Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/HCoqKBZqmba0y9UqLPa3RXpXPOM.roa
File: HCoqKBZqmba0y9UqLPa3RXpXPOM.roa (raw, json)
Hash identifier: ZDnbg96nGEALEDurZSd1+hVN88nuh1GA5iZ9cjBRodY=
Subject key identifier: 1C:2A:2A:28:16:6A:99:B6:B4:CB:D5:2A:2C:F6:B7:45:7A:57:3C:E3
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 05695F76
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/HCoqKBZqmba0y9UqLPa3RXpXPOM.roa
Signing time: Sat 01 Jan 2022 15:07:19 +0000
ROA not before: Sat 01 Jan 2022 15:07:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 32727
IP address blocks: 85.203.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90791798 (0x5695f76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Jan 1 15:07:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c2a2a28166a99b6b4cbd52a2cf6b7457a573ce3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:7f:98:20:64:c7:f3:f8:fd:6f:36:2b:1b:0d:
64:51:7a:1e:53:cd:52:cb:76:c1:e0:0a:57:09:6e:
2e:52:e1:da:b8:09:f7:db:8e:c0:ec:1d:68:ed:57:
f3:44:98:72:9d:c0:8e:38:51:99:67:2a:bf:fe:e7:
76:15:0b:2c:23:ec:7b:f6:1c:ac:50:b8:0f:74:a2:
f8:96:bc:b9:7d:ac:02:65:6a:31:a0:48:ca:ea:18:
b8:e6:88:af:35:c8:4f:2c:a3:09:d5:00:5f:00:bf:
10:30:ba:d0:19:78:16:a8:1e:f9:97:bc:8a:02:31:
61:88:bf:5d:56:6e:ff:ab:b1:83:b3:56:cd:18:59:
e5:b6:7d:26:cd:7d:9f:6d:47:b8:c2:e0:0c:92:23:
00:f2:81:4d:f8:5b:11:5f:bb:a4:52:e6:6c:11:d2:
9a:66:19:96:38:c7:bd:9d:b4:9d:37:03:dd:91:d3:
a1:bf:aa:90:8e:b5:f2:f5:76:4b:34:22:ba:2c:12:
8c:0d:45:e0:2a:9e:17:6f:48:91:23:7d:0f:9f:b1:
93:2b:40:8a:34:6d:e0:46:4a:37:b5:57:c4:aa:9c:
50:b5:76:35:20:a1:72:e3:c4:32:49:40:5e:94:37:
1d:f6:90:c3:ae:e6:66:de:be:7b:27:9e:0e:b0:f7:
81:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:2A:2A:28:16:6A:99:B6:B4:CB:D5:2A:2C:F6:B7:45:7A:57:3C:E3
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/HCoqKBZqmba0y9UqLPa3RXpXPOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.54.0/24
Signature Algorithm: sha256WithRSAEncryption
05:a5:5a:aa:95:3b:ca:37:3a:f8:3b:cc:ab:b6:c9:9c:3e:5b:
5e:69:07:6c:38:bf:bf:9f:a2:74:7b:71:39:43:06:e8:0e:67:
cc:1f:92:ea:65:ef:02:7c:bb:35:ec:17:5a:2e:68:65:b8:c5:
42:a9:8e:f7:ac:cf:45:b8:3c:11:84:e2:eb:23:ac:b5:fe:9d:
1f:46:2f:1e:9a:c6:eb:4b:ff:d8:02:67:55:1e:a1:64:66:13:
53:b2:41:80:32:f5:cb:d5:d2:65:83:fe:23:5a:53:2c:a0:1b:
59:44:3e:4d:7d:6b:f0:67:a6:db:86:86:3e:90:31:e1:2c:d7:
e9:ce:25:2b:c7:d9:40:e0:d3:a4:62:46:6b:bf:d4:fa:7f:8e:
be:54:75:32:56:95:c5:2b:e0:41:c4:62:b4:0b:49:10:ec:c1:
1a:73:e0:74:ee:f7:eb:f3:88:d0:84:2a:fc:7e:5f:1d:74:43:
20:08:b6:cc:aa:b7:e3:66:7a:37:69:b2:c6:21:5a:d1:58:af:
ca:91:cb:e2:79:dd:5d:84:aa:ae:36:8b:35:c8:df:97:3c:49:
c8:4f:87:73:5d:a4:f9:53:db:ec:40:f0:10:73:2d:5e:cc:d1:
fd:51:56:46:3a:0e:6b:d8:b5:e6:9f:12:3b:14:e9:80:71:5e:
25:96:c7:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:07 2023 by rpki-client on console-fra.rpki-client.org