Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/hO1CethBng5XRgTG8Q2AQDcBnAo.roa
File: hO1CethBng5XRgTG8Q2AQDcBnAo.roa (raw, json)
Hash identifier: MmOTrEvqF3rFTAI0v/UZVFiHKUBCyz+LlYFeFkWRIvo=
Subject key identifier: 84:ED:42:7A:D8:41:9E:0E:57:46:04:C6:F1:0D:80:40:37:01:9C:0A
Certificate issuer: /CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Certificate serial: 0184BD58E7F03F5D3C79D075658D76905090
Authority key identifier: B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/hO1CethBng5XRgTG8Q2AQDcBnAo.roa
Signing time: Mon 28 Nov 2022 08:27:11 +0000
ROA not before: Mon 28 Nov 2022 08:27:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209260
IP address blocks: 185.63.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:bd:58:e7:f0:3f:5d:3c:79:d0:75:65:8d:76:90:50:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Validity
Not Before: Nov 28 08:27:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=84ed427ad8419e0e574604c6f10d804037019c0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:59:44:c4:30:b2:1e:e8:66:c8:8c:7c:23:e4:
20:2b:eb:b1:fb:d0:e0:d3:53:1e:fc:21:c1:8a:57:
2f:f8:c5:b8:f9:28:8a:e7:f5:23:4b:65:44:a0:74:
42:1f:18:5a:ba:0e:25:12:e4:03:ee:05:73:fd:67:
22:b4:f7:f1:b5:eb:b6:47:90:2c:ac:c5:9b:50:9a:
50:c3:db:6d:3e:2d:4c:06:7a:42:33:f1:66:c5:cd:
58:9b:14:99:f4:28:3d:3e:a1:e2:90:73:55:5d:8c:
8f:5c:c5:6e:60:bb:8f:b9:a2:76:c1:a0:9f:ac:67:
19:72:1f:71:58:4b:88:49:78:50:de:78:f1:b4:b0:
83:91:4f:96:0f:cb:4e:d2:66:47:bc:48:38:a2:c0:
d7:96:4e:42:58:a7:9f:e7:c9:53:61:7b:39:68:bf:
d6:f8:af:83:b7:91:1a:a2:71:a4:10:1e:09:88:75:
1e:81:e8:a1:07:4a:2d:2e:76:88:96:58:aa:63:2a:
d8:72:60:ac:8f:cd:d2:e9:90:c0:70:f0:f3:27:b2:
d0:80:b2:d1:2c:22:56:11:99:90:e6:ad:9f:25:33:
20:0b:85:91:99:27:03:3e:bc:00:b2:65:b3:56:de:
8c:f7:39:db:27:d7:60:53:d9:9f:e2:ab:2f:e6:dd:
ac:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:ED:42:7A:D8:41:9E:0E:57:46:04:C6:F1:0D:80:40:37:01:9C:0A
X509v3 Authority Key Identifier:
keyid:B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/hO1CethBng5XRgTG8Q2AQDcBnAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.33.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:4c:c5:61:68:d7:a2:c4:aa:04:42:bf:90:f6:13:ed:21:f1:
9d:e0:ae:24:64:7c:62:ba:a2:94:a7:27:90:59:fd:61:dd:ec:
b2:a8:0d:c7:1e:d4:f5:2e:3a:40:cd:d4:64:89:58:23:47:ff:
1f:6e:ea:b0:fd:af:e3:28:73:68:df:3e:a9:e0:8a:9b:4e:7e:
91:70:e7:b6:a0:b3:1e:16:a4:bd:02:8b:97:70:18:ce:82:12:
1c:df:5d:ff:10:0d:5f:34:47:bf:2c:b9:6c:dd:8c:76:24:3c:
52:16:9d:50:b9:6a:46:0c:9a:b0:b4:87:cb:92:be:0c:b1:58:
7f:1c:a1:c0:71:dc:eb:0c:33:da:5a:71:f0:a8:41:08:b9:1f:
22:a0:5d:4d:1b:c0:1f:9c:a9:f4:7c:12:62:43:80:02:e2:d7:
ab:5e:ab:cc:c0:a1:f1:02:db:fb:7b:1a:c9:77:57:ac:ca:7a:
3b:0e:d0:3d:f8:25:98:9e:95:31:1d:84:af:bb:5b:f2:84:1e:
e4:45:1c:1c:c7:02:83:01:bb:41:07:3e:23:77:d2:ce:9b:2f:
92:86:a9:1f:38:3b:ed:1b:46:14:44:18:3d:86:60:a8:f1:a5:
49:6e:f5:93:23:50:89:70:15:f2:10:a0:d8:63:ea:6d:1d:01:
19:44:13:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:23 2024 by rpki-client on console-ams.rpki-client.org