Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/d6ec3b-e717-4c3d-b0ae-5e60f6da2b09/1/HHekMoAuemRd6AxP0fGDdJ3e5a4.roa
File: HHekMoAuemRd6AxP0fGDdJ3e5a4.roa (raw, json)
Hash identifier: k3Lpg/wcKAebVuSAbLHqY0XlM3ZxVVjAzzs0KniE/ZY=
Subject key identifier: 1C:77:A4:32:80:2E:7A:64:5D:E8:0C:4F:D1:F1:83:74:9D:DE:E5:AE
Certificate issuer: /CN=83609f2b9d2486f36e8cd29dfa2a756a48de7c51
Certificate serial: 0AFD21C1
Authority key identifier: 83:60:9F:2B:9D:24:86:F3:6E:8C:D2:9D:FA:2A:75:6A:48:DE:7C:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g2CfK50khvNujNKd-ip1akjefFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/d6ec3b-e717-4c3d-b0ae-5e60f6da2b09/1/HHekMoAuemRd6AxP0fGDdJ3e5a4.roa
Signing time: Tue 19 Apr 2022 15:04:10 +0000
ROA not before: Tue 19 Apr 2022 15:04:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34984
IP address blocks: 185.226.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 184361409 (0xafd21c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83609f2b9d2486f36e8cd29dfa2a756a48de7c51
Validity
Not Before: Apr 19 15:04:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c77a432802e7a645de80c4fd1f183749ddee5ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:cb:7e:95:12:02:e6:fd:19:7d:74:2a:01:05:
14:43:d0:1a:bb:34:be:21:2d:28:f0:74:98:8f:dd:
03:4c:a5:a7:40:91:e2:fd:64:67:15:75:aa:c0:35:
4c:d1:f5:61:15:50:0d:a1:75:98:33:2b:5c:d8:ef:
6f:5f:d7:8d:8c:42:67:ed:d1:db:be:03:ee:be:c5:
d9:1f:95:22:e9:6f:06:52:0e:dd:76:90:17:13:f4:
fb:6b:16:c9:76:91:b8:36:81:ea:94:2d:bb:51:c9:
1a:8b:53:23:83:e5:83:7a:d1:c4:ca:e4:80:4f:87:
fd:9f:ff:7a:cf:87:7f:f7:43:c9:a5:5c:37:bb:52:
7d:5d:f3:6b:05:db:94:f6:30:fd:88:15:a0:14:bf:
dc:38:97:5d:eb:6a:c7:88:0a:74:1c:92:21:d4:ad:
fc:22:41:57:f7:5a:26:2c:49:fa:0a:33:e1:5b:69:
09:da:7f:c1:cb:92:2c:e4:35:c5:01:a8:68:8a:4e:
8e:fd:d7:c2:b1:f2:3a:93:dc:4b:b2:62:df:20:51:
2f:4f:10:76:70:64:7b:11:ab:25:d5:1f:fd:dc:46:
06:e8:ff:4d:91:22:b9:c0:48:af:f6:c8:53:44:f4:
24:06:fe:39:eb:7b:86:54:07:bf:94:52:a7:6f:a2:
33:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:77:A4:32:80:2E:7A:64:5D:E8:0C:4F:D1:F1:83:74:9D:DE:E5:AE
X509v3 Authority Key Identifier:
keyid:83:60:9F:2B:9D:24:86:F3:6E:8C:D2:9D:FA:2A:75:6A:48:DE:7C:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g2CfK50khvNujNKd-ip1akjefFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/d6ec3b-e717-4c3d-b0ae-5e60f6da2b09/1/HHekMoAuemRd6AxP0fGDdJ3e5a4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/d6ec3b-e717-4c3d-b0ae-5e60f6da2b09/1/g2CfK50khvNujNKd-ip1akjefFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.163.0/24
Signature Algorithm: sha256WithRSAEncryption
65:ab:a8:a8:c9:fd:08:9e:14:e1:6a:b2:ca:a9:4d:18:8e:25:
b8:6a:6f:45:1b:cb:c0:49:62:01:14:52:ec:6f:95:2b:57:66:
26:06:7b:a8:2f:01:57:40:12:d9:0d:dd:05:ae:d9:ef:53:5d:
a5:f6:40:8d:52:fc:d3:7d:66:93:d3:48:83:3a:5a:ef:ac:9b:
b9:f3:2c:eb:65:8e:06:39:fd:3d:4a:9f:d2:90:ca:88:5e:f9:
07:3c:ed:b0:85:d7:00:0e:35:6b:f4:d7:ff:37:ab:ce:6c:db:
71:0f:a3:f0:d3:e2:d1:41:da:f5:d9:7d:ba:6f:08:b7:aa:e7:
f9:c3:15:03:2b:24:96:12:88:41:2d:f1:e8:b6:39:b8:2d:e0:
31:b2:b5:bb:6d:9b:39:0b:e3:00:59:a0:3b:fc:74:68:fd:13:
42:fb:9a:3d:0a:9d:b0:aa:74:a5:e2:ea:f1:f5:26:7d:c5:18:
2f:05:61:82:74:c9:33:97:e2:3a:61:c6:24:8b:09:92:16:d4:
f2:8c:37:fc:db:99:6a:e7:1c:6d:5e:df:24:05:5f:32:20:70:
b3:f2:42:30:f2:b1:b0:b9:d3:e0:fd:3b:55:f6:fd:98:75:74:
3a:28:d2:be:cf:36:8a:23:62:46:e1:7a:7a:b1:84:9c:33:d4:
94:5e:ed:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:08 2024 by rpki-client on console-ams.rpki-client.org