Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/H8YwvRSRzR3SZuL0ZtarkP4PNJ4.roa
File: H8YwvRSRzR3SZuL0ZtarkP4PNJ4.roa (raw, json)
Hash identifier: wvbCXbuOIUQ1SHB9xsj54lFNnbGix/t+J2cRzjgoAMI=
Subject key identifier: 1F:C6:30:BD:14:91:CD:1D:D2:66:E2:F4:66:D6:AB:90:FE:0F:34:9E
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 0182466D98C789E7919D26B0E0A984B62498
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/H8YwvRSRzR3SZuL0ZtarkP4PNJ4.roa
Signing time: Thu 28 Jul 2022 20:09:23 +0000
ROA not before: Thu 28 Jul 2022 20:09:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43624
IP address blocks: 93.185.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:46:6d:98:c7:89:e7:91:9d:26:b0:e0:a9:84:b6:24:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Jul 28 20:09:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1fc630bd1491cd1dd266e2f466d6ab90fe0f349e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:51:04:e5:b9:5f:00:6e:6f:f2:6f:65:80:26:
2d:52:76:a1:ef:2c:68:79:93:69:1f:ab:fd:4b:ae:
2e:c5:6b:b5:ce:87:53:fd:96:6a:ba:b2:8c:f7:0d:
2d:90:dd:ec:78:01:7a:23:89:97:72:b3:d5:51:0a:
b7:40:a6:71:20:2e:ef:44:33:b2:5d:27:13:e2:16:
1a:6c:47:db:be:9a:c1:6a:05:1f:f3:e6:c7:e2:46:
38:71:b5:8c:12:d0:5d:67:48:e7:31:71:f6:54:fa:
3e:81:d8:7e:b3:66:6b:60:36:e8:b3:80:44:11:f1:
95:ed:27:a7:18:dd:38:a3:41:9f:65:53:8c:53:06:
2a:97:ea:26:a8:c5:8d:47:0e:a5:a9:de:8e:04:77:
ee:da:5a:4e:e7:ee:13:d0:35:03:b8:30:11:f8:87:
0b:81:dc:5e:c0:9e:76:43:af:be:1e:2a:81:fe:33:
ac:6a:42:54:6d:86:d6:c7:08:b8:0e:cb:2f:f7:d8:
37:ef:c6:4a:b4:dc:00:02:3b:51:3c:f2:32:46:f9:
7d:09:58:c9:54:a4:50:e1:ed:ca:57:97:ad:fe:9b:
e8:7e:81:1a:38:2e:68:5b:97:9c:c1:63:97:7b:7b:
d2:e0:1f:bc:60:90:65:23:83:b3:8c:49:cd:ea:1f:
d3:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:C6:30:BD:14:91:CD:1D:D2:66:E2:F4:66:D6:AB:90:FE:0F:34:9E
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/H8YwvRSRzR3SZuL0ZtarkP4PNJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.185.166.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:4a:56:09:48:87:9e:b2:b3:fc:da:0a:5a:b8:f5:4a:ce:15:
ef:cc:e6:24:3e:fe:fd:cf:50:6d:3c:54:0f:df:50:50:2e:00:
bc:5c:2c:e6:e8:6b:cc:a9:01:f9:d8:e4:cc:29:e7:96:71:3b:
55:a5:d6:8e:40:1a:26:67:7b:c8:93:44:12:7a:89:c9:ea:b1:
ae:0b:11:d7:7f:43:4f:cc:bf:76:fc:f4:48:a4:e7:68:db:8b:
4e:7e:47:ac:73:94:39:8b:04:05:aa:a4:61:17:2c:e0:f4:53:
d6:50:ac:db:89:0b:f7:97:5a:d0:4c:17:c0:e7:c0:a4:96:92:
24:50:db:e7:00:ab:3f:a7:c4:3d:b4:01:6d:3d:1f:5a:39:cd:
de:27:f6:b7:ed:8b:d0:e2:a8:94:89:f5:9c:d5:0f:6e:a4:eb:
fc:20:1e:ad:a7:ae:b8:15:94:63:78:74:28:01:48:f5:6f:72:
73:ad:83:84:56:89:19:f3:58:77:29:b7:2f:71:5c:18:6e:c1:
47:6a:26:4f:4c:96:7f:7f:c7:47:6b:39:f1:6c:71:aa:9d:f0:
7b:a9:73:c0:63:63:1e:ac:75:fc:0d:49:40:4a:85:b6:a7:42:
6f:3d:2a:21:ff:76:84:2d:50:7f:55:d0:3e:ae:85:04:9f:0f:
20:52:96:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:23 2024 by rpki-client on console-fra.rpki-client.org