Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/8d85d7-4049-4b5a-9bf7-91c70f61a067/1/HFM4EjgbK2NXJq88OUH4giJHB68.roa
File: HFM4EjgbK2NXJq88OUH4giJHB68.roa (raw, json)
Hash identifier: tsyORnDSkIe13+GUw7Xg9PmEHTl9sWae62dGQivlipo=
Subject key identifier: 1C:53:38:12:38:1B:2B:63:57:26:AF:3C:39:41:F8:82:22:47:07:AF
Certificate issuer: /CN=7c4b917dc9046a065678ae0df4d3e30369c59c69
Certificate serial: 0893224D
Authority key identifier: 7C:4B:91:7D:C9:04:6A:06:56:78:AE:0D:F4:D3:E3:03:69:C5:9C:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fEuRfckEagZWeK4N9NPjA2nFnGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/8d85d7-4049-4b5a-9bf7-91c70f61a067/1/HFM4EjgbK2NXJq88OUH4giJHB68.roa
Signing time: Sat 01 Jan 2022 13:56:39 +0000
ROA not before: Sat 01 Jan 2022 13:56:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15623
IP address blocks: 185.117.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143860301 (0x893224d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c4b917dc9046a065678ae0df4d3e30369c59c69
Validity
Not Before: Jan 1 13:56:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c533812381b2b635726af3c3941f882224707af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:45:9e:64:e1:91:a4:7b:63:8c:76:96:1a:cd:
7d:4d:dc:ff:1a:97:87:99:4f:54:8c:33:36:03:6d:
d3:96:af:da:f9:a0:8c:17:8f:a6:99:fd:e2:c6:01:
7e:c5:c5:2e:e6:aa:a6:12:ba:58:ef:5c:b8:65:00:
45:f2:e3:4f:1c:17:27:52:11:8b:08:9f:e3:72:c6:
37:75:1c:1e:6d:99:58:5a:16:a4:13:fc:bb:9a:33:
26:5f:68:dc:45:c9:6a:1a:41:22:79:06:cf:9a:16:
b4:fa:d2:10:d6:31:3e:72:68:7e:ee:89:b9:3e:c2:
b0:db:a6:03:09:6c:ff:e3:60:ff:75:7f:5d:cc:ab:
e7:10:64:c0:07:ea:10:b6:44:46:e7:5b:24:b4:4b:
47:5c:65:d0:3e:a3:cb:25:8a:f3:33:60:53:04:98:
3d:13:5b:3f:28:0c:a1:42:d5:6f:bf:79:2d:89:c1:
d8:6d:fd:5b:50:e4:27:c1:36:f8:2c:d7:9a:eb:b6:
41:93:ae:c8:69:57:9e:8b:66:20:15:6f:f6:44:23:
f7:6e:cd:5c:2b:92:ca:23:bf:21:da:9f:7c:76:87:
7b:40:d8:92:08:3e:11:23:79:3d:b5:87:b9:72:80:
3f:09:df:31:f4:fd:e0:d2:ab:0d:82:55:43:37:c9:
5c:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:53:38:12:38:1B:2B:63:57:26:AF:3C:39:41:F8:82:22:47:07:AF
X509v3 Authority Key Identifier:
keyid:7C:4B:91:7D:C9:04:6A:06:56:78:AE:0D:F4:D3:E3:03:69:C5:9C:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fEuRfckEagZWeK4N9NPjA2nFnGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/8d85d7-4049-4b5a-9bf7-91c70f61a067/1/HFM4EjgbK2NXJq88OUH4giJHB68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/8d85d7-4049-4b5a-9bf7-91c70f61a067/1/fEuRfckEagZWeK4N9NPjA2nFnGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.15.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:c6:a6:7b:3c:57:f7:17:f0:8e:df:ae:59:5f:0c:ad:e2:5c:
79:54:03:69:00:8c:60:4b:d9:0b:f4:c5:7e:ca:fa:c0:c5:95:
2c:d3:d6:11:23:e9:96:b9:c7:c7:a5:1e:61:7e:b9:28:b2:9d:
67:80:a1:43:39:e7:1b:4c:6a:4a:9b:57:e4:77:6b:97:1b:dd:
14:68:96:8b:b0:f1:95:dc:38:e8:fb:e0:bd:30:ac:23:9b:8a:
80:af:af:78:73:03:f1:59:12:ed:a0:6f:05:07:5f:2e:82:66:
26:87:cb:b5:a4:d9:7f:03:30:75:dc:7a:e8:85:cd:30:8f:14:
01:63:05:bf:d9:6f:45:61:d8:6a:63:de:8a:34:a6:ec:4d:2a:
b8:23:5d:ad:bf:f9:95:e5:b0:b9:fd:1e:27:1e:97:f3:46:61:
a7:ec:0f:33:5d:02:a7:48:11:55:71:1a:45:ac:cf:4f:2e:c4:
e2:c4:6c:70:2c:1b:c4:52:13:89:c3:bb:68:6f:ee:5c:85:dd:
c7:2d:60:be:0a:f5:56:ff:3d:80:f3:55:bd:fb:6f:b4:38:41:
79:3d:57:2a:5e:d7:59:9c:b1:cf:4b:4d:ad:57:00:b9:ba:59:
6c:c6:34:3a:59:99:13:25:bb:30:a1:3b:54:a9:55:55:63:aa:
af:90:68:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:59 2023 by rpki-client on console-fra.rpki-client.org