Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/1f68a8-49dd-412b-bba9-0bf539b3b714/1/HtBLPKBlPD-bw258s1Vnij7FidQ.roa
File: HtBLPKBlPD-bw258s1Vnij7FidQ.roa (raw, json)
Hash identifier: jSxo4Q0Di3fH/NSPSKbtXPjj/ouqql9a8UbfWgBrIvs=
Subject key identifier: 1E:D0:4B:3C:A0:65:3C:3F:9B:C3:6E:7C:B3:55:67:8A:3E:C5:89:D4
Certificate issuer: /CN=e0812bdddbb239be639dc75dcd2e296c4fcf4a97
Certificate serial: 033D47FE
Authority key identifier: E0:81:2B:DD:DB:B2:39:BE:63:9D:C7:5D:CD:2E:29:6C:4F:CF:4A:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4IEr3duyOb5jncddzS4pbE_PSpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/1f68a8-49dd-412b-bba9-0bf539b3b714/1/HtBLPKBlPD-bw258s1Vnij7FidQ.roa
Signing time: Sat 01 Jan 2022 06:57:42 +0000
ROA not before: Sat 01 Jan 2022 06:57:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39444
IP address blocks: 185.204.106.0/24 maxlen: 24
46.30.200.0/21 maxlen: 24
185.204.104.0/22 maxlen: 24
2a03:2680::/32 maxlen: 56
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54347774 (0x33d47fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0812bdddbb239be639dc75dcd2e296c4fcf4a97
Validity
Not Before: Jan 1 06:57:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ed04b3ca0653c3f9bc36e7cb355678a3ec589d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:56:93:e1:69:73:28:04:d4:a6:01:c1:92:d5:
54:20:ad:1d:22:53:3e:66:ed:a9:12:c8:f4:76:3d:
f1:0f:ee:5c:e4:8c:2c:a6:e4:35:45:4b:7b:6f:bb:
1d:99:f3:11:6e:c1:7f:52:5e:29:79:68:05:35:90:
f6:2c:5e:05:35:ba:dd:da:a6:95:53:07:31:f3:8f:
09:eb:9a:d7:6d:9c:8b:b3:62:9b:76:b6:39:c9:08:
bc:80:73:6e:56:8a:f6:c5:21:d4:1e:42:bb:83:d5:
4d:c3:d5:61:a4:71:45:e2:ea:bf:0e:a5:49:59:7c:
9c:da:8f:29:72:38:0c:dd:ec:ea:93:31:b6:ec:87:
d4:0f:63:d6:38:8d:63:7f:4c:1e:12:f9:f1:1c:a1:
32:04:1b:f3:8e:df:30:b9:24:39:81:8b:c8:a4:93:
eb:9b:46:3d:95:12:bc:b0:f1:a7:8f:4c:4e:23:b6:
18:fc:12:60:6f:23:cb:29:d6:3c:64:c6:4f:5d:53:
e8:ea:cb:ff:71:07:42:03:f9:8a:a7:53:5b:00:1c:
12:1c:5b:8c:97:a7:ef:d5:60:09:7f:20:53:0d:07:
f1:b7:a0:eb:c6:d1:3b:3c:31:a3:1e:02:b8:86:06:
1e:d0:66:a7:68:1f:56:3c:7d:33:1e:d8:dd:d4:fa:
25:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:D0:4B:3C:A0:65:3C:3F:9B:C3:6E:7C:B3:55:67:8A:3E:C5:89:D4
X509v3 Authority Key Identifier:
keyid:E0:81:2B:DD:DB:B2:39:BE:63:9D:C7:5D:CD:2E:29:6C:4F:CF:4A:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4IEr3duyOb5jncddzS4pbE_PSpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/1f68a8-49dd-412b-bba9-0bf539b3b714/1/HtBLPKBlPD-bw258s1Vnij7FidQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/1f68a8-49dd-412b-bba9-0bf539b3b714/1/4IEr3duyOb5jncddzS4pbE_PSpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.30.200.0/21
185.204.104.0/22
IPv6:
2a03:2680::/32
Signature Algorithm: sha256WithRSAEncryption
21:58:13:87:32:64:ba:c9:ed:c2:de:ee:e0:80:f4:02:5f:41:
5d:4e:10:09:26:5a:df:5a:66:92:b4:65:9e:92:da:3c:36:3c:
4f:b0:9f:04:33:ab:75:1f:b1:8d:60:b3:24:91:69:e3:5e:70:
67:ba:62:f8:16:15:a0:a8:ab:9c:05:6b:71:15:3b:09:ed:e2:
2c:7b:e7:1a:17:4f:ba:14:cc:74:98:c6:fc:46:8b:50:0d:b4:
ed:db:cd:43:ac:7f:69:cb:70:21:d2:e9:15:2d:13:5c:fc:d5:
c6:31:8a:c4:fb:e2:9d:02:b9:7c:b1:66:cc:b3:8d:fb:28:ab:
31:65:61:d3:4d:4c:e4:d4:7b:b8:9a:8e:a5:b9:5b:e0:60:74:
3d:e8:4f:7b:ed:fa:7b:df:3e:07:15:bb:72:20:ca:7f:33:11:
6c:7a:0d:43:80:3e:f4:47:17:45:ee:0b:a0:e4:51:71:ee:4f:
9f:c4:f4:1a:ff:74:20:e6:ce:e6:31:59:b1:32:a8:ab:93:6f:
4f:97:d2:9b:25:b1:77:9f:fc:a0:50:ee:33:e3:61:f5:bf:d3:
e0:a1:b0:8a:97:44:fb:23:73:cb:78:e8:79:13:a6:35:fe:77:
d4:9a:a9:89:a3:d4:55:64:83:e1:d4:a5:fe:da:61:0e:a0:d4:
53:47:25:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:42 2023 by rpki-client on console-fra.rpki-client.org