de:07:43:43:4f:14:e4:
d7:7f:8e:f5:19:40:c2:f6:d3:44:73:0b:03:19:99:
86:64:64:45:45:cb:24:5a:70:de:67:dc:bc:90:bd:
49:6c:e9:eb:66:75:d5:e7:a7:94:01:3c:b6:c9:b9:
67:90:11:a3:a3:71:35:74:1a:ae:ca:05:d2:d8:49:
0d:57:43:66:b7:76:ee:b9:4f:96:d8:ef:37:c5:95:
c2:9e:c5:49:99:f6:81:84:a3:ee:e9:63:2d:8d:51:
1e:7d:9f:5a:ea:55:ed:c2:27:6d:5e:1e:e3:95:67:
2b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:25:FF:BA:69:84:BA:1B:A6:9B:C1:02:52:B1:3E:5C:10:32:FF:C3
X509v3 Authority Key Identifier:
keyid:0F:61:61:8F:CD:4A:C6:42:40:B1:5C:1D:FA:36:E6:71:03:17:59:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2Fhj81KxkJAsVwd-jbmcQMXWa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/c758a2-e70c-4e3e-a6b2-dcef869046ca/1/hCX_ummEuhumm8ECUrE-XBAy_8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/c758a2-e70c-4e3e-a6b2-dcef869046ca/1/D2Fhj81KxkJAsVwd-jbmcQMXWa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.224.0.0/22
Signature Algorithm: sha256WithRSAEncryption
05:fe:7a:15:ce:d3:d5:8d:32:07:db:4d:76:44:17:28:79:9f:
7b:0d:50:d6:cd:ed:3c:09:75:e4:37:c6:3a:51:99:70:20:ec:
f5:1e:b5:72:06:d5:9a:2c:25:1e:0b:f4:92:39:82:f3:be:f6:
b5:55:09:5d:3c:91:dd:ed:45:19:7d:22:53:b2:f0:68:d4:cc:
8a:6c:a0:25:58:54:12:73:55:99:dd:ec:5b:36:88:f6:77:84:
18:79:26:55:0e:07:b3:4c:50:3a:3a:16:8f:11:5e:db:fc:53:
63:a2:9b:bc:03:10:ff:3d:0b:0f:4e:80:de:28:6a:19:ac:83:
57:60:9e:83:84:86:ae:6e:d4:87:02:ed:ec:d2:e2:b2:e2:44:
8b:21:31:d4:53:a9:27:e6:dd:66:8d:a9:ca:e5:22:d4:a3:57:
83:28:83:6e:17:91:30:c0:e3:da:b6:0d:ac:f0:e4:41:fa:51:
31:14:b0:66:24:b2:a8:5a:2d:ba:18:e8:df:00:67:0c:cd:4d:
45:fe:a6:d9:59:54:5e:fa:63:ac:4b:ef:3d:21:56:8a:92:1f:
2c:47:13:0a:02:51:03:5d:79:12:07:84:eb:26:51:0a:25:5c:
2a:85:5d:0e:0b:35:7a:53:ff:a1:1d:77:4b:14:04:44:24:8f:
c7:16:8c:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:36 2023 by rpki-client on console-ams.rpki-client.org