Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/d042d2-61d2-434d-8e5b-886c416b9051/1/HooHS6yGPQoh504xcft80gJjtyA.roa
File: HooHS6yGPQoh504xcft80gJjtyA.roa (raw, json)
Hash identifier: AV92UxRL6g6b4L9rYs/DELYDhlVs/O1M2yBs/2jTqYI=
Subject key identifier: 1E:8A:07:4B:AC:86:3D:0A:21:E7:4E:31:71:FB:7C:D2:02:63:B7:20
Certificate issuer: /CN=d9486f7fe4eb6d949b8007b4e4198ce1c878302e
Certificate serial: BEBBBF
Authority key identifier: D9:48:6F:7F:E4:EB:6D:94:9B:80:07:B4:E4:19:8C:E1:C8:78:30:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Uhvf-TrbZSbgAe05BmM4ch4MC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/d042d2-61d2-434d-8e5b-886c416b9051/1/HooHS6yGPQoh504xcft80gJjtyA.roa
Signing time: Sat 01 Jan 2022 12:05:26 +0000
ROA not before: Sat 01 Jan 2022 12:05:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211592
IP address blocks: 185.254.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12499903 (0xbebbbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9486f7fe4eb6d949b8007b4e4198ce1c878302e
Validity
Not Before: Jan 1 12:05:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e8a074bac863d0a21e74e3171fb7cd20263b720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:86:74:3a:72:08:f5:60:40:3b:31:ae:a8:a3:
13:e6:d9:ce:ed:bc:25:54:95:8d:c7:e6:12:11:ca:
bb:3b:b8:31:7f:1b:55:b3:5c:f8:41:98:7b:29:39:
7b:8c:52:23:b1:58:00:e7:8c:81:3f:83:3c:83:c4:
32:97:5c:db:de:85:33:f5:dd:6c:19:9a:3a:9b:f2:
a8:e6:64:9d:7b:e5:74:10:92:fc:2b:db:d0:c4:37:
a9:73:4f:46:6c:49:5f:b4:3a:3a:f8:54:24:c0:5f:
2d:38:22:7a:d7:b8:3d:44:69:68:11:b1:a1:dc:30:
33:c8:f6:72:b6:51:03:4e:63:f2:42:66:b9:65:3c:
f0:51:e6:5e:6c:4f:55:8c:58:a6:8b:9c:51:3c:1d:
c2:fd:52:14:0c:57:9e:e9:0c:23:44:5b:f0:cd:64:
cd:40:6f:0b:a5:62:9f:cf:db:39:9f:bc:94:99:1d:
98:6c:99:49:69:52:af:d9:cf:a1:2b:47:fe:6f:55:
65:cf:11:8b:83:03:16:0a:be:73:a9:c2:72:63:03:
3c:2a:13:e9:31:43:6c:68:e4:da:2d:c3:2a:f6:1a:
5f:cf:cd:a9:7c:d1:e5:57:cf:a1:ef:bb:51:96:f2:
a3:5e:82:25:c6:63:2f:7e:ab:4b:da:a1:93:31:9e:
b2:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:8A:07:4B:AC:86:3D:0A:21:E7:4E:31:71:FB:7C:D2:02:63:B7:20
X509v3 Authority Key Identifier:
keyid:D9:48:6F:7F:E4:EB:6D:94:9B:80:07:B4:E4:19:8C:E1:C8:78:30:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Uhvf-TrbZSbgAe05BmM4ch4MC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/d042d2-61d2-434d-8e5b-886c416b9051/1/HooHS6yGPQoh504xcft80gJjtyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/d042d2-61d2-434d-8e5b-886c416b9051/1/2Uhvf-TrbZSbgAe05BmM4ch4MC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.254.166.0/24
Signature Algorithm: sha256WithRSAEncryption
93:c6:31:e8:03:cb:b7:36:e6:4a:10:61:40:e6:60:24:95:00:
53:5d:4d:14:ff:7c:7c:6d:42:7f:08:f3:e6:25:ff:7c:ad:cf:
ba:b4:d5:76:81:4a:de:7e:d4:34:f2:e9:58:e2:f8:85:34:38:
37:ef:ae:98:2b:24:cb:46:2a:bf:58:7c:f5:c5:07:44:84:62:
d5:e8:be:c7:4a:46:91:e2:24:12:f9:03:56:14:ca:ec:89:a6:
09:26:6b:d1:e7:e3:a2:36:3d:76:b4:52:0a:17:df:64:25:5a:
a1:64:cc:5b:d0:5b:3b:d5:d1:b4:85:14:34:50:00:14:ed:10:
f5:04:94:52:81:5b:a6:82:96:59:64:5f:92:13:28:4c:dd:bd:
fe:6c:71:35:a9:1f:ff:fe:c9:2d:3b:7f:47:67:2b:04:89:d4:
76:23:c2:b7:d1:c8:ed:7a:a3:db:4b:10:51:ca:0f:6e:00:ac:
10:d9:64:e9:d2:8c:d8:05:76:b5:05:99:f8:c2:b5:91:c9:57:
dc:63:b9:9d:6a:73:70:d8:57:3e:da:8f:ae:2c:c6:1b:92:76:
45:e8:65:be:91:20:dd:43:17:16:12:91:df:e8:d5:de:82:5b:
fa:19:a5:ef:96:b6:f2:a1:e0:a0:93:4e:0a:42:50:dc:03:3d:
ed:75:cf:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:30 2023 by rpki-client on console-fra.rpki-client.org