Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/645b74-d8fb-4488-bbfd-c028d91ebc9c/1/HFXwvgGtvyGgKYXIvt7kTKooXJ0.roa
File: HFXwvgGtvyGgKYXIvt7kTKooXJ0.roa (raw, json)
Hash identifier: yQSkM3rg1ZYg7UMgIMZayF1OQ3zdnaBH0Jv+Aiercfg=
Subject key identifier: 1C:55:F0:BE:01:AD:BF:21:A0:29:85:C8:BE:DE:E4:4C:AA:28:5C:9D
Certificate issuer: /CN=2c887302d1e740f5f98481fb4b7a461696bfe5c1
Certificate serial: 0FDAE9F9
Authority key identifier: 2C:88:73:02:D1:E7:40:F5:F9:84:81:FB:4B:7A:46:16:96:BF:E5:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LIhzAtHnQPX5hIH7S3pGFpa_5cE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/645b74-d8fb-4488-bbfd-c028d91ebc9c/1/HFXwvgGtvyGgKYXIvt7kTKooXJ0.roa
Signing time: Sat 01 Jan 2022 06:05:39 +0000
ROA not before: Sat 01 Jan 2022 06:05:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 194.116.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 266004985 (0xfdae9f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c887302d1e740f5f98481fb4b7a461696bfe5c1
Validity
Not Before: Jan 1 06:05:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c55f0be01adbf21a02985c8bedee44caa285c9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d4:bd:7e:be:5b:11:6b:72:fa:cd:dd:9d:ca:
9e:11:59:67:bd:4f:33:80:ba:8e:6d:01:59:55:4f:
7b:7b:35:74:56:57:98:ba:bd:6d:ec:a0:12:cd:0d:
a7:05:39:c3:2e:26:51:7a:a4:77:98:47:39:c1:dc:
e4:90:89:7e:60:f8:cb:ab:b7:02:66:d7:21:a5:3a:
85:5c:ee:eb:81:de:7b:80:85:98:8d:eb:ab:bd:c3:
0a:67:c7:d5:f4:fc:13:f3:09:3b:b5:b7:07:14:ce:
ad:08:ed:ae:2d:3e:13:5e:47:92:a9:72:f9:e9:5c:
6f:ba:cb:76:4f:7f:0c:20:5b:ca:b4:15:e9:80:89:
bc:07:57:41:21:c7:ec:91:a8:25:c2:a8:a8:02:be:
ea:ea:da:56:a8:87:13:8f:10:42:60:71:a9:8c:8e:
fa:76:67:c3:89:42:18:3f:a4:56:69:cd:d5:1b:be:
72:86:c5:46:fb:59:ad:32:e6:cd:ab:d1:a7:11:d8:
06:b2:11:6f:4b:f4:59:a6:b3:eb:34:98:2f:96:e4:
0f:36:6c:99:21:a9:51:9b:81:5e:22:2c:49:c5:54:
5e:6a:27:24:54:cf:ab:00:1f:c6:ec:69:01:3c:3c:
e1:17:fd:38:1f:0e:05:0f:b6:61:b2:1a:26:b2:fc:
cc:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:55:F0:BE:01:AD:BF:21:A0:29:85:C8:BE:DE:E4:4C:AA:28:5C:9D
X509v3 Authority Key Identifier:
keyid:2C:88:73:02:D1:E7:40:F5:F9:84:81:FB:4B:7A:46:16:96:BF:E5:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LIhzAtHnQPX5hIH7S3pGFpa_5cE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/645b74-d8fb-4488-bbfd-c028d91ebc9c/1/HFXwvgGtvyGgKYXIvt7kTKooXJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/645b74-d8fb-4488-bbfd-c028d91ebc9c/1/LIhzAtHnQPX5hIH7S3pGFpa_5cE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.116.96.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:df:c9:5e:e0:b7:af:d6:73:f9:e6:c2:f5:5a:56:ad:d8:2c:
d8:13:6d:09:8b:5d:71:43:ce:4c:86:88:c1:ff:d6:18:34:7f:
0d:3f:de:dc:09:47:c6:b9:19:b9:55:b2:78:f5:65:00:fe:76:
aa:b1:1c:e3:c9:44:69:59:90:d2:dd:0b:7a:96:0e:bf:a2:2b:
ba:b2:e5:4e:06:dc:a0:86:b6:a8:b1:34:10:33:5b:33:af:41:
aa:8a:56:7c:48:a1:32:9e:28:9d:b5:c1:28:e7:42:b8:9b:18:
e5:5c:b4:bc:d7:4d:2f:92:cd:7c:ba:9d:23:25:f4:76:3b:96:
58:89:36:f4:bc:5a:3d:b1:69:0f:8a:cc:7c:6a:31:95:07:1f:
cc:18:11:07:e0:19:a4:28:4d:65:4a:b2:d7:72:ae:75:f3:b1:
e2:4a:86:91:2e:de:3a:15:eb:cd:d3:43:67:f6:cc:25:cb:a3:
0b:9a:fa:fb:2f:89:94:11:fb:26:a9:31:87:dd:f6:af:cb:56:
9a:7b:db:6e:84:7e:dc:f7:f5:e7:38:bc:63:ff:8e:75:77:66:
d9:1d:0a:39:74:6e:14:58:6f:2a:fa:72:83:1b:73:62:66:35:
68:1f:21:9f:8d:00:7c:0b:aa:c1:be:c9:ad:ea:d7:eb:8e:42:
a4:f8:8b:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:20 2023 by rpki-client on console-ams.rpki-client.org